Secure Dynamic Identity-Based Remote User Authentication Scheme

Sood, Sandeep K.; Sarje, Anil K.; Singh, Kuldip

doi:10.1007/978-3-642-11659-9_25

Cited by 12 publications

(6 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The remote user authentication scheme is used to authenticate the legitimacy of the remote users over an insecure channel. Since last decade many elegant remote user authentication schemes using smart card have been proposed [4], [6], [8][9][10], [12][13][14][15][16][17], [21], [22], [24][25][26][27][28][29][30][31][32][33][34][35]. Smart card authentication scheme is usually composed of three phases namely; registration phase, login phase and authentication phase.…”

Section: Possible Attacks On Smart Card Authentication Schemementioning

confidence: 99%

“…Modified scheme has been proposed to overcome the parallel session attack [13]. However, still it is vulnerable to impersonation attack and reflection attack; does not provide user anonymity [14].…”

Section: Parallel Session Attackmentioning

confidence: 99%

“…In reflection attack, a U eavesdrops login request during transmission between i U and server and sends it (or a modified version of the message) back to i U to masquerade as the legitimate server. As stated in [14], a U intercepts the login request ) , , (…”

Section: E Reflection Attackmentioning

confidence: 99%

See 2 more Smart Citations

Security Issues in Smart Card Authentication Scheme

Pippal¹,

Jaidhar²,

Tapaswi³

2012

IJCTE

View full text Add to dashboard Buy / Rent full text

To secure information from unauthorized access, various authentication schemes have been deployed. Among these, password based authentication schemes using smart card are widely used for various applications such as remote user login, online banking, ID verification, access control and e-commerce. It provides mutual authentication between user and server. This article portrays security requirements and possible attacks for smart card based password authentication scheme. In addition, various solutions for different attacks are also discussed.

show abstract

Section: Possible Attacks On Smart Card Authentication Schemementioning

confidence: 99%

Section: Parallel Session Attackmentioning

confidence: 99%

See 1 more Smart Citation

Security Issues in Smart Card Authentication Scheme

Pippal¹,

Jaidhar²,

Tapaswi³

2012

IJCTE

View full text Add to dashboard Buy / Rent full text

show abstract

“…Many research works depicting the application of password-based authentication schemes with smart cards to verify the legitimacy of remote user login requests have already been published [1,2,3,4,5,6,7]. In 1981, Lamport [8] proposed a password based authentication scheme though it failed to preserve user anonymity.…”

Section: Introductionmentioning

confidence: 99%

An Enhanced Secure Remote User Authentication Scheme without Verification Table

Binu¹,

Raj²,

Misbahuddin³

2015

IJCA

View full text Add to dashboard Buy / Rent full text

With the significant advances in communication networks over the last few decades, smart cards have been widely used in many e-commerce applications and network security protocols due to their low cost, portability, efficiency and cryptographic properties. In this paper, we analyze Sood et al."s smart card based authentication scheme and demonstrate that the scheme is vulnerable to masquerade user attack, offline password guessing attack, time concurrency weaknesses and fails to achieve mutual authentication. A secure dynamic identity based remote user authentication scheme without verification tables, is proposed in this paper and the scheme resolves the aforementioned problems of Sood et al."s scheme. The computation cost of the proposed scheme is comparable to Sood et al."s scheme and it is highly secure taking into consideration the complexity of calculating discrete logarithms and the resistance to various attacks. General TermsSecurity

show abstract

“…Various authentication schemes have been devised to frustrate different attack attempts on the sensitive information stored in servers. Recently because of the ease of use and computational capability of smart cards, a number of Password based authentication schemes with smart cards have been proposed [1][2][3]. These schemes can be categorized as static ID based [4,5] and dynamic ID based [6][7][8][9] schemes.…”

Section: Introductionmentioning

confidence: 99%

A Single Sign on based secure remote user authentication scheme for Multi-Server Environments

Binu

Misbahuddin

Raj

2014

International Conference on Computing and Communication Technologies

View full text Add to dashboard Buy / Rent full text

A Multi-Server Architecture comprises of a server environment having many different servers which provides the user the flexibility of accessing resources from multiple Service Providing Servers using the same credential. The primary objective of a Multi Server Environment (MSE) is to provide services of different Service Providers (SPs) without repeating registration at each SP server, and to get a unique single credential for all the servers in MSE. However, the conventional MSEs, proposed by various researchers, proposes the individual authentication service by each SP on their respective server using the credential issued by the Registration Authority of MSE. The mechanism requires the user to access each SP by keying the same credentials for every SP separately. Single Sign On (SSO) is an authentication mechanism that enables a user to sign-on once and access the services of various SPs in the same session. SAML is generally used as a Single Sign-On protocol. This work analyzes the smart card based authentication scheme for Multi-Server Environment proposed by Li et al.'s and discuss varioussecurity attacks on the said scheme. The paper also proposes a Secure Dynamic-ID based scheme using smart cards or crypto cards which do not require a verifier table and implements Single Sign On feature using SAML protocol, thus allowing the user to enjoy all the features of an MSE along with SSO.

show abstract

Secure Dynamic Identity-Based Remote User Authentication Scheme

Cited by 12 publications

References 11 publications

Security Issues in Smart Card Authentication Scheme

Security Issues in Smart Card Authentication Scheme

An Enhanced Secure Remote User Authentication Scheme without Verification Table

A Single Sign on based secure remote user authentication scheme for Multi-Server Environments

Contact Info

Product

Resources

About