Improvements in Dynamic ID-based Remote User Authentication Schemes

2012 ◽  
Vol 4 (9) ◽  
pp. 240-247
Author(s):  
FuwYi Yang ◽  
Ying Li ◽  
SuHui Chiu ◽  
ChengSyuan Jiang
Keyword(s):  
User Authentication ◽  
Remote User Authentication ◽  
Dynamic Id ◽  
Authentication Schemes ◽  
Remote User

Analysis of the Dynamic ID-Based Remote User Authentication Schemes Using Smart Card for Multi-Server Environments

2014 ◽  
Vol 543-547 ◽  
pp. 3343-3347
Author(s):  
Xue Lei Li ◽  
Qiao Yan Wen ◽  
Wen Min Li ◽  
Hua Zhang ◽  
Zheng Ping Jin
Keyword(s):  
Smart Card ◽  
User Authentication ◽  
Password Guessing Attack ◽  
Remote User Authentication ◽  
Diffie Hellman ◽  
Dynamic Id ◽  
Authentication Schemes ◽  
Guessing Attack ◽  
Multi Server ◽  
Remote User

In this paper, we analyze and point out several weaknesses in the dynamic ID-based remote user authentication schemes using smart card for multi-server environments, and present the countermeasures to enhance the security of the schemes. Taking Li et al.'s scheme for instance, we demonstrate that their scheme does not provide forward secrecy and key privacy for the session keys, and cannot resist offline password guessing attack. Furthermore, the reasons of these security weaknesses are analyzed through extending the attacks to its predecessors. Finally, the improved ideas of local verification and authenticated Diffie-Hellman key agreement are presented to overcome the weaknesses mentioned above.

scholarly journals An Improved Dynamic ID-Based Remote User Authentication with Key Agreement Scheme

2013 ◽  
Vol 2013 ◽  
pp. 1-5 ◽  
Author(s):  
Juan Qu ◽  
Li-min Zou
Keyword(s):  
Key Agreement ◽  
User Authentication ◽  
Impersonation Attack ◽  
Forward Secrecy ◽  
Insider Attack ◽  
Remote User Authentication ◽  
Dynamic Id ◽  
User Authentication Scheme ◽  
Authentication Schemes ◽  
Remote User

In recent years, several dynamic ID-based remote user authentication schemes have been proposed. In 2012, Wen and Li proposed a dynamic ID-based remote user authentication with key agreement scheme. They claimed that their scheme can resist impersonation attack and insider attack and provide anonymity for the users. However, we will show that Wen and Li's scheme cannot withstand insider attack and forward secrecy, does not provide anonymity for the users, and inefficiency for error password login. In this paper, we propose a novel ECC-based remote user authentication scheme which is immune to various known types of attack and is more secure and practical for mobile clients.

scholarly journals Comments on ‘A Dynamic ID-Based Remote User Authentication Scheme’

2021 ◽  
Author(s):  
M Khan
Keyword(s):  
User Authentication ◽  
Authentication Scheme ◽  
Remote User Authentication ◽  
Dynamic Id ◽  
User Authentication Scheme ◽  
Remote User ◽  
Science Article

The initial version of this paper was published in https://www.sciencedirect.com/science/article/abs/pii/S0920548906000122?via=ihub

Sign in / Sign up

Export Citation Format

Share Document