Cryptology ePrint Archive: Report 2004/238

Security Analysis of A Dynamic ID-based Remote User Authentication Scheme

Amit K Awasthi and Sunder Lal

Abstract: Since 1981, when Lamport introduced the remote user authentication scheme using table, a plenty of schemes had been proposed with table and without table using. Recently Das, Saxena and Gulati have proposed A dynamic ID-based remote user authentication scheme. They claimed that their scheme is secure against ID-theft, and can resist the reply attacks, forgery attacks, and insider attacks and so on. In this paper we show that Das et al.’s scheme is completely insecure and using of this scheme is equivalent to an open server access without any password.

Category / Keywords: Authentication, cryptography, security, cryptanalysis, smart cards, proxy user

Date: received 14 Sep 2004

Contact author: awasthi_hcst at yahoo com

Available formats: PDF | BibTeX Citation

Note: We hope some comments to improve the introduced ideas.

Version: 20040916:184227 (All versions of this report)

Discussion forum: Show discussion | Start new discussion