Paper 2004/238

Security Analysis of A Dynamic ID-based Remote User Authentication Scheme

Amit K Awasthi and Sunder Lal

Abstract

Since 1981, when Lamport introduced the remote user authentication scheme using table, a plenty of schemes had been proposed with table and without table using. Recently Das, Saxena and Gulati have proposed A dynamic ID-based remote user authentication scheme. They claimed that their scheme is secure against ID-theft, and can resist the reply attacks, forgery attacks, and insider attacks and so on. In this paper we show that Das et al.’s scheme is completely insecure and using of this scheme is equivalent to an open server access without any password.

Note: We hope some comments to improve the introduced ideas.

Metadata
Available format(s)
PDF
Publication info
Published elsewhere. Unknown where it was published
Keywords
Authenticationcryptographysecuritycryptanalysissmart cardsproxy user
Contact author(s)
awasthi_hcst @ yahoo com
History
2004-09-16: received
Short URL
https://ia.cr/2004/238
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2004/238,
      author = {Amit K Awasthi and Sunder Lal},
      title = {Security Analysis of A Dynamic ID-based Remote User Authentication Scheme},
      howpublished = {Cryptology ePrint Archive, Paper 2004/238},
      year = {2004},
      note = {\url{https://eprint.iacr.org/2004/238}},
      url = {https://eprint.iacr.org/2004/238}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.