Cryptology ePrint Archive: Report 2010/306

On security of a remote user authentication scheme without using smart cards

He Debiao, Chen Jianhua, Hu Jin

Abstract: The security of a password authentication scheme using smart cards proposed by Rhee et al. is analyzed. A kind of impersonation attack is presented. The analyses show that the scheme is insecure for practical application. In order to eliminate the security vulnerability, an efficient countermeasure is proposed.

Category / Keywords: cryptographic protocols / Authentication; Security; Cryptanalysis; Smart card; Attacks

Publication Info: has not been published elsewhere

Date: received 23 May 2010

Contact author: hedebiao at 163 com

Available formats: PDF | BibTeX Citation

Version: 20100525:211520 (All versions of this report)

Discussion forum: Show discussion | Start new discussion