Paper 2007/303

A Forward Secure Remote User Authentication Scheme

Manoj Kumar

Abstract

Remote user authentication schemes allow a valid user to login a remote server. In 2000, Hwang and Li's proposed a new remote user authentication scheme with smart cards. In the recent years,some researchers pointed out the security weaknesses of Hwang and Li's scheme and they also proposed some modified schemes to avoid these weaknesses. This paper analyzes that Hwang and Li's scheme does not satisfy some essential security requirements. Hwang and Li's scheme and all the modified schemes do not support mutual authentication between the remote user and the remote server also there is no session key generation phase for secure communication. In addition, in Hwang and Li's scheme, the remote user is not free to change his password. This paper present an ideal remote user authentication scheme with smart cards that not only resolves all the security problems of Hwang and Li's scheme, but also provides all the essential security requirements and forward secrecy to the remote server.

Metadata
Available format(s)
PDF
Category
Applications
Publication info
Published elsewhere. not published
Contact author(s)
yamu_balyan @ yahoo co in
History
2007-08-07: received
Short URL
https://ia.cr/2007/303
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2007/303,
      author = {Manoj Kumar},
      title = {A Forward Secure Remote User Authentication Scheme},
      howpublished = {Cryptology ePrint Archive, Paper 2007/303},
      year = {2007},
      note = {\url{https://eprint.iacr.org/2007/303}},
      url = {https://eprint.iacr.org/2007/303}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.