Paper 2011/702

Comments of an efficient and secure multi-server authentication scheme with key agreement

Yitao Chen

Abstract

Recently, Tsaur et al. proposed an authentication scheme for multi-server environments and claimed their scheme could withstand various attacks. In this letter, we will point out that Tsaur et al. scheme is not suitable for multi-server environments since the user has to register for every server. Furthermore, we will show Tsaur et al. scheme is vulnerable to the password guessing attack and the privileged insider attack.

Metadata
Available format(s)
PDF
Publication info
Published elsewhere. The paper has not published.
Keywords
multi-serverpassword authentication protocolsmart cardpassword changekey agreement
Contact author(s)
chenyitao math @ gmail com
History
2012-01-02: revised
2011-12-27: received
See all versions
Short URL
https://ia.cr/2011/702
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2011/702,
      author = {Yitao Chen},
      title = {Comments of an efficient and secure multi-server authentication scheme with key agreement},
      howpublished = {Cryptology {ePrint} Archive, Paper 2011/702},
      year = {2011},
      url = {https://eprint.iacr.org/2011/702}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.