An authentication and key agreement scheme with key confirmation and privacy-preservation for multi-server environments

被引：5

作者：

Tan Z. ^{[1
]}

机构：

[1] School of Information Technology, Jiangxi University of Finance and Economics, Nanchang 330032, Jiangxi Province

来源：

Journal of Computers | 2011年 / 6卷 / 11期

关键词：

Authentication; Key agreement; Multi-server; Password;

D O I：

10.4304/jcp.6.11.2295-2301

中图分类号：

学科分类号：

摘要：

In the internet environment, it is desirable for a user to login different servers by keying the same password and using the same smart card. This paper proposes an authentication and key agreement scheme with key confirmation for multi-server environments. Compared with the previous authentication and key agreement schemes for multi-server environments, the new scheme holds many merits. It satisfies the following properties: R1. Single registration; R2. User friendly; R3. Prevention of the replay, the password guessing without smart cards, the impersonation and the stolen-verifier attacks; R4. Resistance against server spoofing; R5. Mutual authentication; R6. Two-factor authentication; R7.Resistance against known-key attacks; R8. Perfect forward secrecy; R9. Scalability of login; R10. Anonymity of users. © 2011 Academy Publisher.

引用

页码：2295 / 2301

页数：6

共 21 条

[1]

Lamport L., Password authentication with insecure communication, Communication of ACM, 24, pp. 28-30, (1981)

[2]

Peyravian M., Zunic N., Methods for protecting password transmission, Computer & Security, 19, pp. 466-469, (2006)

[3]

Lee C., Hwang M.S., Yang W.P., A flexible remote user authentication scheme using smart cards, ACM Oper. Syst. Rev., 36, 3, pp. 46-52, (2002)

[4]

Leung K.C., Cheng L.M., Fong A.S., Chan C.K., Cryptanalysis of a modified remote user authentication scheme using smart cards, IEEE Trans. Consum. Electron., 49, 4, pp. 1243-1245, (2003)

[5]

Messerges T.S., Dabbish E.A., Sloan R.H., Examining smart-card security under the threat of power analysis attacks, IEEE Transactions on Computers, 51, 5, pp. 541-552, (2002)

[6]

Hwang M.S., Li L.H., A new remote user authentication scheme using smart cards, IEEE Trans. Consum. Electron., 46, 1, pp. 28-30, (2000)

[7]

Li L., Lin I., Hwang M., A remote password authentication scheme for multi-server architecture using neural networks, IEEE Trans. Neural Netw., 12, 6, pp. 1498-1504, (2001)

[8]

Hu L., Niu X., Yang Y., An efficient multi-server password authenticated key agreement scheme using smart cards, 2007 International Conference on Multimedia and Ubiquitous Engineering (MUE'07), pp. 903-907

[9]

Fan L., Xu C.X., Li J.H., User authentication scheme using smart cards for multi-server environments, Chinese Journal of Electronics, 13, 1, pp. 179-181, (2004)

[10]

Lee Y., Won D., Security weaknesses in Chang and Wu's key agreement protocol for a multi-server environment, IEEE International Conference on e-Business Engineering, pp. 308-314, (2008)

← 1 2 3 →