An Efficient and Secure Smart Card Based Authentication Scheme

Chien-Ming Chen,
Bin Xiang,
King-Hang Wang,
Yong Zhang,
Tsu-Yang Wu,

Abstract


Remote user authentication schemes are helpful to provide authenticity between users and a remote server in network-based services. In order to meet the security requirements, many related schemes have been proposed. Recently, Moon et al. proposed a smart card based three-factor authentication scheme and claimed that the scheme prevented various attacks. However, just in the same year, Li et al . suggested a new insider attack scenario and pointed out that Moon et al . ’s scheme suffers from a user anonymity violation attack, a user impersonation attack, and a server masquerade attack under this scenario. In this study, it is demonstrated that without the new attack scenario, Moon et al . ’s scheme is still insecure against a traceability attack, an offline identity-guessing attack, an impersonation attack, and a man-in-the-middle attack. Based on Moon et al . ’s scheme, a new three-factor authenticated key agreement scheme is proposed. The proposed scheme is validated by widely accepted BAN logic. In addition, the proposed scheme can satisfy various types of functional features and prevent various security attacks.


Citation Format:
Chien-Ming Chen, Bin Xiang, King-Hang Wang, Yong Zhang, Tsu-Yang Wu, "An Efficient and Secure Smart Card Based Authentication Scheme," Journal of Internet Technology, vol. 20, no. 4 , pp. 1113-1123, Jul. 2019.

Full Text:

PDF

Refbacks

  • There are currently no refbacks.





Published by Executive Committee, Taiwan Academic Network, Ministry of Education, Taipei, Taiwan, R.O.C
JIT Editorial Office, Library and Information Center, National Dong Hwa University
No. 1, Sec. 2, Da Hsueh Rd. Shoufeng, Hualien 97401, Taiwan, R.O.C.
Tel: +886-3-931-7017  E-mail: jit.editorial@gmail.com