Three-tier authentication scheme using smart card

Tien Ho Chen; Wai-Chi Fang; Shih Kang; Tai Hoon Kim

Three-tier authentication scheme using smart card

Tien Ho Chen, Wai-Chi Fang, Shih Kang, Tai Hoon Kim^*

^*Corresponding author for this work

Research output: Contribution to journal › Article › peer-review

1 Scopus citations

Abstract

With current network technologies, various business activities can be done in the Internet world, and how to assure the security of these activities in an insecure communication channel becomes the most important issue. Recently, Hsiang-Shih proposed a remote user authentication scheme for multiserver environment as an improved scheme over Liao and Wang's scheme, and asserted that their scheme can escape from masquerade attack, server spoofing attack, etc. In this paper, we show that Hsiang and Shih's scheme still suffers from masquerade attack. To mend the problem, we offer a three-tier authentication using smart card procedure with dynamic ID and Diffie-Hellman's method to improve Hsiang- Shih's insecure scheme. Our scheme is suitable for applications with higher security requirement.

Original language	English
Pages (from-to)	1277-1291
Number of pages	15
Journal	Information
Volume	15
Issue number	3
State	Published - 1 Mar 2012

Keywords

Authentication
Dynamic id
Multi-server
Smart card
Three-tier

Cite this

@article{6cadf83905e34109bdcb3ad43fc3dc64,

title = "Three-tier authentication scheme using smart card",

abstract = "With current network technologies, various business activities can be done in the Internet world, and how to assure the security of these activities in an insecure communication channel becomes the most important issue. Recently, Hsiang-Shih proposed a remote user authentication scheme for multiserver environment as an improved scheme over Liao and Wang's scheme, and asserted that their scheme can escape from masquerade attack, server spoofing attack, etc. In this paper, we show that Hsiang and Shih's scheme still suffers from masquerade attack. To mend the problem, we offer a three-tier authentication using smart card procedure with dynamic ID and Diffie-Hellman's method to improve Hsiang- Shih's insecure scheme. Our scheme is suitable for applications with higher security requirement.",

keywords = "Authentication, Dynamic id, Multi-server, Smart card, Three-tier",

author = "Chen, {Tien Ho} and Wai-Chi Fang and Shih Kang and Kim, {Tai Hoon}",

year = "2012",

month = mar,

day = "1",

language = "English",

volume = "15",

pages = "1277--1291",

journal = "Information",

issn = "1343-4500",

publisher = "International Information Institute",

number = "3",

}

TY - JOUR

T1 - Three-tier authentication scheme using smart card

AU - Chen, Tien Ho

AU - Fang, Wai-Chi

AU - Kang, Shih

AU - Kim, Tai Hoon

PY - 2012/3/1

Y1 - 2012/3/1

N2 - With current network technologies, various business activities can be done in the Internet world, and how to assure the security of these activities in an insecure communication channel becomes the most important issue. Recently, Hsiang-Shih proposed a remote user authentication scheme for multiserver environment as an improved scheme over Liao and Wang's scheme, and asserted that their scheme can escape from masquerade attack, server spoofing attack, etc. In this paper, we show that Hsiang and Shih's scheme still suffers from masquerade attack. To mend the problem, we offer a three-tier authentication using smart card procedure with dynamic ID and Diffie-Hellman's method to improve Hsiang- Shih's insecure scheme. Our scheme is suitable for applications with higher security requirement.

AB - With current network technologies, various business activities can be done in the Internet world, and how to assure the security of these activities in an insecure communication channel becomes the most important issue. Recently, Hsiang-Shih proposed a remote user authentication scheme for multiserver environment as an improved scheme over Liao and Wang's scheme, and asserted that their scheme can escape from masquerade attack, server spoofing attack, etc. In this paper, we show that Hsiang and Shih's scheme still suffers from masquerade attack. To mend the problem, we offer a three-tier authentication using smart card procedure with dynamic ID and Diffie-Hellman's method to improve Hsiang- Shih's insecure scheme. Our scheme is suitable for applications with higher security requirement.

KW - Authentication

KW - Dynamic id

KW - Multi-server

KW - Smart card

KW - Three-tier

UR - http://www.scopus.com/inward/record.url?scp=84861018163&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:84861018163

SN - 1343-4500

VL - 15

SP - 1277

EP - 1291

JO - Information

JF - Information

IS - 3

ER -

Three-tier authentication scheme using smart card

Abstract

Keywords

Other files and links

Fingerprint

Cite this