Three-tier authentication scheme using smart card

Tien Ho Chen, Wai-Chi Fang, Shih Kang, Tai Hoon Kim*

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

1 Scopus citations


With current network technologies, various business activities can be done in the Internet world, and how to assure the security of these activities in an insecure communication channel becomes the most important issue. Recently, Hsiang-Shih proposed a remote user authentication scheme for multiserver environment as an improved scheme over Liao and Wang's scheme, and asserted that their scheme can escape from masquerade attack, server spoofing attack, etc. In this paper, we show that Hsiang and Shih's scheme still suffers from masquerade attack. To mend the problem, we offer a three-tier authentication using smart card procedure with dynamic ID and Diffie-Hellman's method to improve Hsiang- Shih's insecure scheme. Our scheme is suitable for applications with higher security requirement.

Original languageEnglish
Pages (from-to)1277-1291
Number of pages15
Issue number3
StatePublished - 1 Mar 2012


  • Authentication
  • Dynamic id
  • Multi-server
  • Smart card
  • Three-tier


Dive into the research topics of 'Three-tier authentication scheme using smart card'. Together they form a unique fingerprint.

Cite this