Security Analysis of a Remote User Authentication Scheme with Smart   Cards

Manoj Kumar

arXiv:0711.0128·cs.CR·November 2, 2007

Security Analysis of a Remote User Authentication Scheme with Smart Cards

Manoj Kumar

PDF

Open Access

TL;DR

This paper critically examines Yoon et al.'s remote user authentication scheme with smart cards, revealing security vulnerabilities in the password change process and resistance to parallel session attacks.

Contribution

It provides a security analysis of Yoon et al.'s scheme, identifying specific weaknesses and demonstrating that the scheme remains vulnerable despite improvements.

Findings

01

Password change phase is insecure

02

Scheme vulnerable to parallel session attack

03

Security flaws persist in the proposed scheme

Abstract

Yoon et al. proposed a new efficient remote user authentication scheme using smart cards to solve the security problems of W. C. Ku and S. M. Chen scheme. This paper reviews Yoon et al. scheme and then proves that the password change phase of Yoon et al. scheme is still insecure. This paper also proves that the Yoon et al. is still vulnerable to parallel session attack.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsAdvanced Authentication Protocols Security · User Authentication and Security Systems · Digital Rights Management and Security