A Dynamic ID-based Remote User Authentication Scheme

Manik Lal Das; Ashutosh Saxena; and Ved P. Gulati

arXiv:0712.2235·cs.CR·November 18, 2016

A Dynamic ID-based Remote User Authentication Scheme

Manik Lal Das, Ashutosh Saxena, and Ved P. Gulati

PDF

TL;DR

This paper introduces a new dynamic ID-based remote user authentication scheme using smart cards that allows password changes and enhances security against various attacks without maintaining a verifier table.

Contribution

The proposed scheme is the first to enable password changes and eliminate verifier tables in dynamic ID-based remote authentication, improving security and flexibility.

Findings

01

Secure against ID-theft, reply, forgery, guessing, insider, and stolen verifier attacks.

02

Allows users to freely choose and change passwords.

03

Does not require maintaining a verifier table.

Abstract

Password-based authentication schemes are the most widely used techniques for remote user authentication. Many static ID-based remote user authentication schemes both with and without smart cards have been proposed. Most of the schemes do not allow the users to choose and change their passwords, and maintain a verifier table to verify the validity of the user login. In this paper we present a dynamic ID-based remote user authentication scheme using smart cards. Our scheme allows the users to choose and change their passwords freely, and do not maintain any verifier table. The scheme is secure against ID-theft, and can resist the reply attacks, forgery attacks, guessing attacks, insider attacks and stolen verifier attacks.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.