An Improved Timestamp-Based Password Authentication Scheme Using Smart Cards

TL;DR

This paper introduces an enhanced timestamp-based password authentication scheme utilizing smart cards, addressing security flaws in previous schemes and providing robust protection against forgery attacks in distributed systems.

Contribution

The paper proposes a new, more secure timestamp-based authentication scheme that defends against forgery attacks, improving upon prior methods while maintaining efficiency.

Findings

Successfully defends against forgery attacks

Shows improved security over previous schemes

Provides detailed cryptanalysis and efficiency analysis

Abstract

With the recent proliferation of distributed systems and networking, remote authentication has become a crucial task in many networking applications. Various schemes have been proposed so far for the two-party remote authentication; however, some of them have been proved to be insecure. In this paper, we propose an efficient timestamp-based password authentication scheme using smart cards. We show various types of forgery attacks against a previously proposed timestamp-based password authentication scheme and improve that scheme to ensure robust security for the remote authentication process, keeping all the advantages that were present in that scheme. Our scheme successfully defends the attacks that could be launched against other related previous schemes. We present a detailed cryptanalysis of previously proposed Shen et. al scheme and an analysis of the improved scheme to show its improvements and efficiency.