Weaknesses of a Remote User Authentication Scheme Using Smart Cards for Multi-Server Architecture

Wei-Chi KU  Shen-Tien CHANG  Min-Hung CHIANG  

IEICE TRANSACTIONS on Communications   Vol.E88-B   No.8   pp.3451-3454
Publication Date: 2005/08/01
Online ISSN: 
DOI: 10.1093/ietcom/e88-b.8.3451
Print ISSN: 0916-8516
Type of Manuscript: LETTER
Category: Fundamental Theories for Communications
Euclidean plane,  forgery attack,  multi-server architecture,  password authentication,  smart card,  

Full Text: PDF(75.4KB)>>
Buy this Article

Recently, Lin, Hwang, and Li proposed an efficient remote authentication scheme using smart cards for multi-server architecture based on the geometric property of the Euclidean plane. Herein, we show that their scheme is vulnerable to two forgery attacks and a password-guessing attack, and is not easily repairable. Furthermore, their scheme lacks a proper user eviction mechanism.