Improved User Authentication Scheme with User Anonymity for Wireless Communications

Miyoung KANG  Hyun Sook RHEE  Jin-Young CHOI  

IEICE TRANSACTIONS on Fundamentals of Electronics, Communications and Computer Sciences   Vol.E94-A   No.2   pp.860-864
Publication Date: 2011/02/01
Online ISSN: 1745-1337
DOI: 10.1587/transfun.E94.A.860
Print ISSN: 0916-8508
Type of Manuscript: LETTER
Category: Cryptography and Information Security
authentication,  anonymity,  wireless communications,  

Full Text: PDF(81.3KB)>>
Buy this Article

We propose a user authentication scheme with user anonymity for wireless communications. Previous works have some weaknesses such as (1) user identity can be revealed from the login message, and (2) after a smart card is no longer valid or is expired, users having the expired smart cards can generate valid login messages under the assumption that the server does not maintain the user information. In this letter, we propose a new user authentication scheme for providing user anonymity. In the proposed scheme, the server is capable of detecting forged login messages by users having only expired smart cards and their passwords without storing user information on the server.