Improvements on Hsiang and Shih's Remote User Authentication Scheme Using Smart Cards

Jung-Yoon KIM  Hyoung-Kee CHOI  

IEICE TRANSACTIONS on Information and Systems   Vol.E95-D   No.10   pp.2393-2400
Publication Date: 2012/10/01
Online ISSN: 1745-1361
DOI: 10.1587/transinf.E95.D.2393
Print ISSN: 0916-8532
Type of Manuscript: PAPER
Category: Information Network
network-level security and protection,  authentication,  security,  password,  

Full Text: PDF>>
Buy this Article

We demonstrate how Hsiang and Shih's authentication scheme can be compromised and then propose an improved scheme based on the Rabin cryptosystem to overcome its weaknesses. Furthermore, we discuss the reason why we should use an asymmetric encryption algorithm to secure a password-based remote user authentication scheme using smart cards. We formally prove the security of our proposed scheme using the BAN logic.