Cryptanalysis of a Remote Password Authentication Scheme

doi:10.7523/j.issn.2095-6134.2002.3.002

›› 2002, Vol. 19 ›› Issue (3): 229-232.DOI: 10.7523/j.issn.2095-6134.2002.3.002

Previous Articles Next Articles

Cryptanalysis of a Remote Password Authentication Scheme

FANG Gen-Xi¹, DAI Zong-Duo¹, YANG Jun-Hui²

1. SKLOIS, Graduate School of USTC, Beijing 100039;
2. Institute of Software, CAS, Beijing 100080

Received:2002-06-03 Online:2002-05-18

Abstract

Abstract:

This paper analyzes the security of Tan's scheme for remote password authentication based on cross-product. We point out that to impersonate one user's log-in reguest, the intruders need only to know the user's two log-in requests, or need only to know one log-in request after booking a smart card and getting some useful information from it, so the scheme is not secure. Some modifications to Tan's scheme for avoiding the above two kinds of possible attacks are given.

Key words: remote password authentication, smart card, time stamp, Hash function

CLC Number:

TP393.08

FANG Gen-Xi, DAI Zong-Duo, YANG Jun-Hui. Cryptanalysis of a Remote Password Authentication Scheme[J]. , 2002, 19(3): 229-232.

[1]	DING Zhi-Guo, ZHU Xue-Yong, LEI Ying-Ke. An RFID authentication protocol based on CDMA and anti-collision function [J]. , 2010, 27(3): 397-403.
[2]	XUE Yu, WU Wen-Ling, WANG Zhang-Yi. Survey on the candidate algorithms of SHA-3 Hash function family [J]. , 2009, 26(5): 577-586.
[3]	Zhang Hong, Wang Ying. Fragile Watermarking Algorithm Based on Hash Function in Wavelet Domain [J]. Journal of University of Chinese Academy of Sciences, 2008, 25(1): 86-92.
[4]	XI Qing, WU Wen-Ling. Study of Relation Between the Partial Balance of Compression Function and the Balance of Hash Function [J]. , 2006, 23(3): 412-415.

Cryptanalysis of a Remote Password Authentication Scheme

PDF (PC)

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 4

Recommended Articles

Metrics

Comments