已收录 273628 条政策
 政策提纲
  • 暂无提纲
An Improved Mutual Authentication Scheme with Smart Cards and Password under Trusted Computing
[摘要] In the traditional smart card-based password authentication schemes, the authentication is only applied to verify both of server and user, but not applied to verify the platform. Recently, Yang, Ma, and Jiang proposed a mutual authentication scheme with smart cards and password under trusted computing. Their scheme was designed to authenticate the platform. They claimed that their scheme could withstand most of the possible attacks, such as secure session key agreement, user identity anonymity, password free changing, and platform certification updating. However, we will show that their scheme is vulnerable to on-line guessing password attack with smart card, and man-in-the-middle attack. In this article, we also propose an improved Yang-Ma-Jiang's mutual authentication scheme to withstand the vulnerability in their scheme.
[发布日期]  [发布机构] Department of Computer Science and Information Engineering, Asia University, Taichung; 41354, Taiwan^1;Department of Telecommunication Engineering, Institut Teknologi Telkom Purwokerto, Purwokerto, Indonesia^2;Department of Computer Science, University of Taipei, Taipei, Taiwan^3;Department of Medical Research, China Medical University Hospital, China Medical University, Taichung; 40402, Taiwan^4
[效力级别] 无线电电子学 [学科分类] 计算机科学(综合)
[关键词] Man in the middle attacks;Mutual authentication;Password attacks;Password authentication;Secure session;User identity [时效性] 
   浏览次数:50      统一登录查看全文      激活码登录查看全文