English

Cryptanalysis of Yang-Wang-Chang's Password Authentication Scheme with Smart Cards

Cryptography and Security 2008-12-18 v1
Authors: Al-Sakib Khan Pathan , Choong Seon Hong
View on arXiv PDF

Abstract

In 2005, Yang, Wang, and Chang proposed an improved timestamp-based password authentication scheme in an attempt to overcome the flaws of Yang-Shieh_s legendary timestamp-based remote authentication scheme using smart cards. After analyzing the improved scheme proposed by Yang-Wang-Chang, we have found that their scheme is still insecure and vulnerable to four types of forgery attacks. Hence, in this paper, we prove that, their claim that their scheme is intractable is incorrect. Also, we show that even an attack based on Sun et al._s attack could be launched against their scheme which they claimed to resolve with their proposal.

Keywords

authentication protocol biometric authentication cryptography

Cite

@article{arxiv.0804.1185,
  title  = {Cryptanalysis of Yang-Wang-Chang's Password Authentication Scheme with Smart Cards},
  author = {Al-Sakib Khan Pathan and Choong Seon Hong},
  journal= {arXiv preprint arXiv:0804.1185},
  year   = {2008}
}

Comments

3 Pages

Related papers

View all related →
Cryptography and Security · Computer Science
An Improved Timestamp-Based Password Authentication Scheme Using Smart Cards
Al-Sakib Khan Pathan, Choong Seon Hong
2015-05-13
Cryptography and Security · Computer Science
An Improved Remote User Authentication Scheme Using Smart Cards
Manoj Kumar
2007-05-23
Cryptography and Security · Computer Science
Security Analysis of a Remote User Authentication Scheme with Smart Cards
Manoj Kumar
2007-11-02
Cryptography and Security · Computer Science
The Password Change Phase is Still Insecure
Manoj Kumar
2007-05-23
Cryptography and Security · Computer Science
Cryptanalysis of Song's advanced smart card based password authentication protocol
Juan E. Tapiador, Julio C. Hernandez-Castro, P. Peris-Lopez, John A. Clark
2011-11-14
Cryptography and Security · Computer Science
The Modified Scheme is still vulnerable to the parallel Session Attack
Manoj Kumar
2007-05-23
Cryptography and Security · Computer Science
Cryptanalysis and Improvement of Jiang et al.'s Smart Card Based Remote User Authentication Scheme
Dheerendra Mishra, Ankita Chaturvedi, Sourav Mukhopadhyay
2013-12-18
Cryptography and Security · Computer Science
Faults and Improvements of an Enhanced Remote User Authentication Scheme Using Smart Cards
Manoj Kumar
2007-05-23
Cryptography and Security · Computer Science
Cryptanalysis And Further Improvement Of A Biometric-Based Remote User Authentication Scheme Using Smart Cards
Ashok Kumar Das
2011-03-17
Cryptography and Security · Computer Science
Comments on Five Smart Card Based Password Authentication Protocols
Yalin Chen, Jue-Sam Chou*, Chun-Hui Huang
2010-07-02
Cryptography and Security · Computer Science
A Robust Password-Based Multi-Server Authentication Scheme
Vorugunti Chandra Sekhar, Mrudula Sarvabhatla
2014-01-24
Cryptography and Security · Computer Science
Cryptanalysis of Sun and Cao's Remote Authentication Scheme with User Anonymity
Dheerendra Mishra
2014-04-15
Cryptography and Security · Computer Science
On the Security of Liaw et al.'s Scheme
Amit K Awasthi
2008-06-06
Cryptography and Security · Computer Science
On the Security of ``an efficient and complete remote user authentication scheme''
Manik Lal Das
2008-02-18
Cryptography and Security · Computer Science
Cryptanalysis of a more efficient and secure dynamic id-based remote user authentication scheme
Mohammed Aijaz Ahmed, D. Rajya Lakshmi, Sayed Abdul Sattar
2010-07-15
Cryptography and Security · Computer Science
Cryptanalysis of A Secure Remote User Authentication Scheme Using Smart Cards
Tanmoy Maitra
2015-02-18
Cryptography and Security · Computer Science
A Flexible and Secure Remote Systems Authentication Scheme Using Smart Cards
Manik Lal Das
2008-01-04
Cryptography and Security · Computer Science
A New Remote User Authentication Scheme Using Smart Cards with Check Digits
Amit K Awasthi
2007-05-23
Cryptography and Security · Computer Science
Comments on "Improved Efficient Remote User Authentication Schemes"
Manik Lal Das
2007-12-19
Cryptography and Security · Computer Science
Design and Analysis of a Secure Three Factor User Authentication Scheme Using Biometric and Smart Card
Hossen Asiful Mustafa, Hasan Muhammad Kafi
2017-11-06
Cryptography and Security · Computer Science
Cryptanalysis on Four Two-Party Authentication Protocols
Yalin Chen, Jue-Sam Chou*, Chun-Hui Huang
2010-07-02
Cryptography and Security · Computer Science
Cryptanalysis of An Advanced Temporal Credential-Based Security Scheme with Mutual Authentication and Key Agreement for Wireless Sensor Networks
Chandra Sekhar Vorugunti, Mrudula Sarvabhatla
2013-11-14
Quantum Physics · Physics
Withdrawing this manuscript
Zhan-jun Zhang, Yi-min Liu, Hao Yuan
2007-05-23
Cryptography and Security · Computer Science
A Novel and Efficient Bilateral Remote User Authentication Scheme Using Smart Cards
Al-Sakib Khan Pathan, Choong Seon Hong, Tatsuya Suda
2016-11-18
Cryptography and Security · Computer Science
Cryptanalysis of an Efficient Signcryption Scheme with Forward Secrecy Based on Elliptic Curve
M. Toorani, A. A. Beheshti
2012-03-20
R2 v1 2026-06-21T10:28:39.679Z