學術產出-會議論文

文章檢視/開啟

書目匯出

Google ScholarTM

政大圖書館

引文資訊

TAIR相關學術產出

題名 Security analysis of an anonymous authentication scheme based on smart cards and biometrics for multi-server environments
作者 左瑞麟
Pan, Jeng-Shyang
Tso, Raylin
Wu, Mu-En
Chen, Chien-Ming
貢獻者 資科系
關鍵詞 Biometrics; Smart cards; Transportation; Anonymous authentication; Authenticated key agreement; Authentication scheme; Biometric informations; Multi-server environment; Security; Security analysis; User authentication; Authentication
日期 2015-08
上傳時間 8-八月-2017 17:00:35 (UTC+8)
摘要 User authentication is an important technology for E-commerce, especially when it is done by using smart cards. Authentication schemes based on smart cards can guarantee that a user using the smart card is legal and has the authorization to access resources (eg., a bank account or a remote server) behind the smart card. Due to its usefulness, authentication schemes based on smart cards have been widely researched in recent years. In 2014, Choi introduced a security enhanced anonymous multi-server authenticated key agreement scheme using smart card and biometrics. Kuo et. al recently found that Choi’s scheme is insecure against card losing attack and made an improvement to deal with the problem. However, in this paper, we will show that Kuo et. al’s new scheme made the situation even worse. In their new scheme, any server having communicated with and received information from a card of a user can impersonate the user and enjoy the service (eg., on-line shopping) from the server on behalf of the original user without the card on-hand. We conduct a detailed analysis of flaws in their scheme in the hope that no similar mistakes are made in the future. An improved scheme is left as a future work. © Springer International Publishing Switzerland 2016.
關聯 Advances in Intelligent Systems and Computing, 388, 59-69
9th International Conference on Genetic and Evolutionary Computing, ICGEC 2015; Yangon; Myanmar; 26 August 2015 到 28 August 2015; 代碼 141219
資料類型 conference
DOI http://dx.doi.org/10.1007/978-3-319-23207-2_7
dc.contributor 資科系zh_Tw
dc.creator (作者) 左瑞麟zh_TW
dc.creator (作者) Pan, Jeng-Shyangen_US
dc.creator (作者) Tso, Raylinen_US
dc.creator (作者) Wu, Mu-Enen_US
dc.creator (作者) Chen, Chien-Mingen_US
dc.date (日期) 2015-08en_US
dc.date.accessioned 8-八月-2017 17:00:35 (UTC+8)-
dc.date.available 8-八月-2017 17:00:35 (UTC+8)-
dc.date.issued (上傳時間) 8-八月-2017 17:00:35 (UTC+8)-
dc.identifier.uri (URI) http://nccur.lib.nccu.edu.tw/handle/140.119/111679-
dc.description.abstract (摘要) User authentication is an important technology for E-commerce, especially when it is done by using smart cards. Authentication schemes based on smart cards can guarantee that a user using the smart card is legal and has the authorization to access resources (eg., a bank account or a remote server) behind the smart card. Due to its usefulness, authentication schemes based on smart cards have been widely researched in recent years. In 2014, Choi introduced a security enhanced anonymous multi-server authenticated key agreement scheme using smart card and biometrics. Kuo et. al recently found that Choi’s scheme is insecure against card losing attack and made an improvement to deal with the problem. However, in this paper, we will show that Kuo et. al’s new scheme made the situation even worse. In their new scheme, any server having communicated with and received information from a card of a user can impersonate the user and enjoy the service (eg., on-line shopping) from the server on behalf of the original user without the card on-hand. We conduct a detailed analysis of flaws in their scheme in the hope that no similar mistakes are made in the future. An improved scheme is left as a future work. © Springer International Publishing Switzerland 2016.en_US
dc.format.extent 130079 bytes-
dc.format.mimetype application/pdf-
dc.relation (關聯) Advances in Intelligent Systems and Computing, 388, 59-69en_US
dc.relation (關聯) 9th International Conference on Genetic and Evolutionary Computing, ICGEC 2015; Yangon; Myanmar; 26 August 2015 到 28 August 2015; 代碼 141219en_US
dc.subject (關鍵詞) Biometrics; Smart cards; Transportation; Anonymous authentication; Authenticated key agreement; Authentication scheme; Biometric informations; Multi-server environment; Security; Security analysis; User authentication; Authenticationen_US
dc.title (題名) Security analysis of an anonymous authentication scheme based on smart cards and biometrics for multi-server environmentsen_US
dc.type (資料類型) conference
dc.identifier.doi (DOI) 10.1007/978-3-319-23207-2_7
dc.doi.uri (DOI) http://dx.doi.org/10.1007/978-3-319-23207-2_7