dc.contributor | 資科系 | zh_Tw |
dc.creator (作者) | 左瑞麟 | zh_TW |
dc.creator (作者) | Pan, Jeng-Shyang | en_US |
dc.creator (作者) | Tso, Raylin | en_US |
dc.creator (作者) | Wu, Mu-En | en_US |
dc.creator (作者) | Chen, Chien-Ming | en_US |
dc.date (日期) | 2015-08 | en_US |
dc.date.accessioned | 8-八月-2017 17:00:35 (UTC+8) | - |
dc.date.available | 8-八月-2017 17:00:35 (UTC+8) | - |
dc.date.issued (上傳時間) | 8-八月-2017 17:00:35 (UTC+8) | - |
dc.identifier.uri (URI) | http://nccur.lib.nccu.edu.tw/handle/140.119/111679 | - |
dc.description.abstract (摘要) | User authentication is an important technology for E-commerce, especially when it is done by using smart cards. Authentication schemes based on smart cards can guarantee that a user using the smart card is legal and has the authorization to access resources (eg., a bank account or a remote server) behind the smart card. Due to its usefulness, authentication schemes based on smart cards have been widely researched in recent years. In 2014, Choi introduced a security enhanced anonymous multi-server authenticated key agreement scheme using smart card and biometrics. Kuo et. al recently found that Choi’s scheme is insecure against card losing attack and made an improvement to deal with the problem. However, in this paper, we will show that Kuo et. al’s new scheme made the situation even worse. In their new scheme, any server having communicated with and received information from a card of a user can impersonate the user and enjoy the service (eg., on-line shopping) from the server on behalf of the original user without the card on-hand. We conduct a detailed analysis of flaws in their scheme in the hope that no similar mistakes are made in the future. An improved scheme is left as a future work. © Springer International Publishing Switzerland 2016. | en_US |
dc.format.extent | 130079 bytes | - |
dc.format.mimetype | application/pdf | - |
dc.relation (關聯) | Advances in Intelligent Systems and Computing, 388, 59-69 | en_US |
dc.relation (關聯) | 9th International Conference on Genetic and Evolutionary Computing, ICGEC 2015; Yangon; Myanmar; 26 August 2015 到 28 August 2015; 代碼 141219 | en_US |
dc.subject (關鍵詞) | Biometrics; Smart cards; Transportation; Anonymous authentication; Authenticated key agreement; Authentication scheme; Biometric informations; Multi-server environment; Security; Security analysis; User authentication; Authentication | en_US |
dc.title (題名) | Security analysis of an anonymous authentication scheme based on smart cards and biometrics for multi-server environments | en_US |
dc.type (資料類型) | conference | |
dc.identifier.doi (DOI) | 10.1007/978-3-319-23207-2_7 | |
dc.doi.uri (DOI) | http://dx.doi.org/10.1007/978-3-319-23207-2_7 | |