| 題名: | Cryptanalysis of a New Password Authentication Scheme Using Hash Functions |
| 作者: | Ku, Wei-Chi Chiang, Min-Hung Chang, Shen-Tien |
| 關鍵字: | Password authentication hash function guessing attack denial-of-service attack stolenverifier attack |
| 期刊名/會議名稱: | 2004 ICS會議 |
| 摘要: | In 2000, Peyravian and Zunic proposed an efficient hash-based password authentication scheme that can be easily implemented. Later, Lee, Li, and Hwang demonstrated that Peyravian- Zunic’s scheme is vulnerable to an off-line guessing attack, and then proposed an improved version. However, Ku, Chen, and Lee pointed out that their scheme can not resist an off-line guessing attack, a denial-of-service attack, and a stolen- verifier attack. Recently, Yoon, Ryu, and Yoo proposed an improved scheme of Lee-Li-Hwang’s scheme. Unfortunately, we find that Yoon-Ryu-Yoo’s scheme is still vulnerable to an off-line guessing attack and a stolen-verifier attack. Furthermore, their scheme can not achieve backward secrecy. Herein, we first briefly review Yoon-Ryu-Yoo’s scheme and then describe its weaknesses. |
| 日期: | 2006-10-16T05:33:45Z |
| 分類: | 2004年 ICS 國際計算機會議 |
文件中的檔案:
| 檔案 | 描述 | 大小 | 格式 | |
|---|---|---|---|---|
| ce07ics002004000144.pdf | 555.73 kB | Adobe PDF | 檢視/開啟 |
在 DSpace 系統中的文件,除了特別指名其著作權條款之外,均受到著作權保護,並且保留所有的權利。