A Smart Card Modeo Password Authentication Scheme Baswd on Lucas Functions

Abstract

The Lucas function is a special form of second-order linear recurrence relation using a large public integer as the modulus. With the usage of tamper-free smart cards, we present a remote login authentication scheme based on Lucas functions. Like the RSA system, the Lucas-based cryptosystem is susceptible to the chosen-message forgery attack. However such vulnerability does not affect the security of the proposed scheme has the following characteristics：(1) users can freely choose their passwords with fixed or variable length；(2) users can perform on-line registration for their own smart cards and passwords with the password center ；(3) each user and his own smart card has unique one-to-one correspondence, hence no identify for the user is required；(4) the authentication server can preserved secrets；(5) any adversary cannot successfully replay an intercepted legal login request in the later time；(6) any adversary cannot success fully forge a legal login request with an illegally possessed smart card.