[Resource Topic] 2010/181: Cryptanalysis of a DoS-resistant ID-based password authentication

Welcome to the resource topic for 2010/181

Cryptanalysis of a DoS-resistant ID-based password authentication

Authors: He Debiao, Chen Jianhua, Hu Jin


Remote authentication is a method to authenticate remote users over insecure communication channel. Password-based authentication schemes have been widely deployed to verify the legitimacy of remote users. Very recently, Hwang et al. proposed a DoS-resistant ID-based password authentication scheme using smart cards. In the current work, we are concerned with the password security of the Hwang et al.’s scheme. We first show that their scheme is vulnerable to a password guessing attack in which an attacker exhaustively enumerates all possible passwords in an off-line manner to determine the correct one. We then figure out how to eliminate the security vulnerability of their scheme.

ePrint: https://eprint.iacr.org/2010/181

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .