An Improved Authentication Protocol Based on One-Way Hash Functions and Diffie-Hellman Key Exchange

Marko Hölbl; Tatjana Welzer

doi:10.1109/ARES.2009.12

2009 International Conference on Availability, Reliability and Security

An Improved Authentication Protocol Based on One-Way Hash Functions and Diffie-Hellman Key Exchange

Year: 2009, Pages: 894-898

DOI Bookmark: 10.1109/ARES.2009.12

Authors

Marko Hölbl
Tatjana Welzer

Abstract

Recently, Yoon and Yoo proposed a new authentication protocol based on a one-way hash function and Diffie-Hellman key exchange, which is based on the protocol by Wu-Chieu and Lee-Lin-Chang. They claim that their protocol is secure, but we show it is susceptible to password guessing if an adversary gains possession of the smart card. Additionally, we propose an improved protocol which can withstand the presented attack.

Like what you’re reading?

Already a member?

Get this article FREE with a new membership!

Security of Indirect-Authenticated Key Exchange Protocol
Intelligent Information Hiding and Multimedia Signal Processing, International Conference on
An Efficient Verifiable Implicit Asking Protocol for Diffie-Hellman Key Exchange
2011 Workshop on Lightweight Security & Privacy: Devices, Protocols, and Applications
Breaking a Smart Card based Secure Password Authentication Scheme
2008 International Conference on Information Security and Assurance (ISA '08)
Cryptanalysis and Improvement of an 'Efficient Remote Mutual Authentication and Key Agreement'
2008 IEEE Asia-Pacific Services Computing Conference
A New Authenticated Key Agreement Protocol for Wireless Mobile Networks
Information Assurance and Security, International Symposium on
A secure improvement on the user-friendly remote authentication scheme with no time concurrency mech
20th International Conference on Advanced Information Networking and Applications - Volume 1 (AINA'06)
Improving the Generalized Password-Based Authenticated Key Agreement Protocol
GPC Workshops - 2008 3rd International Conference on Grid and Pervasive Computing Workshops
A N-party Diffie-Hellman Key Exchange Protocol Based on Verifier
Communications and Mobile Computing, International Conference on
Security Weaknesses in Chang and Wu?s Key Agreement Protocol for a Multi-Server Environment
2008 IEEE International Conference on e-Business Engineering
Improved Analysis on Chang and Chang Password Key Exchange Protocol
Advances in Computing, Control, and Telecommunication Technologies, International Conference on

An Improved Authentication Protocol Based on One-Way Hash Functions and Diffie-Hellman Key Exchange

Authors

Abstract

Related Articles