Stolen-Verifier Attack on an Efficient Smartcard-Based One-Time Password Authentication Scheme
Summary :
Recently, Yeh, Shen, and Hwang proposed a smartcard-based one-time password authentication scheme as an improved version of S/KEY, and claimed that their scheme is superior to other similar schemes in security and efficiency. In this letter, we show that Yeh-Shen-Hwang's scheme is still vulnerable to a stolen-verifier attack that may cause serious security problems.
- Publication
- IEICE TRANSACTIONS on Communications Vol.E87-B No.8 pp.2374-2376
- Publication Date
- 2004/08/01
- Publicized
- Online ISSN
- DOI
- Type of Manuscript
- LETTER
- Category
- Fundamental Theories
Authors
Keyword
Latest Issue
Copyrights notice of machine-translated contents
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Cite this
Copy
Wei-Chi KU, Hao-Chuan TSAI, Maw-Jinn TSAUR, "Stolen-Verifier Attack on an Efficient Smartcard-Based One-Time Password Authentication Scheme" in IEICE TRANSACTIONS on Communications,
vol. E87-B, no. 8, pp. 2374-2376, August 2004, doi: .
Abstract: Recently, Yeh, Shen, and Hwang proposed a smartcard-based one-time password authentication scheme as an improved version of S/KEY, and claimed that their scheme is superior to other similar schemes in security and efficiency. In this letter, we show that Yeh-Shen-Hwang's scheme is still vulnerable to a stolen-verifier attack that may cause serious security problems.
URL: https://globals.ieice.org/en_transactions/communications/10.1587/e87-b_8_2374/_p
Copy
@ARTICLE{e87-b_8_2374,
author={Wei-Chi KU, Hao-Chuan TSAI, Maw-Jinn TSAUR, },
journal={IEICE TRANSACTIONS on Communications},
title={Stolen-Verifier Attack on an Efficient Smartcard-Based One-Time Password Authentication Scheme},
year={2004},
volume={E87-B},
number={8},
pages={2374-2376},
abstract={Recently, Yeh, Shen, and Hwang proposed a smartcard-based one-time password authentication scheme as an improved version of S/KEY, and claimed that their scheme is superior to other similar schemes in security and efficiency. In this letter, we show that Yeh-Shen-Hwang's scheme is still vulnerable to a stolen-verifier attack that may cause serious security problems.},
keywords={},
doi={},
ISSN={},
month={August},}
Copy
TY - JOUR
TI - Stolen-Verifier Attack on an Efficient Smartcard-Based One-Time Password Authentication Scheme
T2 - IEICE TRANSACTIONS on Communications
SP - 2374
EP - 2376
AU - Wei-Chi KU
AU - Hao-Chuan TSAI
AU - Maw-Jinn TSAUR
PY - 2004
DO -
JO - IEICE TRANSACTIONS on Communications
SN -
VL - E87-B
IS - 8
JA - IEICE TRANSACTIONS on Communications
Y1 - August 2004
AB - Recently, Yeh, Shen, and Hwang proposed a smartcard-based one-time password authentication scheme as an improved version of S/KEY, and claimed that their scheme is superior to other similar schemes in security and efficiency. In this letter, we show that Yeh-Shen-Hwang's scheme is still vulnerable to a stolen-verifier attack that may cause serious security problems.
ER -
FlyerIEICE has prepared a flyer regarding multilingual services. Please use the one in your native language.
English
