期刊名称:International Journal of Innovative Research in Computer and Communication Engineering
印刷版ISSN:2320-9798
电子版ISSN:2320-9801
出版年度:2018
卷号:6
期号:1
页码:458
DOI:10.15680/IJIRCCE.2017.0601076
出版社:S&S Publications
摘要:Remote authentication is of great importance to protect a networked server against malicious remoteusers in distributed systems. The proposed system initiates the study of two specific security threats on smart-cardbasedpassword authentication in distributed systems. A smart-card-based password authentication scheme involves aservice provider and a service requester, and typically consists of three phases. Smart-card-based passwordauthentication is widely used in security mechanisms to determine the remote client, who must hold a valid smart cardand password to carry out authentication with the server. Using two recently proposed protocols as case studies, wedemonstrate two new types of adversaries with smart card adversaries with pre-computed data stored in the smart cardadversaries with different data (with respect to different time slots) stored in the smart card. These threats, thoughrealistic in distributed systems, have never been studied in the literature. In addition to point out the vulnerabilities, wepropose the countermeasures to thwart the security threats and secure the protocols.
