¹South China Institute of Software Engineering, Guangzhou 510990, P.R.China
²School of Information Management, Sun Yat-sen University, Guangzhou 510006, P.R.China
³Key Lab of Network Security and Cryptology, Fujian Normal University, Fuzhou 350007, P.R.China

---

Abstract—Password-based authentications using smart cards are very necessary between login users and a remote server. Smart card security breach threatens the security of password-based authentication schemes with smart cards. A password-based authentication scheme with smart cards against smart card security breach was proposed by C.T. Li et al. recently. However, it is noted that Li et al.'s scheme needs a verification table in the remote server. A verification table should not be included in a good password-based authentication scheme. In this paper, based on hash functions, a secure password-based authentication scheme against smart card security breach and without maintaining verification tables is proposed, which improves the security of Li et al.'s scheme.

Index Terms—Cryptology, password-based authentication, smart card, hash function.

[PDF]

Cite: Jing Shen, Yusong Du, "Improving the Password-Based Authentication against Smart Card Security Breach," Journal of Software vol. 8, no. 4, pp. 979-986, 2013.