Publication View

Impersonation Attack on the ID-based Password Authentication Scheme using Smart Cards and Fingerprints (2005)

Minho Kim

Abstract

Recently, Kim, Lee, and Yoo proposed a ID-based password authentication schemes [4], a timestamp based scheme and a nonce based scheme, which does not require the dictionary of passwords or verification tables. These are based on the concepts of ID-based schemes, fingerprint verification systems, and the smart cards. They proposed their schemes are secure against the off-line guessing, message replay, and impersonation attacks. Nevertheless, we show that the Kim-Lee-Yoo (KLY) protocol is still vulnerable to the replay and impersonation attacks. KeyWords: ID-based, nonce, timestamp, password authentication, smart card, fingerprint, impersonation attack 1

Publication details

Download	http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.91.2916
Source	http://islab.oregonstate.edu/koc/ece478/05Report/Kim.pdf
Contributors	CiteSeerX
Repository	CiteSeerX - Scientific Literature Digital Library and Search Engine (United States)
Type	text
Language	English
Relation	10.1.1.54.922, 10.1.1.54.7643