文章基本信息

标题：Improvement of a Fingerprint-Based Remote User Authentication Scheme
本地全文：下载
作者：Jing Xu ; Wen-Tao Zhu ; Deng-Guo Feng 等
期刊名称：International Journal of Security and Its Applications
印刷版ISSN：1738-9976
出版年度：2008
卷号：2
期号：3
出版社：SERSC
摘要：Password authentication has been adopted as one of the most commonly used solutions in network environments to protect resources from unauthorized access. Recently, Khan et al. proposed an efficient fingerprint-based remote user authentication scheme with smart cards [15], in which a password/verification table is not required on the remote server, and users are allowed to choose and update their passwords freely. In this paper, we show that their scheme is vulnerable to the parallel session attack. Furthermore, their scheme is susceptible to the impersonation attack provided that the information stored in the smart card is disclosed by an adversary. We also propose an improved scheme which is immune to the presented attacks.