A remote user authentication scheme without using smart cards

Hyun Sook Rhee, Jeong Ok Kwon, Dong Hoon Lee

Research output: Contribution to journalArticle

60 Citations (Scopus)

Abstract

User authentication is one of the fundamental procedures to ensure secure communications over an insecure public network channel. Especially, due to tamper-resistance and convenience in managing a password file, various user authentication schemes using smart cards have been proposed. A smart card however far from ubiquitous because of the high cost of a smart card and the infrastructure requirements. In this paper, we study secure user authentication using only a common storage device such as a universal serial bus (USB) memory, instead of using smart cards. We first show that the existing schemes using smart cards cannot be immediately converted into schemes using a common storage device. We then propose a practical and secure user authentication scheme, capable of supporting the use of the common storage device, which retains all the advantages of schemes using smart cards.

Original languageEnglish
Pages (from-to)6-13
Number of pages8
JournalComputer Standards and Interfaces
Volume31
Issue number1
DOIs
Publication statusPublished - 2009 Jan 1

Fingerprint

Smart cards
Authentication
communications
infrastructure
costs
Data storage equipment
Costs

Keywords

  • Cryptography
  • Password
  • Smart card
  • User authentication

ASJC Scopus subject areas

  • Software
  • Hardware and Architecture
  • Law

Cite this

A remote user authentication scheme without using smart cards. / Rhee, Hyun Sook; Kwon, Jeong Ok; Lee, Dong Hoon.

In: Computer Standards and Interfaces, Vol. 31, No. 1, 01.01.2009, p. 6-13.

Research output: Contribution to journalArticle

Rhee, Hyun Sook ; Kwon, Jeong Ok ; Lee, Dong Hoon. / A remote user authentication scheme without using smart cards. In: Computer Standards and Interfaces. 2009 ; Vol. 31, No. 1. pp. 6-13.
@article{d6d38c1c861546d29f26c065780beab2,
title = "A remote user authentication scheme without using smart cards",
abstract = "User authentication is one of the fundamental procedures to ensure secure communications over an insecure public network channel. Especially, due to tamper-resistance and convenience in managing a password file, various user authentication schemes using smart cards have been proposed. A smart card however far from ubiquitous because of the high cost of a smart card and the infrastructure requirements. In this paper, we study secure user authentication using only a common storage device such as a universal serial bus (USB) memory, instead of using smart cards. We first show that the existing schemes using smart cards cannot be immediately converted into schemes using a common storage device. We then propose a practical and secure user authentication scheme, capable of supporting the use of the common storage device, which retains all the advantages of schemes using smart cards.",
keywords = "Cryptography, Password, Smart card, User authentication",
author = "Rhee, {Hyun Sook} and Kwon, {Jeong Ok} and Lee, {Dong Hoon}",
year = "2009",
month = "1",
day = "1",
doi = "10.1016/j.csi.2007.11.017",
language = "English",
volume = "31",
pages = "6--13",
journal = "Computer Standards and Interfaces",
issn = "0920-5489",
publisher = "Elsevier",
number = "1",

}

TY - JOUR

T1 - A remote user authentication scheme without using smart cards

AU - Rhee, Hyun Sook

AU - Kwon, Jeong Ok

AU - Lee, Dong Hoon

PY - 2009/1/1

Y1 - 2009/1/1

N2 - User authentication is one of the fundamental procedures to ensure secure communications over an insecure public network channel. Especially, due to tamper-resistance and convenience in managing a password file, various user authentication schemes using smart cards have been proposed. A smart card however far from ubiquitous because of the high cost of a smart card and the infrastructure requirements. In this paper, we study secure user authentication using only a common storage device such as a universal serial bus (USB) memory, instead of using smart cards. We first show that the existing schemes using smart cards cannot be immediately converted into schemes using a common storage device. We then propose a practical and secure user authentication scheme, capable of supporting the use of the common storage device, which retains all the advantages of schemes using smart cards.

AB - User authentication is one of the fundamental procedures to ensure secure communications over an insecure public network channel. Especially, due to tamper-resistance and convenience in managing a password file, various user authentication schemes using smart cards have been proposed. A smart card however far from ubiquitous because of the high cost of a smart card and the infrastructure requirements. In this paper, we study secure user authentication using only a common storage device such as a universal serial bus (USB) memory, instead of using smart cards. We first show that the existing schemes using smart cards cannot be immediately converted into schemes using a common storage device. We then propose a practical and secure user authentication scheme, capable of supporting the use of the common storage device, which retains all the advantages of schemes using smart cards.

KW - Cryptography

KW - Password

KW - Smart card

KW - User authentication

UR - http://www.scopus.com/inward/record.url?scp=54349125537&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=54349125537&partnerID=8YFLogxK

U2 - 10.1016/j.csi.2007.11.017

DO - 10.1016/j.csi.2007.11.017

M3 - Article

AN - SCOPUS:54349125537

VL - 31

SP - 6

EP - 13

JO - Computer Standards and Interfaces

JF - Computer Standards and Interfaces

SN - 0920-5489

IS - 1

ER -