© The Institution of Engineering and Technology
This comment paper refers to an article published by Leu and Hsieh in IET Information Security in the year 2014. Leu and Hsieh proposed a remote user authentication protocol for distributed systems using smartcard. Their protocol affords user anonymity and no verification tables at either end, which can decrease the storage space along with the computations. Their protocol can resist security attacks and is efficient compared with few relevant protocols in terms of computational cost. However, this comment paper brings questions about the correctness of the design of Leu and Hsieh's protocol.
References
-
-
1)
-
3. Mishra, D., Das, A.K., Mukhopadhyay, S.: ‘A secure user anonymity-preserving biometric-based multi-server authenticated key agreement scheme using smart cards’, Expert Syst. Appl., 2014, 41, (18), pp. 8129–8143.
-
2)
-
2. Stinson, D.R.: ‘Some observations on the theory of cryptographic hash functions’, Des. Codes Cryptogr., 1996, 38, (2), pp. 259–277.
-
3)
-
1. Menezes, A.J., Van Oorschot, P.C., Vanstone, S.A.: ‘Handbook of applied cryptography’ (CRC press, 1996).
-
4)
-
4. Leu, J.S., Hsieh, W.B.: ‘Efficient and secure dynamic ID-based remote user authentication scheme for distributed systems using smart cards’, IET Inf. Secur., 2014, 8, (2), pp. 104–113.
-
5)
http://iet.metastore.ingenta.com/content/journals/10.1049/iet-ifs.2016.0218
Related content
content/journals/10.1049/iet-ifs.2016.0218
pub_keyword,iet_inspecKeyword,pub_concept
6
6
Comment on ‘Efficient and secure dynamic ID-based remote user authentication scheme for distributed systems using smart cards’