Authors: Linmei Jiang; Songsong Dai; Niansheng Liu; Donghui Guo
Addresses: School of Information Science and Engineering, Xiamen University, Xiamen, Fujian 361005, China ' School of Information Science and Engineering, Xiamen University, Xiamen, Fujian 361005, China ' School of Computer Engineering, Jimei University, Xiamen, Fujian 361021, China ' School of Information Science and Engineering, Xiamen University, Xiamen, Fujian 361005, China
Abstract: Password authentication is one of the most convenient and frequently used mechanisms to provide secure remote access control. In this paper, a pairing-based password authentication scheme which draws on the experience of two previous researches is proposed, and the detailed authentication phases which utilise the good properties of bilinear pairing are illustrated. Meanwhile, strict cryptanalysis is made to clarify the good security and functionality features of the proposed scheme in defending various attacks. Besides that, some flaws of a previous scheme are analysed and theoretical comparison of the computation cost with that scheme is made. Furthermore, experiments are conducted properly and the results are shown to explain the high efficiency of the proposed scheme.
Keywords: password authentication; user anonymity; key agreement; smart cards; pairing; network security; elliptic curve discrete logarithm problem; ECDLP; remote access control; cryptanalysis; cryptography.
International Journal of Internet Protocol Technology, 2015 Vol.9 No.1, pp.12 - 22
Received: 11 Mar 2015
Accepted: 22 Jun 2015
Published online: 22 Jan 2016 *