Cryptanalysis of a remote password authentication scheme. (English) Zbl 1008.94020
Summary: A remote password authentication scheme based on the ElGamal digital signature scheme has been recently proposed by M. S. Hwang [Int. J. Comput. Math. 70, 657-666 (1999; Zbl 0923.68049)]. Hwang’s scheme does not require the system to maintain password files or verification tables to validate the legitimacy of the login user. Moreover, the scheme can withstand attacks based on message replaying. In this paper, we show that Hwang’s scheme is breakable. A legitimate user can impersonate other legal users and pass the system authentication.
Citations:
Zbl 0923.68049References:
[1] | DOI: 10.1080/00207169908804781 · Zbl 0923.68049 · doi:10.1080/00207169908804781 |
[2] | DOI: 10.1109/TIT.1985.1057074 · Zbl 0571.94014 · doi:10.1109/TIT.1985.1057074 |
This reference list is based on information provided by the publisher or from digital mathematics libraries. Its items are heuristically matched to zbMATH identifiers and may contain data conversion errors. In some cases that data have been complemented/enhanced by data from zbMATH Open. This attempts to reflect the references listed in the original paper as accurately as possible without claiming completeness or a perfect matching.