Privacy Preserving User Authentication Scheme Based on Smart Card
Privacy Preserving User Authentication Scheme Based on Smart Card is a scholarly work, published in 2018 in ''International Journal on Cryptography and Information Security''. The main subjects of the publication include smart card, computer security, Internet privacy, authentication, scheme, and computer science. One of the most commonly used user authentication mechanisms is two factor authentication based on smart card and password.The core feature of the scheme is to enforce that the user must have the smart card and know the password in order to gain access to server.Recently, Liu et al. proposed a smart card based password authentication scheme and argued that it is secure against insider attack, replay attack and man in the middle attack and provides perfect forward secrecy.In this paper, authors show security weaknesses in Liu et al.'s scheme focused on off-line password guessing attack and masquerading attack and it does not provide perfect forward secrecy and anonymity.Accordingly, authors propose a privacy preserving user authentication scheme based on smart card, denoted as PUAS, to remedy these security weaknesses and to provide anonymity and perfect forward secrecy.PUAS is more secure with a bit of computational overhead to support several positive properties in security and privacy.