A Novel Mutual Authentication Scheme For Smart Card Without Information Leakage

Cai Cheng,Zhu Yuesheng,Wang Bojun
DOI: https://doi.org/10.1109/CSE.2014.133
2015-01-01
Abstract:In traditional symmetric authentication schemes for smart card, the smart card sends its card number in plaintext to verify the genuineness of the authentication server (AS), resulting in the leakage of some sensitive information and being attacked. Therefore, in this paper, to prevent the leakage of card number we propose a novel symmetric authentication scheme in which the card number is powered by a random value before transferred to the AS. Besides, the card-specific key is coded in the header of the root file to lock the whole information of the smart card. The authentication server, after being successfully verified by the smart card, can access this information and verify the identity of smart card. Our security analysis indicates that the proposed scheme can enhance the security of smart card in authentication procedures.
What problem does this paper attempt to address?