A Novel Key Agreement Scheme in a Multiple Server Environment

  • Chin-Chen Chang
  • Chia-Chi Wu
Part of the Lecture Notes in Computer Science book series (LNCS, volume 4298)


Due to the rapid advancement of cryptographic techniques, the smart card has recently become a popular device capable of storing and computing essential information with such properties as tamper-resistance and guessing-lock. However, most electronic transactions are in fact performed in the multi-server environment, which unfortunately means conventional authentication schemes cannot satisfy both of the basic requirements: security and efficiency. To make a difference, Juang proposed scheme in February 2004. Nevertheless, there still exist two drawbacks in Juang’s scheme: (1) they need this registration center to distribute the shared key when the user logins the server for services; (2) the authentication scheme lacks round efficiency. In this paper, we proposed an efficient and secure multi-server authenticated key agreement scheme, where the user only needs to register once and can be authenticated without any registration center. Furthermore, the proposed scheme can be employed for the use of mobile networks because of its low computation load and round efficiency.


Key agreement multi-server password remote authentication smart card 


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Chang, C.C., Hwang, S.J.: Using Smart Cards to Authenticate Remote Passwords. Computers and Mathematics with Application 26(3), 19–27 (1993)zbMATHCrossRefMathSciNetGoogle Scholar
  2. 2.
    Chien, H.Y., Jan, J.K., Tseng, Y.M.: An Efficient and Practical Solution to Remote Authentication: Smart Card. Computers and Security 21(4), 372–375 (2002)CrossRefGoogle Scholar
  3. 3.
    Hsu, C.L.: Security of Chien et al.’s Remote User Authentication Scheme Using Smart Cards. Computer Standards and Interfaces 26(3), 167–169 (2004)CrossRefGoogle Scholar
  4. 4.
    Hwang, M.S., Li, L.H.: A Remote User Authentication Scheme Using Smart Cards. IEEE Transactions on Consumer Electronics 46(1), 28–30 (2000)CrossRefGoogle Scholar
  5. 5.
    Juang, W.S.: Efficient Multi-server Password Authenticated Key Agreement Using Smart Cards. IEEE Transactions on Consumer Electronics 50(1), 251–255 (2004)CrossRefGoogle Scholar
  6. 6.
    Juang, W.S.: Efficient Password Authenticated Key Agreement Using Smart Cards. Computers and Security 23(2), 167–173 (2004)CrossRefGoogle Scholar
  7. 7.
    Lam, K.Y., Chung, S.L., Gu, M., Sun, J.G.: Lightweight Security for Mobile Commerce Transactions. Computer Communications 26(18), 2052–2060 (2003)CrossRefGoogle Scholar
  8. 8.
    Lamport, L.: Password Authentication with Insecure Communication. Communications of the ACM 24, 770–772 (1981)CrossRefGoogle Scholar
  9. 9.
    Li, L.H., Lin, I.C., Hwang, M.S.: A Remote Password Authentication Scheme for Multi-server Architecture Using Neural Networks. IEEE Transactions on Neural Networks 12(6), 1498–1504 (2001)CrossRefGoogle Scholar
  10. 10.
    Lin, I.C., Hwang, M.S., Li, L.H.: A New Remote User Authentication Scheme for Multi-server Architecture. Future Generation Computer Systems 19, 13–22 (2003)zbMATHCrossRefGoogle Scholar
  11. 11.
    Lin, I.C., Ou, H.H., Hwang, M.S.: Efficient Access Control and Key Management Schemes for Mobile Agents. Computer Standards and Interfaces 26(5), 423–433 (2004)CrossRefGoogle Scholar
  12. 12.
    Rivest, R.: The MD5 Message-Digest Algorithm. RFC 1321, Internet Activities Board, Internet Privacy Task Force (1992)Google Scholar
  13. 13.
    Sun, H.M.: An Efficient Remote User Authentication Scheme Using Smart cards. IEEE Transactions on Consumer Electronics 46(4), 958–961 (2000)CrossRefGoogle Scholar

Copyright information

© Springer Berlin Heidelberg 2007

Authors and Affiliations

  • Chin-Chen Chang
    • 1
    • 2
  • Chia-Chi Wu
    • 2
  1. 1.Department of Information Engineering and Computer Science, Feng Chia University, Taichung, Taiwan, 40724R.O.C.
  2. 2.Department of Computer Science and Information Engineering, National Chung Cheng University, Chiayi 621, TaiwanR.O.C.

Personalised recommendations