We show that the anonymous certificateless authentication scheme [IEEE TIFS, 9(12), 2014, 2327-2339] is very vulnerable to denial-of-service (DoS) attacks, because it does not develop a mechanism to help an application provider to verify the validity of a service request. A malicious attacker can launch massive requests without being detected. We would like to stress that anonymity and certificateless property could not be acquired concurrently. We think the availability should be put first above all else when one designs a cryptographic scheme.
為了持續優化網站功能與使用者體驗,本網站將Cookies分析技術用於網站營運、分析和個人化服務之目的。
若您繼續瀏覽本網站,即表示您同意本網站使用Cookies。