- 期刊
Cryptanalysis of a Secure and Efficient Authentication Scheme for Access Control in Mobile Pay-TV Systems
並列摘要
In 2012, Yeh and Tsaur proposed an advanced scheme for access control in mobile pay-TV systems based on pairing and elliptic curve, which were inherent in the cryptography of Sun and Leu's scheme. In their paper, they pointed out two weaknesses in Sun and Leu's scheme and tried to overcome these weaknesses. However, we still found that Yeh and Tsaur's scheme was not secure. In this research, we will show that an attacker who obtains an obsolete, previous session key can easily break Yeh and Tsaur's scheme. The analysis shows that Yeh and Tsaur's scheme is not secure for practical applications.
延伸閱讀
- Guo, Z. (2019). Cryptanalysis of a Certificateless Conditional Privacy-Preserving Authentication Scheme for Wireless Body Area Networks. International Journal of Electronics and Information Engineering, 11(1), 1-8. https://doi.org/10.6636/IJEIE.201909_11(1).01
- Chiou, S. F., Pan, H. T., Cahyadi, E. F., & Hwang, M. S. (2019). Cryptanalysis of the Mutual Authentication and Key Agreement Protocol with Smart Cards for Wireless Communications. International Journal of Network Security, 21(1), 100-104. https://doi.org/10.6633/IJNS.201901_21(1).12
- Wan, T., Liu, X., Liao, W., & Jiang, N. (2019). Cryptanalysis and Improvement of a Smart Card Based Authentication Scheme for Multi-server Architecture Using ECC. International Journal of Network Security, 21(6), 993-1002. https://doi.org/10.6633/IJNS.201911_21(6).13
- Peng, J. W., Horng, W. B., Chiu, Y. C., & Liu, C. S. (2013). Cryptanalysis of Two Dynamic ID-Based Remote User Authentication Schemes for Preserving User Privacy. 淡江理工學刊, 16(3), 277-286. https://doi.org/10.6180/jase.2013.16.3.07
- Leu, M. C. (2009). A Research on Access Protection for Mobile Pay-TV Systems [doctoral dissertation, National Tsing Hua University]. Airiti Library. https://doi.org/10.6843/NTHU.2009.00634