Password-based authentication is the protocol that two entities share a password in advance and use the password as the basic of authentication. Existing password authentication scheme can be categorized into two types: weak-password authentication schemes and strong-password authentication schemes. In general, strong-password authentication protocols have the advantages over the weak-password authentication schemes in that their computational overhead are lighter, designs are simpler, and implementation are easier, and therefore are especially suitable for some constrained environments. In this paper, we propose a strong password authentication scheme (SPAS) based on previous research. The SPAS is resistant to Dos attacks, replay attacks and stolen-verifier attacks. It expects SPAS can be employed in application scenarios where lightweight and secure user authentication scheme is required.
展开▼
