Smart card based authentication scheme for multi-server environments can not resist some known types of attacks,such as forgery attacks,reply attacks and the man-in-the-middle attacks. In order to resolve the aforementioned security problems,this paper proposes a novel multi-server scheme. In new scheme,a self-verified timestamp technique is used to solve the problem of implementing clock synchronization in most typical timestamp-based scheme. In addition, timestamp can be used as random and it is efficient to avoid the reply attacks. Security analysis shows that,compared with smart card based multi-server remote authentication scheme,this scheme not only inherits the merits,such as lightweight computation and low memory size,but also can provide some features,such as the users’ traceability,and it extremely suits for the requirements of the complicated network environment.%基于智能卡的多服务器远程认证方案,存在不能抵抗伪造攻击、重放攻击和中间人攻击等问题。针对上述安全性缺陷,提出一种改进的身份鉴别方案。该方案利用自验证的时间戳技术,解决基于时间戳技术的认证方案中存在的时钟同步问题,同时将时间戳作为随机数,有效地避免遭受重放攻击。安全性分析结果表明,与基于智能卡的多服务器远程认证方案相比,该方案继承了其轻量级认证的特征,计算量低,存储量小,实现了服务器对用户的可追踪性,满足实际网络的复杂性要求。
展开▼
