Open Access Open Access  Restricted Access Subscription or Fee Access

A New Enhanced and Secured Password Authentication Protocol Based on Smart Card

Mourade Azrour, Mohammed Ouanan, Yousef Farhaoui


In the last decade, a smart card based authentication and key agreement scheme has been widely used to verify the users’ validity. Recently, Liu et al. showed that the Li et al.’s scheme is vulnerable to some attacks. Then, Liu et al. proposed their protocol and proved that is secured against various attacks. However, in this paper we show that Liu et al.’s scheme is vulnerable to server spoofing attack. To overcome the weaknesses, we proposed our protocol which is demonstrated secured against various attack especially Server Spoofing attack.


authentication protocol, security, smart card, elliptic curve cryptography.

Full Text:


Disclaimer/Regarding indexing issue:

We have provided the online access of all issues and papers to the indexing agencies (as given on journal web site). It’s depend on indexing agencies when, how and what manner they can index or not. Hence, we like to inform that on the basis of earlier indexing, we can’t predict the today or future indexing policy of third party (i.e. indexing agencies) as they have right to discontinue any journal at any time without prior information to the journal. So, please neither sends any question nor expects any answer from us on the behalf of third party i.e. indexing agencies.Hence, we will not issue any certificate or letter for indexing issue. Our role is just to provide the online access to them. So we do properly this and one can visit indexing agencies website to get the authentic information. Also: DOI is paid service which provided by a third party. We never mentioned that we go for this for our any journal. However, journal have no objection if author go directly for this paid DOI service.