Remote Password Authentication System Based On Smart Card Research And Design

With the popularization and the development of the distributed communication network, any two computers with remote distance can share their resources through public network in present. This transmission and communication of the data conveniences the people, but it also gives us a question that is how to authenticate own legitimacy to the remote computer. Remote Password Authentication System (RPAS) obviously is the most effective solution and is also made the best use of. Compared to the common password system, the authentication information for RPAS is transmitted through public network, it is easy to be captured, so the data is encrypted before it is transmitted and it is ensured that even if the authentication information is captured, it is also difficult for an illegal attacker to masquerade a legal user through the captured information.Smart card is also called CPU card. Compared to common IC card, it contains CPU, memorizer, I/O system and Chip Operating Syestem (COS). The chip operating system is the core, it can be seen as a microcomputer. It not only has ability to store data but also has data security protection ability and complicated cryptogram computing ability. So smart card is an apparatus that is antijam and has potential cryptogram disposal ability. It will play an important role in the Remote Password Authentication System.Secure identity authentication scheme is the kernel of authentication system。 In this paper, we introduce identity authentication technology, basic knowledge for cryptology and smart card at first, and then analyze a series of authentication schemes using smart card, especially the famous Hwang-Li authentication scheme Combined with the RSA public key cryptosystem which is basal in the PKI and the USB Key impulse/response authentication scheme, we propose an enhanced scheme from Hwang-Li authentication scheme and USB Key impulse/response authentication scheme aim at its security weakness such as Chan-Cheng attack, Shen-Lin-Hwang attack etc. This scheme refers to Hwang-Li scheme's idea and procedures and uses two smart cards in which RSA algorithm has been implemented. It eliminates the function relation between IDi and PWi so it can effectively...