Yazar "Koc, Cetin Kaya" seçeneğine göre listele

Listeleniyor 1 - 2 / 2
  • Küçük Resim Yok
    Öğe
    Enhanced Security for the Modified Authenticated Key Agreement Scheme
    (Int Journal Computer Science & Network Security-Ijcsns, 2006) Kim, Minho; Koc, Cetin Kaya
    Hsu et al. [3] showed that the Ku-Wang [4] modified authentication key agreement scheme is vulnerable to the modification attack and further proposed an improvement of the Ku-Wang scheme. Recently, Lee-Lee [5] showed that the Hsu et al.' s scheme is vulnerable to the modification attack and proposed another improvement on the modified authenticated key agreement scheme. However, we will show that the Hsu et al.' s scheme suffers from the off-line guessing attack and the Lee-Lee's scheme is still vulnerable to off-line guessing, man-inthe - middle, and reflection attacks. We then propose an enhanced secure scheme to eliminate these security flaws.
  • Küçük Resim Yok
    Öğe
    A Simple Attack on a Recently Introduced Hash-Based Secure User Authentication Scheme
    (Int Journal Computer Science & Network Security-Ijcsns, 2006) Kim, Minho; Koc, Cetin Kaya
    User authentication is an important service in network security. Recently, several user authentication protocols have been proposed. However, a scheme which withstands all known attacks is not yet available. The Lee-Li-Hwang (LLH) authentication scheme [3] was proposed to circumvent the guessing attack in the Peyravian-Zunic (PZ) password scheme [6]. However, Yoon, Ryu, and Yoo (YRY) [9] discovered that the LLH scheme still suffers from the denial of service attack, and proposed an enhancement for the LLH scheme to solve its security problems. More recently, Ku, Chiang, and Chang (KCC) [2] demonstrated that the YRY scheme is vulnerable to the offline guessing and the stolen-verifier attacks. In this paper, we show that the YRY scheme is also vulnerable to the denial-ofservice attack. Furthermore, it was also claimed in [2] that the YRY scheme cannot achieve backward secrecy. We show in this paper that this claim is not entirely valid.