International Journal of Computer Applications
Recently, Tsai et al. proposed dynamic ID based smart card authentication scheme. This paper demonstrates that Tsai et al.'s scheme fails to provide early wrong password detection, secure password change and protection against insider attack. To overcome, the authors propose a secure SCAM (Smart Card based Authentication Mechanism) which keeps all previous merits and achieves security and functionality requirements. The performance of both the schemes has been analyzed in terms of various metrics. Comparing with Tsai et al.'s scheme, their scheme provides higher security with nearly same cost.