International Journal of Network Security
In distributed systems, the smart card based password authentication, as one of the most convenient and efficient two-factor authentication mechanisms, is widely used to ensure that the protected services are not available to unauthorized users. Recently, the researchers demonstrated that the smart card based password authentication scheme proposed by them cannot provide perfect forward secrecy as they claimed. In addition, the password change phase of the scheme is unfriendly and inefficient. Subsequently, they presented an enhanced smart card based password authentication scheme to overcome the above flaws existing in their scheme.