ANALYSIS AND IMPROVEMENT OF AN ACCESS-CONTROL SCHEME WITH USER AUTHENTICATION

Both user authentication and access control are required for data prot ection in computer systems. Recently, Ham and Lin proposed an access c ontrol scheme with integration of user authentication. In their scheme , the above two functions are combined together to prevent possible se curity threats between these two protection modules. This paper, argue s that there are some redundant information and verification operation s in their scheme. A more compact and efficient alternative, with the same security and characteristics, is presented. Also, a batch-type mu ltiple-access request verification is suggested to improve the efficie ncy of the system and a password updating process is proposed to facil itate the dynamic operations.