Abstract

Abstract Recently, Yoon et al . and Wang et al . independently proposed a dynamic ID authentication scheme and claimed that their schemes can withstand the risk of ID‐theft, and several attacks. In this paper, we first demonstrate that both of the proposed schemes cannot achieve the security requirement for user anonymity and resist an impersonation attack yet. Then, we shall propose a new dynamic ID authentication scheme to overcome the above security weaknesses. We formally analyzed our proposed scheme with the BAN‐logic and shown that it can withstand the several possible attacks. Copyright © 2010 John Wiley & Sons, Ltd.