PERTANIKA JOURNAL OF SCIENCE AND TECHNOLOGY

Nowadays internet has become indispensable part of one's life. Therefore, security and privacy are of critical concern to retain user's confidence in network services and applications. Several password verification based schemes/protocols have been used for authentication over insecure channel to protect resources from unauthorized access in networked environment. However, the schemes were not fault tolerant. Also, the feasibility for implementation in some of the applications was questionable. Therefore, we have devised a scheme SPAS (Secure and Provable Authentication Scheme) to overcome the issues prevalent in existing schemes. The objective was to keep the computational and communication cost low. The analysis of the presented scheme SPAS over existing schemes corroborates its effectiveness in tackling various attacks and uniqueness. Further, the performance analysis of the presented scheme is also given to strengthen the proposal.