中文摘要：

远程用户认证方案是远程服务器通过不安全的网络认证远程用户身份的一种机制。根据椭圆曲线上的双线性对的优良性质，2006年，Das等人提出了基于双线性对的远程用户认证方案。2009年。Goriparthi等人指出该方案易遭受伪造攻击和重放攻击并给出了一个改进方案。然而发现Goriparthi等人的改进方案易遭受内部人员攻击、拒绝服务攻击和服务器哄骗攻击以及存在时钟同步问题。为了克服这些缺点，提出了基于双线性对和Nonce的智能卡远程用户认证方案。安全分析表明，该方案不但增强了认证系统的安全性，而且可安全地完成用户和远程系统间的交互认证。

英文摘要：

Remote user authentication scheme is a mechanism which allows a server to authenticate a remote user over insecure channel. In 2006, Das et al proposed a remote user authentication scheme using bilinear pairings according to the merits of bilinear pairing on an elliptical curve. In 2009, Goriparthi et al pointed out that Das et al＇ s scheme is easily vulnerable to the replay attack and the forgery attack, and proposed an improved scheme. However,found out weaknesses of Goriparthi et al＇ s scheme against the insider attack, the denial of service attack, the server spooling attack and the existing clock synchronization problem. To overcome these weaknesses, proposed a novel authentication scheme for remote users based on bilinear pairing and nonce using smart cards. The security analysis shows that the proposed scheme not only enhances the security of the authentication system but also accomplishes mutual authentication safely between the user and the remote system.