隨著網際網路(Internet)的快速興起，使用者已逐漸透過網路來完成各種交易，因此如何在分散式網路上，使遠端伺服器確認使用者的身分與使用權限，則變成相當重要的議題。本文提出一個兼具安全性與完整性的以通行碼為基礎身分鑑別機制，並滿足人性化需求、雙向鑑別、低計算與通訊成本等多項特性。此外，本機制透過鑑別的過程，同時也產生一把會議金鑰，以確保鑑別後通訊訊息的私密性與完整性，並利用公開金鑰密碼技術來解決使用者註冊階段時安全通道不合理假設的問題。

Owing to the rapid development of the Internet, each user can finish various kinds of trade via the network. Therefore, it is an important issue that ho to confirm the identity of user and user's access rights for any remote server. This paper proposes a secure password-based authentication scheme that satisfies several secure properties including user friendly, mutual authentication, lower computation and communication cost. Besides, this scheme produces the session key through the processes of authentication to ensure privacy and integrity, and solves the unreasonable assumption problem of the secure channel.