In network communication, security plays an important role. Recently Password-based authenticated key agreement plays an important role for providing secure transmission. In this study, securities vulnerabilities exist in the password-only authenticated key exchange are identified and a new approach is discussed to overcome those vulnerabilities. A combination of a picture function and a distortion function is adopted to authenticate the user and protect the password from malicious attack. A Nonce value is added in control frames to enhance the authentication process to identify the sender and receiver.