An improved smart card based authentication scheme for session initiation protocol
作者: Saru Kumari , Shehzad Ashraf Chaudhry , Fan Wu , Xiong Li , Mohammad Sabzinejad Farash
DOI: 10.1007/S12083-015-0409-0
关键词: Session Initiation Protocol 、 Oakley protocol 、 Otway–Rees protocol 、 Reflection attack 、 Authentication protocol 、 Computer network 、 Computer science 、 Wide Mouth Frog protocol 、 Cryptographic protocol 、 Challenge-Handshake Authentication Protocol 、 Computer security
摘要: Sessioninitiation protocol (SIP) reformed the controlling routine of voice over Internet Protocol based communication public channels. SIP is inherently insecure because underlying open text architecture. A number solutions are proposed to boost security. Very recently Farash (Peer Peer Netw. Appl. 1–10, 2014) an enhanced improve security Tu et al.’s 1–8, 2014). Further, claimed his be secure against all known attacks. However, in this paper we show that Farash’s impersonation attack, password guessing lacks user anonymity and vulnerable session-specific temporary information attack. have upgraded enhance The performance analysis shows reduced one point multiplication as compared with protocol, while resisting We proved using automated tool ProVerif.
springer.com
sci-hub.se 参考文章(41)
Ruhul Amin, G. P. Biswas, A Secure Three-Factor User Authentication and Key Agreement Protocol for TMIS With User Anonymity Journal of Medical Systems. ,vol. 39, pp. 1- 19 ,(2015) , 10.1007/S10916-015-0258-7
Ruhul Amin, G. P. Biswas, An Improved RSA Based User Authentication and Session Key Agreement Protocol Usable in TMIS Journal of Medical Systems. ,vol. 39, pp. 1- 14 ,(2015) , 10.1007/S10916-015-0262-Y
Shehzad Ashraf Chaudhry, Mohammad Sabzinejad Farash, Husnain Naqvi, Muhammad Sher, A secure and efficient authenticated encryption for electronic payment systems using elliptic curve cryptography Electronic Commerce Research. ,vol. 16, pp. 113- 139 ,(2016) , 10.1007/S10660-015-9192-5
Ruhul Amin, SK Hafizul Islam, G. P. Biswas, Muhammad Khurram Khan, Xiong Li, Cryptanalysis and Enhancement of Anonymity Preserving Remote User Mutual Authentication and Session Key Agreement Scheme for E-Health Care Systems Journal of Medical Systems. ,vol. 39, pp. 1- 21 ,(2015) , 10.1007/S10916-015-0318-Z
Saru Kumari, Muhammad Khurram Khan, Cryptanalysis and improvement of 'a robust smart-card-based remote user password authentication scheme' International Journal of Communication Systems. ,vol. 27, pp. 3939- 3955 ,(2014) , 10.1002/DAC.2590
Mohammad Sabzinejad Farash, Shehzad Ashraf Chaudhry, Mohammad Heydari, Sajad Sadough, S Mohammad, Saru Kumari, Muhammad Khurram Khan, A lightweight anonymous authentication scheme for consumer roaming in ubiquitous networks with provable security International Journal of Communication Systems. ,vol. 30, ,(2017) , 10.1002/DAC.3019
Mihir Bellare, Phillip Rogaway, Entity authentication and key distribution international cryptology conference. pp. 232- 249 ,(1993) , 10.1007/3-540-48329-2_21
Liping Zhang, Shanyu Tang, Zhihua Cai, Efficient and flexible password authenticated key agreement for Voice over Internet Protocol Session Initiation Protocol using smart card International Journal of Communication Systems. ,vol. 27, pp. 2691- 2702 ,(2014) , 10.1002/DAC.2499
Xiong Li, Jianwei Niu, Junguo Liao, Wei Liang, Cryptanalysis of a dynamic identity-based remote user authentication scheme with verifiable password update International Journal of Communication Systems. ,vol. 28, pp. 374- 382 ,(2015) , 10.1002/DAC.2676
Debiao He, Jianhua Chen, Yitao Chen, A secure mutual authentication scheme for session initiation protocol using elliptic curve cryptography Security and Communication Networks. ,vol. 5, pp. 1423- 1429 ,(2012) , 10.1002/SEC.506