A robust remote user authentication scheme resistant to known session specific temporary information attack
作者: Mrudula Sarvabhatla , M. Chandra Mouli Reddy , Chandra Sekhar Vorugunti
DOI: 10.1109/AIMOC.2015.7083847
关键词: Data Authentication Algorithm 、 Authentication 、 Challenge-Handshake Authentication Protocol 、 Computer science 、 Multi-factor authentication 、 Computer security 、 Reflection attack 、 Computer network 、 Authentication protocol 、 Internet Authentication Service 、 Challenge–response authentication
摘要: Rapid growth of mobile and networking technologies, resulted in new paradigms like Internet Things (IoT) etc, which allows user to connect insecure public communication channel through various devices can access the services data provided by remote server. Thus, authentication key agreement for wireless, wired, IoT communications becoming more challenging task. In this context many researchers have proposed schemes. 2013, An et al. a dynamic ID-based scheme is secure, even if secret values stored smart card revealed. 2014, Troung al claimed that vulnerable server forgery attack an improved scheme. manuscript, we validate al's known session specific temporary information attack, replay impersonation attack. Furthermore, also propose overcome these limitations without increase cost front.
07083847.pdf 参考文章(17)
Jongho Mun, Jiye Kim, Woongryul Jeon, Youngsook Lee, Dongho Won, Cryptanalysis of Encrypted Remote User Authentication Scheme by Using Smart Card Springer, Berlin, Heidelberg. pp. 423- 428 ,(2014) , 10.1007/978-3-642-41674-3_60
Toan-Thinh Truong, Minh-Triet Tran, Anh-Duc Duong, Robust Secure Dynamic ID Based Remote User Authentication Scheme for Multi-server Environment Lecture Notes in Computer Science. pp. 502- 515 ,(2013) , 10.1007/978-3-642-39640-3_37
Ankita Chaturvedi, Dheerendra Mishra, Sourav Mukhopadhyay, Improved Biometric-Based Three-factor Remote User Authentication Scheme with Key Agreement Using Smart Card international conference on information systems security. pp. 63- 77 ,(2013) , 10.1007/978-3-642-45204-8_5
Anh-Duc Duong, Toan-Thinh Truong, Minh-Triet Tran, Dynamic Identity-Based Authentication Scheme with Perfect Forward Secrecy Session Key Springer, Berlin, Heidelberg. pp. 339- 348 ,(2014) , 10.1007/978-3-642-41968-3_35
Young-Hwa An, Security improvements of dynamic ID-based remote user authentication scheme with session key agreement international conference on advanced communication technology. pp. 1072- 1076 ,(2013)
Eric Brier, Christophe Clavier, Francis Olivier, Correlation Power Analysis with a Leakage Model Lecture Notes in Computer Science. pp. 16- 29 ,(2004) , 10.1007/978-3-540-28632-5_2
Yan-yan Wang, Jia-yong Liu, Feng-xia Xiao, Jing Dan, A more efficient and secure dynamic ID-based remote user authentication scheme Computer Communications. ,vol. 32, pp. 583- 585 ,(2009) , 10.1016/J.COMCOM.2008.11.008
Kun Gu, Liji Wu, Xiangyu Li, Xiang Min Zhang, Design and Implementation of an Electromagnetic Analysis System for Smart Cards computational intelligence and security. pp. 653- 656 ,(2011) , 10.1109/CIS.2011.149
Muhammad Khurram Khan, Saru Kumari, An improved biometrics-based remote user authentication scheme with user anonymity. BioMed Research International. ,vol. 2013, pp. 491289- 491289 ,(2013) , 10.1155/2013/491289
Muhammad Khurram Khan, Soo-Kyun Kim, Khaled Alghathbar, Cryptanalysis and security enhancement of a 'more efficient & secure dynamic ID-based remote user authentication scheme' Computer Communications. ,vol. 34, pp. 305- 309 ,(2011) , 10.1016/J.COMCOM.2010.02.011