Security Analysis and Improvement of ‘a More Secure Anonymous User Authentication Scheme for the Integrated EPR Information System’
作者: SK Hafizul Islam , Muhammad Khurram Khan , Xiong Li
DOI: 10.1371/JOURNAL.PONE.0131368
关键词:
摘要: Over the past few years, secure and privacy-preserving user authentication scheme has become an integral part of applications healthcare systems. Recently, Wen designed improved system over Lee et al.’s for integrated electronic patient record (EPR) information system, which been analyzed in this study. We have found that Wen’s still following inefficiencies: (1) correctness identity password are not verified during login change phases; (2) it is vulnerable to impersonation attack privileged-insider attack; (3) without revocation lost/stolen smart card; (4) explicit key confirmation no control properties absent, (5) cannot update his/her help server channel. Then we aimed propose enhanced two-factor based on intractable assumption quadratic residue problem (QRP) multiplicative group. Our bears more securities functionalities than other schemes literature.
harvard.edu
paperity.org参考文章(59)
SK Hafizul Islam, Design and analysis of an improved smartcard-based remote user password authentication scheme International Journal of Communication Systems. ,vol. 29, pp. 1708- 1719 ,(2016) , 10.1002/DAC.2793
Simon Blake-Wilson, Don Johnson, Alfred Menezes, Key Agreement Protocols and Their Security Analysis Lecture Notes in Computer Science. pp. 30- 45 ,(1997) , 10.1007/BFB0024447
Kenneth H. Rosen, Elementary number theory and its applications ,(1984)
Shuai Ding, Juan Wang, Sumei Ruan, Chengyi Xia, Inferring to individual diversity promotes the cooperation in the spatial prisoner’s dilemma game Chaos, Solitons & Fractals. ,vol. 71, pp. 91- 99 ,(2015) , 10.1016/J.CHAOS.2014.12.014
Jianghong Wei, Xuexian Hu, Wenfen Liu, An Improved Authentication Scheme for Telecare Medicine Information Systems Journal of Medical Systems. ,vol. 36, pp. 3597- 3604 ,(2012) , 10.1007/S10916-012-9835-1
Tian-Fu Lee, I-Pin Chang, Tsung-Hung Lin, Ching-Cheng Wang, A Secure and Efficient Password-Based User Authentication Scheme Using Smart Cards for the Integrated EPR Information System Journal of Medical Systems. ,vol. 37, pp. 9941- ,(2013) , 10.1007/S10916-013-9941-8
SK Hafizul Islam, G.P. Biswas, Cryptanalysis and improvement of a password-based user authentication scheme for the integrated EPR information system Journal of King Saud University - Computer and Information Sciences archive. ,vol. 27, pp. 211- 221 ,(2015) , 10.1016/J.JKSUCI.2014.03.018
Zeeshan Siddiqui, Abdul Hanan Abdullah, Muhammad Khurram Khan, Abdullah S. Alghamdi, Smart Environment as a Service: Three Factor Cloud Based User Authentication for Telecare Medical Information System Journal of Medical Systems. ,vol. 38, pp. 1- 14 ,(2014) , 10.1007/S10916-013-9997-5
He Debiao, Chen Jianhua, Zhang Rui, A More Secure Authentication Scheme for Telecare Medicine Information Systems Journal of Medical Systems. ,vol. 36, pp. 1989- 1995 ,(2012) , 10.1007/S10916-011-9658-5
SK Hafizul Islam, Muhammad Khurram Khan, Cryptanalysis and Improvement of Authentication and Key Agreement Protocols for Telecare Medicine Information Systems Journal of Medical Systems. ,vol. 38, pp. 1- 16 ,(2014) , 10.1007/S10916-014-0135-9