A novel ECC-based provably secure and privacy-preserving multi-factor authentication protocol for cloud computing

Shukla, Shivangi; Patel, Sankita J.

doi:10.1007/s00607-021-01041-6

Cited by 18 publications

(7 citation statements)

References 65 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…An innovative, elliptic curve cryptography-based, privacy-preserving multi-factor authentication technique for CC was suggested by the authors of Ref. 25. As security and privacy authentication characteristics, this protocol offered user anonymity, unlinkability, perfect forward secrecy, and session key security.…”

Section: Related Workmentioning

confidence: 99%

(Retracted) Cyber-security trust model through adaptive cloud authentication protocol for web application

Alsuwat

2023

J. Electron. Imag.

View full text Add to dashboard Cite

show abstract

Section: Related Workmentioning

confidence: 99%

(Retracted) Cyber-security trust model through adaptive cloud authentication protocol for web application

Alsuwat

2023

J. Electron. Imag.

View full text Add to dashboard Cite

show abstract

“…Recently, Chen and Chen [22] proposed a three-factor-based authentication for e-health cloud systems to overcome weaknesses of previously proposed protocols. Unfortunately, their protocol is still vulnerable to known session-specific temporary information attack and does not provide untraceability [23].…”

Section: Related Workmentioning

confidence: 99%

A Secure Three-Factor Authentication Protocol for E-Governance System Based on Multiserver Environments

Cho

Kwon

et al. 2022

IEEE Access

View full text Add to dashboard Cite

In electronic governance (e-governance) system, citizens can access government services such as transportation, licensing and immigration remotely over the Internet. With the development of information and communication technology, usage of the e-governance system has been increased. To efficiently provide citizens with various e-governance services, multi-server environments can be applied to the e-governance system. However, messages can be inserted, deleted, and modified by a malicious adversary since these are transmitted through a public channel. Therefore, many researchers have suggested mutual authentication protocols for secure communication in multi-server environments. In 2020, Sudhakar et al. proposed a smart card based lightweight authentication protocol for multi-server environments. We analyze Sudhakar et al.'s protocol to propose a secure mutual authentication protocol in the egovernance system based on multi-server environments. However, we disclosure that their protocol is not resistant to smart card stolen, insider, man-in-the-middle, user impersonation, and session key disclosure attacks. Moreover, Sudhakar et al.'s protocol does not provide mutual authentication. To improve these security problems, we suggest a secure three-factor mutual authentication protocol for the e-governance system based on multi-server environments. We prove our protocol's security using informal security analysis, Burrows-Abadi-Needham (BAN) logic, and Real-or-Random (ROR) model. We also simulate our protocol utilizing Automated Validation of Internet Security Protocols and Applications (AVISPA) tool. We estimate the proposed protocol's security functionalities, computation costs, and communication overheads compared with existing related protocols. Consequently, we demonstrate that our protocol is secure and suitable for the e-governance system.

show abstract

“…Hector and Atsuko [ 34 ] proposed the first consistent, tree-based, SIDH-based group exchange protocol with logarithmic-order connectivity and memory complex, of which the only key exchange group based on isogeny has linear order. Authors [ 35 ] identify that the protocol used in [ 36 ] is vulnerable to link ability of users, denial-of-service attacks, and replay attacks. Also, the protocol used by [ 37 ] is prone to link ability of user and temporary information attack based on session-specific.…”

Section: Related Workmentioning

confidence: 99%

“…Also, the protocol used by [ 37 ] is prone to link ability of user and temporary information attack based on session-specific. A system that handles these vulnerabilities is proposed in [ 35 ]. The protocol elliptic curve cryptography secures and provides preservation of privacy in multi-factor authentication protocol in the cloud environment, this mainly solves the limitations of the [ 36 , 37 ].…”

Section: Related Workmentioning

confidence: 99%

Security framework to healthcare robots for secure sharing of healthcare data from cloud

Jain

Doriya

2022

Int. j. inf. tecnol.

View full text Add to dashboard Cite

Healthcare robots have the potential to assist medical practitioners in accurately performing tasks such as nursing, diagnosing, and performing critical surgeries. Limited processing, battery power, and storage capacity may reduce the robot's working efficiency. Using cloud services (massive storage, fast processing, and network) overcome the above-mentioned issues. However, sharing healthcare data from the cloud to healthcare robots raises security concerns. Sharing sensitive healthcare data, from the cloud to healthcare robots, can lead to multiple internal and external attacks that are an important research issue. To avoid these types of attacks, data must be encrypted before it is stored in the cloud, assigned roles using access controls, and maintains the integrity of the data. In this paper, the robotics healthcare data is encrypted using an Elliptic Curve Cryptography (ECC)-based mechanism for secure sharing, and Hash-based Message Authentication Code-SHA 1 (HMAC-SHA1) is used for maintaining the integrity of the sensitive data. The results show that the proposed methodology gives better results with less security overhead. Furthermore, the proposed framework can be applied practically in a healthcare environment with low computational power.

show abstract

A novel ECC-based provably secure and privacy-preserving multi-factor authentication protocol for cloud computing

Cited by 18 publications

References 65 publications

(Retracted) Cyber-security trust model through adaptive cloud authentication protocol for web application

(Retracted) Cyber-security trust model through adaptive cloud authentication protocol for web application

A Secure Three-Factor Authentication Protocol for E-Governance System Based on Multiserver Environments

Security framework to healthcare robots for secure sharing of healthcare data from cloud

Contact Info

Product

Resources

About