A Robust and Privacy-Preserving Anonymous User Authentication Scheme for Public Cloud Server

Khan, Naveed; Zhang, Jianbiao; Jan, Saeed Ullah

doi:10.1155/2022/1943426

Cited by 10 publications

(6 citation statements)

References 61 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For example, the scheme [39] is vulnerable to replay attacks, while the schemes [40,41] have traceability issues. Finally, the author [42] proposed an anonymous authentication scheme for mobile devices in a public cloud server. Te scheme [42] achieved all the security vulnerabilities of the scheme [43], and the communication and computation costs are also less.…”

Section: Literature Reviewmentioning

confidence: 99%

“…Finally, the author [42] proposed an anonymous authentication scheme for mobile devices in a public cloud server. Te scheme [42] achieved all the security vulnerabilities of the scheme [43], and the communication and computation costs are also less. In the end, we identify some faws in the scheme [2], and these faws are discussed in detail under:…”

Section: Literature Reviewmentioning

confidence: 99%

See 1 more Smart Citation

A Provable Secure Cross-Verification Scheme for IoT Using Public Cloud Computing

Khan

Zhang

Ali

et al. 2022

Security and Communication Networks

Self Cite

View full text Add to dashboard Cite

Public cloud computing has become increasingly popular due to the rapid advancements in communication and networking technology. As a result, it is widely used by businesses, corporations, and other organizations to boost the productivity. However, the result generated by millions of network-enabled IoT devices and kept on the public cloud server, as well as the latency in response and safe transmission, are important issues that IoT faces when using the public cloud computing. These concerns and obstacles can only be overcome by designing a robust mutual authentication and secure cross-verification mechanism. Therefore, we have attempted to design a cryptographic protocol based on a simple hash function, xor operations, and the exchange of random numbers. The security of the proposed protocol has formally been verified using the ROR model, ProVerif2.03, and informally using realistic discussion. In contrast, the performance metrics have been analyzed by looking into the security feature, communication, and computation costs. To sum it up, we have compared our proposed security mechanism with the state-of-the-art protocols, and we recommend it to be effectively implemented in the public cloud computing environment.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

Section: Literature Reviewmentioning

confidence: 99%

A Provable Secure Cross-Verification Scheme for IoT Using Public Cloud Computing

Khan

Zhang

Ali

et al. 2022

Security and Communication Networks

Self Cite

View full text Add to dashboard Cite

show abstract

“…However, some of these cryptographic techniques are not secure against quantum attacks. The authors of [1] proposed an authentication scheme for a public cloud server environment that achieved all known security goals but was not much feasible for the quantum computing era. Some existing proposed schemes are not efficient against quantum attacks and are vulnerable to known security attacks, for example, the schemes [2][3][4][5][6][7][8][9][10][11][12][13] suffer from offline password attacks, while the schemes [5,6,10,[13][14][15][16][17][18][19][20][21] cannot provide anonymity.…”

Section: Network Modelmentioning

confidence: 99%

Lattice-Based Authentication Scheme to Prevent Quantum Attack in Public Cloud Environment

Khan¹,

Zhang²,

Ullah³

et al. 2023

Computers, Materials &Amp; Continua

View full text Add to dashboard Cite

Public cloud computing provides a variety of services to consumers via high-speed internet. The consumer can access these services anytime and anywhere on a balanced service cost. Many traditional authentication protocols are proposed to secure public cloud computing. However, the rapid development of high-speed internet and organizations' race to develop quantum computers is a nightmare for existing authentication schemes. These traditional authentication protocols are based on factorization or discrete logarithm problems. As a result, traditional authentication protocols are vulnerable in the quantum computing era. Therefore, in this article, we have proposed an authentication protocol based on the lattice technique for public cloud computing to resist quantum attacks and prevent all known traditional security attacks. The proposed lattice-based authentication protocol is provably secure under the Real-Or-Random (ROR) model. At the same time, the result obtained during the experiments proved that our protocol is lightweight compared to the existing lattice-based authentication protocols, as listed in the performance analysis section. The comparative analysis shows that the protocol is suitable for practical implementation in a quantum-based environment.

show abstract

“…In public cloud servers, Naveed et al [31] charted a protocol that provides user anonymity, untraceability, perfect forward secrecy, and resistance to replay attacks. Again, non-traceability is the problem, as one-voter-one-vote cannot be assured.…”

Section: State Of the Artmentioning

confidence: 99%

Attribute Based Pseudonyms: Anonymous and Linkable Scoped Credentials

2022

View full text Add to dashboard Cite

Attribute-based credentials (ABCs) provide an efficient way to transfer custody of personal and private data to the final user, while minimizing the risk of sensitive data revelation and thus granting anonymity. Nevertheless, this method cannot detect whether one attribute has been used more than once without compromising anonymity when the emitter and consumer collude with one another. The protocol proposed in this article deals with this issue by using a modification of ZSS pairing-based short signatures over elliptic curves and Verheul’s self-blinded credentials scheme. Each user can generate an identifier (pseudonym) that is unique and verifiable by everyone in a given scope, without compromising anonymity. However, the identifier cannot be reused in the same scope, since such reuse would be detected.

show abstract

A Robust and Privacy-Preserving Anonymous User Authentication Scheme for Public Cloud Server

Cited by 10 publications

References 61 publications

A Provable Secure Cross-Verification Scheme for IoT Using Public Cloud Computing

A Provable Secure Cross-Verification Scheme for IoT Using Public Cloud Computing

Lattice-Based Authentication Scheme to Prevent Quantum Attack in Public Cloud Environment

Attribute Based Pseudonyms: Anonymous and Linkable Scoped Credentials

Contact Info

Product

Resources

About