A secure and efficient identity‐based mutual authentication scheme with smart card using elliptic curve cryptography

Luo, Min; Zhang, Yunru; Khan, Muhammad Khurram; He, Debiao

doi:10.1002/dac.3333

Cited by 18 publications

(14 citation statements)

References 40 publications

(57 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Amin et al 's scheme and Nikooghadam et al 's scheme, but it is pretty better than other schemes [17,19,[22][23][24]. Furthermore, we have demonstrated that the schemes of Amin et al and Nikooghadam et al suffer from various vulnerabilities.…”

Section: Security and Performance Comparisonmentioning

confidence: 64%

“…We compare the proposed scheme with other recently introduced schemes [15,17,19,20,[22][23][24] in this section. Table 3 shows the results of security analysis.…”

Section: Security and Performance Comparisonmentioning

confidence: 99%

“…Jung et al [16] proposed a symmetric key cryptosystem based authentication and key agreement protocol for wireless sensor networks. In 2017, Luo et al [17] proved that Islam et al 's scheme is susceptible to insider attack and offline password guessing attack and introduced a new ECC-based scheme for improvement. But their scheme suffers from session key disclosure attack and offline guessing password attack.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Secure and Efficient ECC-Based Anonymous Authentication Protocol

Wang

2019

Security and Communication Networks

View full text Add to dashboard Cite

Nowadays, remote user authentication protocol plays a great role in ensuring the security of data transmission and protecting the privacy of users for various network services. In this study, we discover two recently introduced anonymous authentication schemes are not as secure as they claimed, by demonstrating they suffer from offline password guessing attack, desynchronization attack, session key disclosure attack, failure to achieve user anonymity, or forward secrecy. Besides, we reveal two environment-specific authentication schemes have weaknesses like impersonation attack. To eliminate the security vulnerabilities of existing schemes, we propose an improved authentication scheme based on elliptic curve cryptosystem. We use BAN logic and heuristic analysis to prove our scheme provides perfect security attributes and is resistant to known attacks. In addition, the security and performance comparison show that our scheme is superior with better security and low computation and communication cost.

show abstract

Section: Security and Performance Comparisonmentioning

confidence: 64%

“…We compare the proposed scheme with other recently introduced schemes [15,17,19,20,[22][23][24] in this section. Table 3 shows the results of security analysis.…”

Section: Security and Performance Comparisonmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Secure and Efficient ECC-Based Anonymous Authentication Protocol

Wang

2019

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Wang et al's scheme 39 are powerless against man‐in‐the‐middle attack and user/server impersonation attack, and fails to provide perfect forward secrecy and user anonymity. Maitra et al's scheme, 45 Luo et al's scheme, 46 and Amin et al's scheme 40 are powerless against password guessing attack and user/server impersonation attack.…”

Section: Performance Evaluationmentioning

confidence: 99%

“…This section compares the new protocol with other related protocols (ie, References 39,40,[44][45][46] in terms of security and performance.…”

Section: Performance Evaluationmentioning

confidence: 99%

An efficient two‐factor authentication protocol based on elliptic curve cryptosystem with provable security

Chen

2022

Trans Emerging Tel Tech

View full text Add to dashboard Cite

With the gradual penetration of computers and communication networks into people's lives, more and more people begin to pay attention to the information security. Key agreement protocol provides identity authentication for participants in communication system and generates a temporary session key for participants to encrypt messages. Recently, Wang et al designed an authentication and key agreement (AKA) protocol based elliptic curve cryptosystem and proved that their scheme can resist various known attacks. In this article, we analyze the security of their scheme and demonstrate that it is vulnerable to the temporary factor leakage attacks and insider attacks. Then, based on the elliptic curve public key cryptographic algorithm, we design a secure anonymous two-factor user AKA protocol. And we use the well-known random oracle model (ROM) and traditional heuristic discussion to prove the security of the proposed protocol. By comparing with several existing protocols based on public key cryptography algorithm, it is found that this protocol is more secure and efficient.The security analysis shows that the protocol designed in this article can meet all kinds of security requirements and consumes the less computing resources on users and servers, and is especially suitable for the scenarios with high security and efficiency requirements.

show abstract