A secure and improved multi server authentication protocol using fuzzy commitment

Rehman, Hafeez Ur; Ghani, Anwar; Chaudhry, Shehzad Ashraf; Alsharif, Mohammed H.; Nabipour, Narjes

doi:10.1007/s11042-020-09078-z

Cited by 17 publications

(3 citation statements)

References 42 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…When there is a devastating failure in the computer room, these backups also stored in the computer room cannot play an effective backup role at all. Rehman et al [ 11 ] play an important role in protecting network information in a cloud computing environment in order to effectively improve the security and availability of data and realize the improvement and creation of storage system, so as to give priority to hot data access to corresponding levels, and improve reading and writing efficiency [ 11 ]. Dastres and Soori [ 12 ] believe that the connection and storage of traditional storage technologies are realized through the data interface with the host.…”

Section: Literature Reviewmentioning

confidence: 99%

Computer Security Issues and Legal System Based on Cloud Computing

Li¹

2022

Computational Intelligence and Neuroscience

View full text Add to dashboard Cite

To effectively improve the security and accuracy of computer information storage, a computer security problem and legal system based on cloud computing are proposed. Firstly, this article details the evolution of cloud computing, its characteristics, architecture, and application status of cloud computing in detail. Second, we discussed security strategies to ensure the confidentiality and integrity of cloud computing information, focuses on the data encryption technology of cloud data security, and designs and implements the data backup and recovery system based on the cloud platform. The core layers of the system are the system layer and data operation layer. The system uses multithreading technology based on epoll and thread pool to improve the efficiency of data transmission. At the same time, the basic visual page is realized, and users can use the page to create a convenient operating system. Finally, the system is built in the laboratory environment and tested as a whole. The test results show that through the performance comparison with the current commonly used systems, it is found that the system in this paper has a certain improvement in data transmission rate, but the utilization rate of node CPU is as high as 40%, which leads to certain requirements for node CPU performance. Therefore, the system meets the functional requirements proposed in the design. Compared to the existing system, its performance has been found to meet the actual requirements of use, proving that the system is accessible and efficient.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

Computer Security Issues and Legal System Based on Cloud Computing

Li¹

2022

Computational Intelligence and Neuroscience

View full text Add to dashboard Cite

show abstract

“…Reference [30] proposed a new multi-server authentication protocol for using fuzzy commitment scheme. In [31], Rehman et al found that Barman et al's protocol [30] is still vulnerable to anonymity violation attack and impersonation based on stolen smart card attack. Reference [31] proposed an enhanced protocol to overcome the security weaknesses of Barman et al's scheme.…”

Section: B Fuzzy Commitmentmentioning

confidence: 99%

Privacy-Preserving Cancelable Biometric Authentication Based on RDM and ECC

Meng

Zhao

et al. 2021

IEEE Access

View full text Add to dashboard Cite

Biometric authentication is getting increasingly popular and demands a wide range of solutions to against increasing cybercrimes and digital identity thefts. This paper proposes a new privacypreserving cancelable biometric authentication key agreement scheme, which improves the existing authentication scheme based on ECC. We are going to integrate the fuzzy commitment and cancelable biometrics to guarantee the security for user's biometric information. The cancelable biometrics named as the random distance method (RDM) which can generate non-invertible and privacy-preserving revocable pseudo-biometric identities. The proposed scheme realizes the mutual authentication of participants, and the privacy of biometric information and also can resist the vast majority of existing attacks. We use the widely accepted BPR adversary model to formally prove the safety features of our scheme. Further, the comparison of other existing related schemes shows that the performance of this scheme has greater advantages in terms of computation cost and communication cost. The experiments demonstrate that this scheme can achieves higher accuracy, while preserving biometric information privacy.

show abstract

“…In the stolen verifier table attack, the adversary misuses valued data which are stored at servers' side such as passwords or other parameters and masquerade as legal users [35]. In our scheme, the blockchain maintains the repository that stores public keys, rather than servers or RC maintain the verifier table.…”

Section: No Stolen Verifier Table Attackmentioning

confidence: 99%

A Blockchain-Based Hierarchical Authentication Scheme for Multiserver Architecture

You

et al. 2021

Security and Communication Networks

View full text Add to dashboard Cite

In a multiserver architecture, authentication schemes play an important role in the secure communication of the system. In many multiserver authentication schemes, the security of the mutual authentications among the participants is based on the security of the registration center’s private key. This centralized architecture can create security risks due to the leakage of the registration center’s private key. Blockchain technology, with its decentralized, tamper-proof, and distributed features, can provide a new solution for multiserver authentication schemes. In a lot of multiserver authentication schemes, users’ permission is generally controlled by the registration center (RC), but these permission control methods cannot be applied in the decentralized blockchain system. In this paper, a blockchain-based authentication scheme for multiserver architecture is proposed. Our scheme provides a hierarchical authentication method to solve the problems of user permission control and user revocation caused by no registration center. The security of our scheme is formally proved under the random oracle model. According to our analysis, our scheme is resistant to attacks such as impersonation attacks and man-in-the-middle attacks. In addition, our performance analysis shows that the proposed scheme has less computation overhead.

show abstract

A secure and improved multi server authentication protocol using fuzzy commitment

Cited by 17 publications

References 42 publications

Computer Security Issues and Legal System Based on Cloud Computing

Computer Security Issues and Legal System Based on Cloud Computing

Privacy-Preserving Cancelable Biometric Authentication Based on RDM and ECC

A Blockchain-Based Hierarchical Authentication Scheme for Multiserver Architecture

Contact Info

Product

Resources

About