An anonymous authenticated key-agreement scheme for multi-server infrastructure

Akram, Muhammad Arslan; Ghaffar, Zahid; Mahmood, Khalid; Kumari, Saru; Agarwal, Kadambri; Chen, Chien‐Ming

doi:10.1186/s13673-020-00227-9

Cited by 13 publications

(10 citation statements)

References 37 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, we found that this AKE device is vulnerable to a temporary secret attack [ 20 ]. M. Akram et al [ 32 ] enhanced the security features by proposing an anonymous three-factor authentication scheme for multi-servers. The scheme designed was based on the elliptic curve cryptography, and the biometric information is verified by the user and the server separately.…”

Section: Related Workmentioning

confidence: 99%

“…Here, we explain the comparison of the communication cost and the computation cost of the proposed scheme with other existing schemes [ 20 , 26 , 31 , 32 ] which are shown in Table 5 . The performance metrics can be explained as follows.…”

Section: Security Features Comparisonmentioning

confidence: 99%

“…In this subsection, we analyze the computation cost of the related authentication schemes SAKA-FC [ 26 ], SAKE [ 20 ], AKA-FC [ 31 ], and AKA-MS [ 32 ] and our proposed scheme. The number of cryptographic operations involved in this study are counted.…”

Section: Security Features Comparisonmentioning

confidence: 99%

“…Therefore, the total execution time in the SAKE scheme is 45.055 ms. The AKA-MS scheme [ 32 ] uses two cryptographic operations: hash operation related to bilinear pairing

and hash operation related to the group of ECC

. The estimated execution times are 12.418 and 0.974 ms, individually.…”

Section: Security Features Comparisonmentioning

confidence: 99%

See 3 more Smart Citations

SELAMAT: A New Secure and Lightweight Multi-Factor Authentication Scheme for Cross-Platform Industrial IoT Systems

Khalid

Hashim

Ahmad

et al. 2021

Sensors

View full text Add to dashboard Cite

The development of the industrial Internet of Things (IIoT) promotes the integration of the cross-platform systems in fog computing, which enable users to obtain access to multiple application located in different geographical locations. Fog users at the network’s edge communicate with many fog servers in different fogs and newly joined servers that they had never contacted before. This communication complexity brings enormous security challenges and potential vulnerability to malicious threats. The attacker may replace the edge device with a fake one and authenticate it as a legitimate device. Therefore, to prevent unauthorized users from accessing fog servers, we propose a new secure and lightweight multi-factor authentication scheme for cross-platform IoT systems (SELAMAT). The proposed scheme extends the Kerberos workflow and utilizes the AES-ECC algorithm for efficient encryption keys management and secure communication between the edge nodes and fog node servers to establish secure mutual authentication. The scheme was tested for its security analysis using the formal security verification under the widely accepted AVISPA tool. We proved our scheme using Burrows Abdi Needham’s logic (BAN logic) to prove secure mutual authentication. The results show that the SELAMAT scheme provides better security, functionality, communication, and computation cost than the existing schemes.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Security Features Comparisonmentioning

confidence: 99%

Section: Security Features Comparisonmentioning

confidence: 99%

“…Therefore, the total execution time in the SAKE scheme is 45.055 ms. The AKA-MS scheme [ 32 ] uses two cryptographic operations: hash operation related to bilinear pairing

and hash operation related to the group of ECC

. The estimated execution times are 12.418 and 0.974 ms, individually.…”

Section: Security Features Comparisonmentioning

confidence: 99%

See 2 more Smart Citations

SELAMAT: A New Secure and Lightweight Multi-Factor Authentication Scheme for Cross-Platform Industrial IoT Systems

Khalid

Hashim

Ahmad

et al. 2021

Sensors

View full text Add to dashboard Cite

show abstract

“…To discover the private key of any node, an attacker must compromise all nodes involved in the threshold PKG. Notice that many other key management schemes were proposed in the literature, one can cite 85 …”

Section: Related Workmentioning

confidence: 99%

Permissionless proof‐of‐reputation‐X: A hybrid reputation‐based consensus algorithm for permissionless blockchains

Abdo

Sibai

Demerjian

2020

Trans Emerging Tel Tech

View full text Add to dashboard Cite

Over the past years, blockchain technology has become more and more interesting since its ability to carry out transactions without any mediator. To ensure the transactions' reliability, consensus algorithms are adopted by blockchain technology. However, due to the failure of consensus algorithms in managing nodes' identities, blockchain technology is considered inappropriate for many applications. In this article, we propose the permissionless proof‐of‐reputation‐X (PL‐PoRX) that upgrades an existing consensus algorithm, the proof‐of‐reputation‐X (PoRX). PL‐PoRX replaces the trusted identity database in PoRX with a new admission process to make the algorithm suitable for permissionless blockchains, while maintaining PoRX's reputation mechanism. Several experiments are conducted to show the efficiency of our approach under different scenarios. We also debate the security model of the new protocol and study its time complexity. The results show that PL‐PoRX decreases the number of blocks issued by malicious miners, and help benign miners build reputation faster.

show abstract