An Efficient and Practical Smart Card Based Anonymity Preserving User Authentication Scheme for TMIS using Elliptic Curve Cryptography

Amin, Ruhul; Islam, SK Hafizul; Biswas, Gautam; Khan, Muhammad Khurram; Kumar, Neeraj

doi:10.1007/s10916-015-0351-y

Cited by 93 publications

(59 citation statements)

References 52 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Let ⟨ ⟩ ← Reveal( 2 = ℎ( ‖ )) (12) if ( == ) then (13) Accept ID , ( ) , , as the correct ID , ( ), , , respectively. (14) return 0 (Success) (15) else (16) return 0 (Failure) (17) else (18) return 0 (Failure) (19) else (20) return 0 (Failure) (21) end if roles. The fundamental types available in the HLPSL are [46] as follows:…”

Section: Simulation Results Using Avispamentioning

confidence: 99%

See 1 more Smart Citation

Improving an Anonymous and Provably Secure Authentication Protocol for a Mobile User

Moon

Lee

Kim

et al. 2017

Security and Communication Networks

View full text Add to dashboard Cite

Recently many authentication protocols using an extended chaotic map were suggested for a mobile user. Many researchers demonstrated that authentication protocol needs to provide key agreement, mutual authentication, and user anonymity between mobile user and server and resilience to many possible attacks. In this paper, we cautiously analyzed chaotic-map-based authentication scheme and proved that it is still insecure to off-line identity guessing, user and server impersonation, and on-line identity guessing attacks. To address these vulnerabilities, we proposed an improved protocol based on an extended chaotic map and a fuzzy extractor. We proved the security of the proposed protocol using a random oracle and AVISPA (Automated Validation of Internet Security Protocols and Applications) tool. Furthermore, we present an informal security analysis to make sure that the improved protocol is invulnerable to possible attacks. The proposed protocol is also computationally efficient when compared to other previous protocols.

show abstract

Section: Simulation Results Using Avispamentioning

confidence: 99%

“…To design a secure authentication scheme, some cryptographic algorithms are also used, such as an RSA cryptosystem [14,15], elliptic curve cryptography [16,17], hash function [18,19], and chaos-based cryptography [20][21][22].…”

Section: Introductionmentioning

confidence: 99%

Improving an Anonymous and Provably Secure Authentication Protocol for a Mobile User

Moon

Lee

Kim

et al. 2017

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…In this section, the proposed scheme is compared with the recently proposed schemes of Xu et al , , Amin‐Biswas , Amin et al , , Lu et al , , and Amin et al , with respect to computational cost, communication cost during login, and authentication and key agreement phases, and also functionality features. The registration is a one‐time process; identity change and password change are not frequently performed operations of the protocol.…”

Section: Performance Comparisonmentioning

confidence: 99%

“…Amin et al , also presented an efficient authentication scheme for TMIS using the elliptic curve cryptographic technique. As in , their scheme is also vulnerable to privileged‐insider attack through the smart card stolen attack because of the following reason.…”

Section: Introductionmentioning

confidence: 99%

Design of an efficient and provably secure anonymity preserving three‐factor user authentication and key agreement scheme for TMIS

Wazid

Das

Kumari

et al. 2016

Security Comm Networks

View full text Add to dashboard Cite

Several remote user authentication techniques for telecare medicine information system (TMIS) have been proposed in the literature. But most existing techniques have limitations such as vulnerable to various attacks, lack of functionalities, and inefficiency. Recently, Amin and Biswas proposed a three-factor authentication and key agreement technique for TMIS. But their scheme is inefficient and has several security drawbacks. The attacks such as privileged-insider, user impersonation, and strong reply attacks are possible on their scheme. It also has flaw in password update phase. In order to overcome drawbacks of their scheme, a new provably secure and efficient three-factor remote user authentication scheme for TMIS is proposed in this paper. The proposed scheme overcomes all drawbacks of their scheme and also provides additional features such as user unlinkability, user anonymity, efficient password, and biometric update. The rigorous informal and formal security analysis using random oracle models and the mostly acceptable Automated Validation of Internet Security Protocols and Applications tool is also performed. During the experimentation, it has been observed that the proposed scheme is secure against various known attacks that include replay and man-in-the-middle attacks. Furthermore, the analysis of computation and communication cost estimation of the proposed scheme depicts that our scheme is efficient as compared with other related exiting schemes.

show abstract

“…A host of authentication schemes for all kinds of communications has been proposed, such as signatures and key agreement schemes . Two‐factor mechanism attracts the researchers, such as . In the earlier schemes, besides the password chosen by the user, the mobile device was equipped with a smart card, which was assigned by a server.…”

Section: Introductionmentioning

confidence: 99%

A novel three-factor authentication and key agreement scheme providing anonymity in global mobility networks

2016

Security Comm. Networks

View full text Add to dashboard Cite

As an important service, global roaming is widely used in global mobility networks to make the stable connectivity when the user goes through between different networks. To keep the security of communication, mutual authentication among the foreign agent, the home agent, and the user is a necessary part before normal data flow of the communication. Besides that, the need that the user's personal information should be protected is also an urgent task in the intercourse. Until now, a host of two‐factor authentication schemes has been presented, and many weaknesses are presented under security analysis. Here, we propose a new three‐factor key agreement and authentication scheme to overcome the problems, which exist in the past schemes. The security of the scheme is proved with three ways. The first is the formal proof employing the random oracle model. The second is the formal verification with Proverif, and the last is the informal analysis. And the presented scheme has all common security properties and is practical for applications. Copyright © 2016 John Wiley & Sons, Ltd.

show abstract

An Efficient and Practical Smart Card Based Anonymity Preserving User Authentication Scheme for TMIS using Elliptic Curve Cryptography

Cited by 93 publications

References 52 publications

Improving an Anonymous and Provably Secure Authentication Protocol for a Mobile User

Improving an Anonymous and Provably Secure Authentication Protocol for a Mobile User

Design of an efficient and provably secure anonymity preserving three‐factor user authentication and key agreement scheme for TMIS

A novel three-factor authentication and key agreement scheme providing anonymity in global mobility networks

Contact Info

Product

Resources

About