Applying biometrics to design three‐factor remote user authentication scheme with key agreement

Niu, Jianwei; Wang, Zhen; Chen, Caisen

doi:10.1002/sec.767

Cited by 66 publications

(58 citation statements)

References 37 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Yoon and Yoo [32] proposed a robust client-server authentication scheme to offer strong user authentication, although Kim et al [33] pointed out that the scheme of Yoon and Yoo was not resilient to password (offline) guessing attacks. Recently, Li et al [34] found some security weaknesses of Das [31] and Lee et al [35], such as session-key agreement and key-impersonation attacks using biometric-based user authentication schemes. As a consequence, none of the existing authentication schemes [9][10][11][12][28][29][30][31][32][33][34][35][36][37][38][39][40][41][42] fulfill the security properties of the AKA protocol and resist most of the potential attacks, such as password guessing, key impersonation, and so on, in the multimedia client-server environment.…”

Section: Related Workmentioning

confidence: 99%

Analyzing the mutual authenticated session key in IP multimedia server-client systems for 4G networks

Deebak¹,

Muthaiah²,

Thenmozhi³

et al. 2016

Turk J Elec Eng & Comp Sci

View full text Add to dashboard Cite

This paper scrutinizes the authentication and key agreement protocol adopted by the Universal Mobile Telecommunication System to meet the standards of a fourth-generation network. Lately, communication of multimedia (CoM) has drawn the attention of researchers for the future of secure wireless mobile communication. However, the CoM has not had any defensive mechanism to fulfil the specifications of 3GPP and reduce the computation and communication overheads and susceptible attacks like redirection, man-in-the-middle, and denial of service attacks. In addition, this paper has thoroughly investigated some existing protocols from the literature for the identification of new challenges in server-client authentication. To probe the challenges of the existing schemes realistically, the multimedia client and multimedia server components (proxy, interrogating, serving, and home subscriber server) were physically deployed on the Linux platform to examine the specifications of 3GPP, vulnerable attacks, computation, and communication overheads.We observed that the examined existing schemes are not able to fulfill the above criteria. We thus propose addition of the mutual authenticated session key (MASK) to the physical environment of the multimedia server-client. To satisfy the 3GPP specifications, the protocol of MASK offers mutual authenticity to the multimedia server-client. Moreover, the feature of mutual authenticity reduces the computation and communication overheads of the multimedia server-client.Since the session keys are jointly shared between the multimedia server and client, the protocol of MASK can additionally provide privacy preservation and forward secrecy.

show abstract

Section: Related Workmentioning

confidence: 99%

Analyzing the mutual authenticated session key in IP multimedia server-client systems for 4G networks

Deebak¹,

Muthaiah²,

Thenmozhi³

et al. 2016

Turk J Elec Eng & Comp Sci

View full text Add to dashboard Cite

show abstract

“…The password and smart card based two-factor user authentication enhanced the security. However, most of these two-factor user authentication schemes are designed for single server environments [2][3][4][5][6][7][8]. Therefore, in order to login to different servers using the single server authentication scheme, the user has to repetitively register to the different servers, and remember numerous different identities and passwords for different servers.…”

Section: Introductionmentioning

confidence: 98%

“…The user authentication scheme is the most simple and effective way to resolve this security issue, which can make the remote server to verify the identity of the user when the user wants to access the remote server. Since Lamport [1] proposed the first user authentication scheme for insecure channel, many researchers have done a lot of works and got many achievements [2][3][4][5][6][7][8][9][10][11][12][13][14][15][16][17][18] in this area. In the password based schemes, the user registers his identity and password to the remote server, and the server can verify the validity of the user by matching the user's identity and password with the stored information.…”

Section: Introductionmentioning

confidence: 99%

“…The smart card is an integrated circuit card which can provide identification, data storage and application processing, and can provide strong security authentication for large networks. Thereafter, the researchers have proposed password and smart card based two-factor user authentication schemes [2][3][4][5][6][7][8][9][10][11][12][13][14][15][16][17][18], which store the required secret information on the user's smart card and the server does not need to store a verification table. The password and smart card based two-factor user authentication enhanced the security.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Cryptanalysis of a robust smart card authentication scheme for multi-server architecture

Khan

Kumari

et al. 2014

2014 International Symposium on Biometrics and Security Technologies (ISBAST)

Self Cite

View full text Add to dashboard Cite

User authentication is an important security issue for network based services. Multi-server authentication scheme resolves the repeated registration problem of single-server authentication scenario where the user has to register at different servers to access different types of network services. Recently, Pippal et al. proposed a smart card authentication scheme for multi-server architecture. They claimed that their scheme has some advantages and can resist kinds of attacks. In this paper, we analyze the weaknesses of Pippal et al.'s scheme, and point out that their scheme cannot provide correct authentication, cannot resist impersonation attack, stolen smart card attack, and insider attack. Besides, their scheme is nonextensible when a new server added into the system.

show abstract

“…Very recently, dozens of biometrics-based authentication schemes for TMIS have been proposed for providing the stronger security [19][20][21][22][23][24]. Nevertheless, these protocols still have more or less deficiencies and limitations in security and efficiency.…”

mentioning

confidence: 98%

An Improved Biometrics-Based Authentication Scheme for Telecare Medical Information Systems

Guo

Wen

et al. 2015

J Med Syst

View full text Add to dashboard Cite

Telecare medical information system (TMIS) offers healthcare delivery services and patients can acquire their desired medical services conveniently through public networks. The protection of patients' privacy and data confidentiality are significant. Very recently, Mishra et al. proposed a biometrics-based authentication scheme for telecare medical information system. Their scheme can protect user privacy and is believed to resist a range of network attacks. In this paper, we analyze Mishra et al.'s scheme and identify that their scheme is insecure to against known session key attack and impersonation attack. Thereby, we present a modified biometrics-based authentication scheme for TMIS to eliminate the aforementioned faults. Besides, we demonstrate the completeness of the proposed scheme through BAN-logic. Compared to the related schemes, our protocol can provide stronger security and it is more practical.

show abstract

Applying biometrics to design three‐factor remote user authentication scheme with key agreement

Cited by 66 publications

References 37 publications

Analyzing the mutual authenticated session key in IP multimedia server-client systems for 4G networks

Analyzing the mutual authenticated session key in IP multimedia server-client systems for 4G networks

Cryptanalysis of a robust smart card authentication scheme for multi-server architecture

An Improved Biometrics-Based Authentication Scheme for Telecare Medical Information Systems

Contact Info

Product

Resources

About