Design of a secure smart card-based multi-server authentication scheme

Chaturvedi, Ankita; Das, Ashok Kumar; Mishra, Dheerendra; Mukhopadhyay, Sourav

doi:10.1016/j.jisa.2016.05.006

Cited by 19 publications

(13 citation statements)

References 55 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…If the session key between the sender and the receiver is compromised at any point by an attacker, the attacker may use the session key for future malicious communications, or use it to obtain previous messages [28][29].…”

Section: Forward and Backward Secrecymentioning

confidence: 99%

An Intelligent and Secure Package Sensoring Logistics System Based on a Subliminal Channel

Chen¹,

Deng²,

Li³

et al. 2019

Preprint

View full text Add to dashboard Cite

As e-commerce services and Internet technology have rapidly developed in recent years, many services and applications integrating these technologies can now be completed online. These commercial activities include online auctions, online ticketing and online payments. The client shops from the store online, andthe store delivers the goods to the client. The goods can be divided into digital products without entities, as well as actual entities. If it is a physical product, the store will deliver the package to the client through itslogistics. However, there have been many cases of switched goods purchased by clients in recent years. Earlier, some scholars proposed a security mechanism with a subliminal channel for E-cash and digital content. Only the sender and the receiver would know that the secret information was hidden in the signature. So the privacy of this subliminal message couldbe ensured. We apply this concept to the logistics environment to design secure logistics architecture with subliminal messages. The client can check the subliminal message of the received package, and know whether the package has been switched by malicious people. In addition, the proposed scheme also applies sensor technology;the client can check the GPS location, the temperature and humidity at any time during the delivery process. So intelligent logisticswouldthereby be achieved. This paper proposes an intelligent and secure package sensoring logistics system based on a subliminal channel. The proposed architecture uses the related mechanisms tosolve the problems of a logistics system, including how to achieve mutual authentication, data integrity, anti-switch package, package location and status tracing, resisting replay attacks, forward and backward secrecy, and non-repudiation issues.

show abstract

Section: Forward and Backward Secrecymentioning

confidence: 99%

An Intelligent and Secure Package Sensoring Logistics System Based on a Subliminal Channel

Chen¹,

Deng²,

Li³

et al. 2019

Preprint

View full text Add to dashboard Cite

show abstract

“…Moreover, the ECC‐based authentication schemes proposed by Kalra et al and Qi et al require secure channel in registration phase that incurs additional overheads for the establishment of secure channel. In recent time, many researchers proposed bio‐metric based and smartcard based authentication schemes to provide higher security and robustness but due to the higher maintenance cost of these technologies and security weaknesses, they are not widely accepted as briefly discussed now. In 2014, Chen et al proposed a smart card based password authentication scheme and claims that the scheme can resist various malicious attacks.…”

Section: Background Studymentioning

confidence: 99%

Efficient and secure business model for content centric network using elliptic curve cryptography

Adhikari

Ray

Biswas

et al. 2018

Int J Communication

View full text Add to dashboard Cite

Initially, Internet has evolved as a resource sharing model where resources are identified by IP addresses. However, with rapid technological advancement, resources/hardware has become cheap and thus, the need of sharing hardware over Internet is reduced. Moreover, people are using Internet mainly for information exchange and hence, Internet has gradually shifted from resource sharing to information sharing model. To meet the recent growing demand of information exchange, Content Centric Network (CCN) is envisaged as a clean-slate future network architecture which is specially destined for smooth content distribution over Internet. In CCN, content is easily made available using network caching mechanism which is misaligned with the existing business policy of content providers/publishers in IP-based Internet. Hence, the transition from contemporary IP-based Internet to CCN demands attention for redesigning the business policy of the content publishers/providers. In this paper, we have proposed efficient and secure communication protocols for flexible CCN business model to protect the existing business policies of the content publisher while maintaining the salient CCN features like in-network content caching and Interest packet aggregation. To enhance the efficiency and security, the Elliptic Curve Cryptography (ECC) is used. The proposed ECC-based scheme is analyzed to show that it is resilient to relevant existing cryptographic attacks. The performance analysis in terms of less computation and communication overheads and increased efficiency is given. Moreover, a formal security verification of the proposed scheme is done using widely used AVISPA simulator and BAN logic that shows our scheme is well secured.

show abstract

“…Follow up research [3,6,16,18,23,24,[30][31][32][33][34][35][36][37][38][39] has also been proposed. Because these schemes suffered from a susceptibility to ID-theft attack, an attacker could forge a legal user using an eavesdropped users' identity documentation.…”

Section: Introductionmentioning

confidence: 99%

An Improvement on Remote User Authentication Schemes Using Smart Cards

Deng

Tang

et al. 2018

Computers

View full text Add to dashboard Cite

Abstract:In 2010, Yeh et al. proposed two robust remote user authentication schemes using smart cards; their claims were such that their schemes defended against ID-theft attacks, reply attacks, undetectable on-line password guessing attacks, off-line password guessing attacks, user impersonation attack, server counterfeit attack and man-in-the-middle attack. In this paper, we show that Yeh et al.'s schemes are still vulnerable to ID-theft attack, off-line password guessing attacks, undetectable on-line password guessing attacks and user impersonation attack. Notably, problems remain in situations where the user lost a smart card or the malicious legal user. To remedy these flaws, this paper proposes an improvement on Yeh et al.'s remote user authentication schemes using smart cards.

show abstract

Design of a secure smart card-based multi-server authentication scheme

Cited by 19 publications

References 55 publications

An Intelligent and Secure Package Sensoring Logistics System Based on a Subliminal Channel

An Intelligent and Secure Package Sensoring Logistics System Based on a Subliminal Channel

Efficient and secure business model for content centric network using elliptic curve cryptography

An Improvement on Remote User Authentication Schemes Using Smart Cards

Contact Info

Product

Resources

About