Enhancing security and efficiency in cloud computing authentication and key agreement scheme based on smart card

Bouchaala, Mariem; Ghazel, Cherif; Saı̈dane, Leı̈la Azouz

doi:10.1007/s11227-021-03857-7

Cited by 18 publications

(27 citation statements)

References 28 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…• We analyse security of Bouchaala et al's 35 protocol to illustrate its vulnerability to replay and KSSTI attacks. Furthermore, security analysis of Kaur et al's 36 protocol reveals that it is prone to a replay attack and Dharminder et al's 37 protocol is vulnerable to KSSTI and user traceability attacks.…”

Section: Motivations and Contributionmentioning

confidence: 99%

“…This section reviews different phases in Bouchaala et al's protocol 35 . Table 2 lists different notations incorporated in this article.…”

Section: Security Analysis Of Bouchaala Et Al's Protocolmentioning

confidence: 99%

“…In this direction, several 2‐FA and M‐FA protocols have been designed in the literature. This article analyzes the security of three recently designed authentication protocols 35‐37 . We illustrate that Kaur et al's protocol 36 is prone to replay attack, Dharminder et al's protocol 37 is prone to known session‐specific temporary information (KSSTI) and user traceability attacks, and Bouchaala et al's protocol 35 is vulnerable to replay and KSSTI attacks.…”

Section: Introductionmentioning

confidence: 99%

“…For instance, Dharminder et al's 37 protocol is prone to KSSTI and user traceability attacks. The Kaur et al's 36 protocol is prone to replay attack, whereas Bouchaala et al's protocol 35 is vulnerable to KSSTI and replay attacks. To mitigate these security vulnerabilities, we design an enhanced protocol based on ECC and smart card for the cloud environment.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

A novel and provably secure mutual authentication protocol for cloud environment using elliptic curve cryptography and fuzzy verifier

Patel

Shukla

Patel

2023

Concurrency and Computation

View full text Add to dashboard Cite

SummaryCloud computing is an emerging paradigm that enables on‐demand data storage without considering the local infrastructure limitations of end‐users. The extensive growth in number of servers, resources, and networks intensifies security and privacy concerns in clouds. This necessitates secure mutual authentication and key agreement mechanism to verify the legitimacy of participating entities. In accordance, several authentication protocols have been designed to authenticate end‐users over insecure channels. This article presents security analysis of recent protocols that claim to render security and privacy features. We demonstrate that Kaur et al.'s protocol is vulnerable to replay attack, Dharminder et al.'s protocol is prone to user traceability and known session‐specific temporary information (KSSTI) attacks, and Bouchaala et al.'s protocol is prone to replay and KSSTI attacks. To withstand the aforementioned attacks, we propose an enhanced protocol based on fuzzy verifier and elliptic curve cryptography for clouds. Our protocol safeguards against security attacks while providing privacy functionalities. The security analysis is illustrated under real‐or‐random model, and correctness is verified under the Scyther security verification tool. Finally, comparative analysis with existing protocols shows that our protocol delivers robust security with reasonable computational and communication overheads than state‐of‐the‐art protocols.

show abstract

Section: Motivations and Contributionmentioning

confidence: 99%

“…This section reviews different phases in Bouchaala et al's protocol 35 . Table 2 lists different notations incorporated in this article.…”

Section: Security Analysis Of Bouchaala Et Al's Protocolmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A novel and provably secure mutual authentication protocol for cloud environment using elliptic curve cryptography and fuzzy verifier

Patel

Shukla

Patel

2023

Concurrency and Computation

View full text Add to dashboard Cite

show abstract

“…When plain images are transmitted directly online, they will be vulnerable to various cyber-attacks such as stealing and tampering, which may cause huge losses to the owner of the images. Therefore, image encryption plays an important role in ensuring the security of information [3], which also progresses the study of cryptography. At present, there have been a wide range of secure and effective data encryption technologies proposed by cryptographic experts [21], such as DES [6], AES [20], RSA, and RC6.…”

Section: Introductionmentioning

confidence: 99%

A Research of Image Encryption Algorithm Based on Double Time-delay Lorenz System

Zhou

Zhu

2022

Preprint

View full text Add to dashboard Cite

Traditional image encryption technology is usually disadvantaged by low encryption efficiency and inadequate security. In this paper, the time-delay chaos theory was combined with traditional encryption technology to propose a double time-delay chaos-based image encryption algorithm according to the characteristics of image information. First of all, the nonlinear dynamics theory was applied to study the stability of the double time-delay Lorenz system at the equilibrium point and the preconditions for Hopf bifurcation. Then, an analysis was conducted as to the distribution of corresponding characteristic Eq.roots at the equilibrium point, thus obtaining the time-delay critical points for the local asymptotic stability and Hopf bifurcation of the system at the equilibrium point. Secondly, the time-delay critical point was referenced to design the relevant system parameters and time delay of the double time-delay Lorenz system entering the chaotic state, through which the pseudo-random sequence of the chaotic system was determined. Thirdly, the pseudo-random sequence was used for scrambling and diffusion, so as to complete image encryption. Finally, simulation experiment and analysis were conducted for the algorithm from various perspectives such as key space size, key sensitivity, plaintext image sensitivity, plaintext histogram, and so on. According to the research results, the proposed algorithm was capable of producing satisfactory scrambling effect and effective in encrypting and decrypting images without distortion. Meanwhile, the scheme demonstrated not only a certain level of robustness to statistical attack, selective plaintext attack and noise, but also higher stability.

show abstract

A design of provably secure multi-factor ECC-based authentication protocol in multi-server cloud architecture

Shukla

Patel

2023

Cluster Comput

View full text Add to dashboard Cite

Enhancing security and efficiency in cloud computing authentication and key agreement scheme based on smart card

Cited by 18 publications

References 28 publications

A novel and provably secure mutual authentication protocol for cloud environment using elliptic curve cryptography and fuzzy verifier

A novel and provably secure mutual authentication protocol for cloud environment using elliptic curve cryptography and fuzzy verifier

A Research of Image Encryption Algorithm Based on Double Time-delay Lorenz System

A design of provably secure multi-factor ECC-based authentication protocol in multi-server cloud architecture

Contact Info

Product

Resources

About