Secure and Efficient Smart-Card-Based Remote User Authentication Scheme for Multiserver Environment

Shunmuganathan, Saraswathi; Saravanan, R.; Yogesh, P.

doi:10.1109/cjece.2014.2344447

Cited by 41 publications

(14 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Moreover, a series of related works have been proposed in the context of identity authentication mechanisms that can be used for remote servers accessing [44]- [47]. Throughout the work proposed in [44], a dynamic ID based authentication scheme is introduced. This work is not only based on simple hash functions and some XORing operations but also uses password randomization for each session to improve the dynamic property of identity.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Virtual Identity Performance Evaluations of Anonymous Authentication in IDaaS Framework

et al. 2019

View full text Add to dashboard Cite

Identity-as-a-Service (IDaaS) is one of the most famous fruitful authentication services for cloud deployment to the Software-as-a-Service (SaaS) model. It is a third party approach for identity management, including creation, authentication, and privacy assurance. In this paper, the Virtual Identity (V ID), as a new realization for IDaaS terminology which can be used in virtual environments, is proposed to improve the user privacy and to provide the anonymous Single sign-on (SSO) in such types of distributed environments. Actually, two V ID frameworks based on the Identity-Based Encryption (IBE) and Pseudonym-Based Encryption (PBE) approaches are proposed and then implemented using MIRACL library. The V ID approaches performance is evaluated analytically by implementing a mathematical model based on BCMP (Baskett Chandy Muntz Palacios) queuing model. In addition, a simulation-based evaluation using OPNET Modeler is introduced to compare the analytical-based BCMP queuing model against the OPNET simulation results. Moreover, the proposed approaches are compared against state-of-the-art work.

show abstract

Section: Related Workmentioning

confidence: 99%

“…In this part, we introduce both computation and communication costs comparison between the proposed approaches (IBE & PBE) and relevant works [44]- [47]. In addition, we present the security comparative study between the proposed approaches and the same related works.…”

Section: Computation and Security Comparisonsmentioning

confidence: 99%

Virtual Identity Performance Evaluations of Anonymous Authentication in IDaaS Framework

et al. 2019

View full text Add to dashboard Cite

show abstract

“…In 2013, Li et al [9] also proposed an enhance dynamic ID based remote user authentication scheme. However, in 2015, Shunmuganathan et al [7] claimed that Li et al's protocol [9] has a flaw against the off-line password guessing attack, stolen smart card attack and forgery attack. They proposed an improved protocol to remedy the security weakness.…”

Section: Related Workmentioning

confidence: 99%

“…Shunmuganathan et al [7] claimed that their protocol can resist all known attack such as off-line password guessing attack, user impersonation attack and stolen smart card attack. After careful analysis, we found that their scheme is still vulnerable to off-line password guessing attack.…”

Section: Security Analysismentioning

confidence: 99%

See 1 more Smart Citation

Cryptanalysis of Smart-card-based remote User Authentication Scheme for Multi-server Environment

Sun

Moon

Choi

et al. 2016

The Proceedings of the 4th International Conference on Industrial Application Engineering 2016

View full text Add to dashboard Cite

The traditional remote user authentication scheme is designed for single-server environment. However, with the increasing of network services, the user is not only required to severally register with each server, but also must store a mass of different identities and passwords. Therefore, a large number of password based remote user authentication scheme for multi-server environment have been proposed by researchers. Unfortunately, all the proposed remote user authentication scheme for multi-server environment have a big design defect in the login phase that user have to use the original static ID to login to server without encrypt. To fix this problem, Li et al. proposed a dynamic ID based remote user authentication scheme for multi-server environment. Recently, Shunmuganathan et al. pointed out that Li et al.'s scheme is vulnerable to off-line password guessing attack, stolen smart card attack and user impersonation attack. Later, they proposed an improved protocol to fix these problems. However, we found that Shunmuganathan et al.'s scheme is still vulnerable to off-line password guessing attack, off-line identity guessing attack and user impersonation attack.

show abstract

Research on Blockchain-Based Identity Authentication Scheme in Social Networks

2020

Machine Learning for Cyber Security

View full text Add to dashboard Cite

Secure and Efficient Smart-Card-Based Remote User Authentication Scheme for Multiserver Environment

Cited by 41 publications

References 19 publications

Virtual Identity Performance Evaluations of Anonymous Authentication in IDaaS Framework

Virtual Identity Performance Evaluations of Anonymous Authentication in IDaaS Framework

Cryptanalysis of Smart-card-based remote User Authentication Scheme for Multi-server Environment

Research on Blockchain-Based Identity Authentication Scheme in Social Networks

Contact Info

Product

Resources

About