Secure Mobile User Authentication and Key Agreement Protocol with Privacy Protection in Global Mobility Networks

Xie, Qi; Bao, Mengjie; Dong, Na; Hu, Bin; Wong, Duncan S.

doi:10.1109/isbast.2013.23

Cited by 8 publications

(11 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Compared with the preliminary work, the modified scheme Performance cost Estimated time (s) Mun et al [7] 11 ℎ + 4 0.2578 Li and Lee [9] 15 + 7 ℎ + 14 7.9553 Hu et al [10] 11 + 6 ℎ + 8 0.77 Chen et al [11] 6 + 16 ℎ 0.0602 Xie et al [12] 6 + 9 ℎ + 7 0.44385 Chen et al [13] 6 + 11 ℎ + 4 3.1723 Xie et al [14] 8 + 8 ℎ + 9 4.2501 Our scheme 6 + 7 ℎ + 7 0.44285…”

Section: Discussionmentioning

confidence: 99%

“…In this section, we demonstrate a practical scheme which is a modified version of our preliminary scheme in [12]. Some notations which will be used in this paper are defined as follows:…”

Section: The Proposed Schemementioning

confidence: 99%

“…However, Hu et al [10] showed that Li et al 's improved scheme cannot resist the foreign agent's impersonation attacks and proposed an improved scheme. In 2011, Chen et al [11] proposed 2 International Journal of Distributed Sensor Networks a lightweight anonymous user authentication for roaming in the global mobility network, but Xie et al [12] showed that their scheme is vulnerable to offline password attack and does not achieve fair session key generation, user untraceability, user friendliness, and perfect forward secrecy; then they proposed an improved scheme to overcome the weaknesses of Chen et al 's scheme. Very recently, Chen et al [13] and Xie et al [14] proposed some other anonymous authentication schemes for roaming service in global mobility networks.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Privacy-Preserving Mobile Roaming Authentication with Security Proof in Global Mobility Networks

Xie

Dong-zhao

Bao

et al. 2014

International Journal of Distributed Sensor Networks

Self Cite

View full text Add to dashboard Cite

Mobile roaming authentication scheme achieves the mutual authentication and session key establishment between the mobile user and the foreign agent. In 2013, Xie et al. pointed out that Chen et al. 's scheme is vulnerable to offline password attack, and does not achieve fair session key generation, user untraceability, user friendliness, and perfect forward secrecy, and then they proposed an improved scheme. In this paper, we propose an improvement of Xie et al. 's scheme, since the foreign agent may confuse the mobile users when multiple mobile users simultaneously access the foreign agent in Xie et al. 's scheme. Further, we prove the formal security of the proposed scheme, and present the performance comparison between our scheme and some related schemes. The proposed scheme is more efficient and secure than other related schemes and is suitable for using in the global mobility network.

show abstract

Section: Discussionmentioning

confidence: 99%

“…In this section, we demonstrate a practical scheme which is a modified version of our preliminary scheme in [12]. Some notations which will be used in this paper are defined as follows:…”

Section: The Proposed Schemementioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Privacy-Preserving Mobile Roaming Authentication with Security Proof in Global Mobility Networks

Xie

Dong-zhao

Bao

et al. 2014

International Journal of Distributed Sensor Networks

Self Cite

View full text Add to dashboard Cite

show abstract

“…So anyone can determine whether the two interactions with different FAs came from the same MU. This is a violation of both user anonymity and untraceability. In 2013, Wang mentioned a secure authentication scheme that has low efficiency, discussed in section 5. In 2013, Zhang mentioned an anonymous scheme of trusted mobile terminal, but the scheme is not efficient and it lacks untraceability and perfect forward secrecy. In 2013, Xie proposed a scheme with privacy protection and good security properties. But since the scheme uses timestamps to resist replay attacks, different entities have to synchronize time between each other, which may cause lower efficiency in Global Mobility Networks. In 2013, Kim pointed out weaknesses in Lee's, Wu's and Mun's schemes and proposed a new scheme for roaming services.…”

Section: Related Workmentioning

confidence: 99%

“…However, current authentication schemes may be vulnerable to several kinds of attacks, could disclose the roaming line of an MU and may not have enough efficiency. A secure and efficient authentication scheme should satisfy the following requirements in practice: Mutual Entity Authentication : MU, HA and FA can authenticate each other's identity and establish a session key securely after authentication.…”

Section: Introductionmentioning

confidence: 99%

A privacy preserving authentication scheme for roaming services in global mobility networks

Zhang

Fan

Zhang

et al. 2015

Security Comm Networks

View full text Add to dashboard Cite

To provide secure roaming services for mobile users in Global Mobility Networks, many schemes have been proposed in recent years. However, most of them focus only on authentication and fail to satisfy many practical security requirements such as user anonymity and untraceability. To address this problem, we propose a privacy-preserving authentication scheme based on elliptic curve cryptography. The proposed scheme is provably secure under a formal model that satisfies all practical security requirements. Compared with existing authentication schemes, ours enjoys better performance in terms of computation cost and security. Perfect Forward Secrecy: An adversary cannot obtain the session keys established between an MU and an FA (HA) in advance, even if it has compromised MU's password or smart card.

show abstract

A pairing‐free identity‐based handover AKE protocol with anonymity in the heterogeneous wireless networks

Lei

Zhang

Wang

et al. 2019

Int J Communication

View full text Add to dashboard Cite

SummaryNowadays, seamless roaming service in heterogeneous wireless networks attracts more and more attention. When a mobile user roams into a foreign domain, the process of secure handover authentication and key exchange (AKE) plays an important role to verify the authenticity and establish a secure communication between the user and the access point. Meanwhile, to prevent the user's current location and moving history information from being tracked, privacy preservation should be also considered. However, existing handover AKE schemes have more or less defects in security aspects or efficiency. In this paper, a secure pairing‐free identity‐based handover AKE protocol with privacy preservation is proposed. In our scheme, users' temporary identities will be used to conceal their real identities during the handover process, and the foreign server can verify the legitimacy of the user with the home server's assistance. Besides, to resist ephemeral private key leakage attack, the session key is generated from the static private keys and the ephemeral private keys together. Security analysis shows that our protocol is provably secure in extended Canetti‐Krawczyk (eCK) model under the computational Diffie‐Hellman (CDH) assumption and can capture desirable security properties including key‐compromise impersonation resistance, ephemeral secrets reveal resistance, strong anonymity, etc. Furthermore, the efficiency of our identity‐based protocol is improved by removing pairings, which not only simplifies the complex management of public key infrastructure (PKI) but also reduces the computation overhead of ID‐based cryptosystem with pairings. It is shown that our proposed handover AKE protocol provides better security assurance and higher computational efficiency for roaming authentication in heterogeneous wireless networks.

show abstract

Secure Mobile User Authentication and Key Agreement Protocol with Privacy Protection in Global Mobility Networks

Cited by 8 publications

References 13 publications

Privacy-Preserving Mobile Roaming Authentication with Security Proof in Global Mobility Networks

Privacy-Preserving Mobile Roaming Authentication with Security Proof in Global Mobility Networks

A privacy preserving authentication scheme for roaming services in global mobility networks

A pairing‐free identity‐based handover AKE protocol with anonymity in the heterogeneous wireless networks

Contact Info

Product

Resources

About