A Secure Authentication Scheme with User Anonymity for Roaming Service in Global Mobility Networks

Karuppiah, Marimuthu; Saravanan, R.

doi:10.1007/s11277-015-2524-x

Cited by 62 publications

(50 citation statements)

References 44 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this section, the proposed scheme is compared with the recent related works 21,[31][32][33][34]36,43 in terms of the computational cost and communication overhead. The notations used in the performance analysis are defined in Table 3.…”

Section: Performance Analysismentioning

confidence: 99%

“…The notations used in the performance analysis are defined in Table 3. In Table 4, we compared the communication overhead of the proposed scheme and the related schemes 21,[31][32][33][34]36,43 in terms of the total number of bits required for all transmitted messages during the login and authentication phase. Note that it is assumed that the output of the hash function is 160-bit, a random number is 160-bit, a time stamp is 32-bit, a user identity is 128-bit, the length of a point on the elliptic curve is 320-bit, and the output of a symmetric encryption is 160-bit.…”

Section: Performance Analysismentioning

confidence: 99%

“…Communication cost comparisonThe proposed Xie et al31 He et al33 Shin et al34 Farash et al32 Karuppiah et al21 Karuppiah & Saravanan43 Zhao et al36 …”

mentioning

confidence: 99%

See 2 more Smart Citations

A secure authentication and key agreement scheme for roaming service with user anonymity

Arshad

Rasoolzadegan

2017

Int J Communication

View full text Add to dashboard Cite

Nowadays, with the advancement of wireless technologies, global mobility networks offer roaming services for mobile users. Since in global mobility networks the communication channel is public, adversaries can launch different security attacks to breach the security and privacy of data and mobile users. Hence, an authentication and key agreement scheme can be used to provide secure roaming services. It is well known that the conventional authentication schemes are not suitable for global mobility networks, because the authentication server of each network has the credentials of its registered users and thus cannot verify the authenticity of the other mobile users. Hence, for providing secure roaming services, another type of authentication called roaming authentication is required. Hitherto, a large number of authentication protocols have been proposed for global mobility networks. However, most of them have been proved to be insecure against various attacks. This paper proposes a secure and efficient authentication and key agreement scheme for global mobility networks. The proposed scheme is based on the elliptic curve cryptosystem. The correctness of the proposed scheme is verified using Burrows-Abadi-Needham logic.In addition, the security of the proposed scheme is proved using ProVerif. Detailed analyses demonstrate that the proposed scheme not only withstands various security attacks but also improves the efficiency by reducing the computational costs. KEYWORDS authentication, global mobility network (GLOMONET), key agreement, roaming service, security Int J Commun Syst. 2017;30:e3361.wileyonlinelibrary.com/journal/dac

show abstract

Section: Performance Analysismentioning

confidence: 99%

Section: Performance Analysismentioning

confidence: 99%

See 1 more Smart Citation

A secure authentication and key agreement scheme for roaming service with user anonymity

Arshad

Rasoolzadegan

2017

Int J Communication

View full text Add to dashboard Cite

show abstract

“…Karuppiah and Saravanan improved the scheme of Rhee et al to protect MS's identity and provide forward secrecy; the protection of the identity is achieved through an encryption using an ephemeral Diffie‐Hellman key between a MS and its HN. However, each authentication needs the involvement of the station's HN; this worsens the communication burden.…”

Section: Umts‐aka and Related Workmentioning

confidence: 99%

An effective approach to solving large communication overhead issue and strengthening the securities of AKA protocols

Chien

2017

Int J Communication

View full text Add to dashboard Cite

SummaryAuthentication and key agreement (AKA) is a challenge-response-like security protocol that uses symmetric-key cryptography to establish authenticated keys between 2 parties. Its application in the third-generation mobile system universal mobile telecommunications system (UMTS) is called UMTS-AKA, and the version applied in the fourth-generation mobile communication system long-term evolution (LTE) is called LTE-AKA. Both UMTS-AKA and LTE-AKA share the same weakness: the network operators need to maintain a large space of authentication vectors for visiting stations, and the transmission of the vectors causes lots of overhead. This weakness will be amplified when there are billions of devices accessing the network in the Internet-of-things scenarios. In addition, these schemes provide only key distribution (not key agreement) and cannot provide session key forward secrecy. In this paper, we propose a range-bound key assignment technique to tackle the challenges. The proposed scheme drastically reduces the communication overhead and greatly strengthens the security robustness. The securities are analyzed and are verified using the AVISPA toolset. | INTRODUCTIONIn the mobile networks such as universal mobile telecommunications system (UMTS) and long-term evolution (LTE), a mobile station (MS) need to establish authenticated keys with the current serving network (SN) via the help of the station's home network (HN). 1-3 The authentication and key agreement (AKA) protocol is one of the most popular authentication protocols adopted in mobile networks. AKA is a challenge-response-like (we will elaborate on this in Section 2) protocol that applies symmetric-key cryptography to establish authenticated keys between 2 parties. Initially, an MS and its HN share some secret keys. When an MS visits an SN, it launches a service request upon which the SN forwards the request to the HN, and the HN returns some authentication vectors (AVs) for the SN to share authenticated session keys with the MS. The long latency between an SN and an HN could incur unbearable communication burden on the authentication process; therefore, the core of both UMTS-AKA 1 and LTE-AKA 2 is to reduce the number of interactions between an SN and an HN. This is achieved by delivering a list of AVs when an SN forwards a request to an HN. Each vector in an AV list consists of (XSQN, RAND, AUTH, XRES, and keying materials) for the SN and the MS to authenticate each other and to derive the same session keys (keying materials). XSQN is an encrypted form of the MS's sequence number (SQN). RAND acts a challenge from the HN. AUTH acts as the HN's response to the MS's request. XRES is the expected response from the MS. Because the HN is not directly involved in the authentication process, the SQN is checked by the MS to ensure the freshness of the corresponding AUTH. This

show abstract

“…Context Aware Technology is developed to predict the frequent disconnections of communication over mobile devices [10][11][12][13][14][15][16][17] die to the continuous flow of user's mobility. Quality of bandwidth may vary quickly based on user's mobility from one location to another.…”

Section: Context Aware Technologymentioning

confidence: 99%

Smarter Way to Access Multiple Mobile Cloud Applications without Interoperability Issues

Thanapal¹,

Marimuthub²,

Rajkumar³

et al. 2017

IJWMT

View full text Add to dashboard Cite

As we are in the world of emerging technologies people have more awareness about it especially Smartphone's. Usage of Smartphone's has been increased tremendously. Different operating systems (OS) are used in smart phones such as MAC OS, Android, and Windows OS etc. Most of the applications are run on their appropriate platform. Cloud is the simplest way to run certain application over cross platforms. Many cloud vendors are there who provides several kinds of applications and software which can be accessed by the users. In that Application Programming Interfaces (APIs) helps us to create a cloud application over the market. However there will be chances to occur Interoperability issues while users were working on a cross platforms. In order to overcome this issue a framework has been proposed named Mobile Cloud Middleware (MCM). MCM will recover the interoperability issues over multiple cloud services on mobile devices. Here in this paper we proposed effective result to solve the Interoperability issue by integrating Mobile Enterprise with MCM.

show abstract

A Secure Authentication Scheme with User Anonymity for Roaming Service in Global Mobility Networks

Cited by 62 publications

References 44 publications

A secure authentication and key agreement scheme for roaming service with user anonymity

A secure authentication and key agreement scheme for roaming service with user anonymity

An effective approach to solving large communication overhead issue and strengthening the securities of AKA protocols

Smarter Way to Access Multiple Mobile Cloud Applications without Interoperability Issues

Contact Info

Product

Resources

About