A secure authentication scheme with anonymity for session initiation protocol using elliptic curve cryptography

Zhang, Zezhong; Qi, Qingqing; Kumar, Neeraj; Chilamkurti, Naveen; Jeong, Hwa-Young

doi:10.1007/s11042-014-1885-6

Cited by 62 publications

(85 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Recently, Li et al [34] found some security weaknesses of Das [31] and Lee et al [35], such as session-key agreement and key-impersonation attacks using biometric-based user authentication schemes. As a consequence, none of the existing authentication schemes [9][10][11][12][28][29][30][31][32][33][34][35][36][37][38][39][40][41][42] fulfill the security properties of the AKA protocol and resist most of the potential attacks, such as password guessing, key impersonation, and so on, in the multimedia client-server environment. Most recently, Deebak et al [36] presented a secure key AKA protocol scheme to satisfy the promising feature of the 3GPP AKA protocol using IP multimedia server-client systems.…”

Section: Related Workmentioning

confidence: 99%

“…Thus, we decide to propose a mutual authenticated session key (MASK) that mutually shares the authentication key to enhance the security for multimedia server-client systems. In addition, we analyze the proposed protocol of MASK and compare it with the existing protocols such as those of Lu et al [9], Chang et al [10], Kılınç et al [11], and Zhang et al [12] in the multimedia server-client environment.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Analyzing the mutual authenticated session key in IP multimedia server-client systems for 4G networks

Deebak¹,

Muthaiah²,

Thenmozhi³

et al. 2016

Turk J Elec Eng & Comp Sci

View full text Add to dashboard Cite

This paper scrutinizes the authentication and key agreement protocol adopted by the Universal Mobile Telecommunication System to meet the standards of a fourth-generation network. Lately, communication of multimedia (CoM) has drawn the attention of researchers for the future of secure wireless mobile communication. However, the CoM has not had any defensive mechanism to fulfil the specifications of 3GPP and reduce the computation and communication overheads and susceptible attacks like redirection, man-in-the-middle, and denial of service attacks. In addition, this paper has thoroughly investigated some existing protocols from the literature for the identification of new challenges in server-client authentication. To probe the challenges of the existing schemes realistically, the multimedia client and multimedia server components (proxy, interrogating, serving, and home subscriber server) were physically deployed on the Linux platform to examine the specifications of 3GPP, vulnerable attacks, computation, and communication overheads.We observed that the examined existing schemes are not able to fulfill the above criteria. We thus propose addition of the mutual authenticated session key (MASK) to the physical environment of the multimedia server-client. To satisfy the 3GPP specifications, the protocol of MASK offers mutual authenticity to the multimedia server-client. Moreover, the feature of mutual authenticity reduces the computation and communication overheads of the multimedia server-client.Since the session keys are jointly shared between the multimedia server and client, the protocol of MASK can additionally provide privacy preservation and forward secrecy.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Analyzing the mutual authenticated session key in IP multimedia server-client systems for 4G networks

Deebak¹,

Muthaiah²,

Thenmozhi³

et al. 2016

Turk J Elec Eng & Comp Sci

View full text Add to dashboard Cite

show abstract

“…Among the different approaches (Wu, 1995;Chien et al, 2001;Kumar et al, 2010;Liaw, 1995;Liaw and Lei, 1995;Das et al, 2004;Wang et al, 2004Wang et al, , 2009Wen and Li, 2012;Juan and Zou, 2013;Chaturvedi et al, 2013;Zhang et al, 2014;Leu and Hsieh, 2014;Ramesh and Bhaskaran, 2014;Karuppiah and Saravanan, 2014;Kumari and Om, 2015;Lee et al, 2013), some researchers have developed the remote login schemes using geometric approach, which was first discussed by Wu (1995) with simple implementation in the Euclidean plane. The Wu's scheme was modified by Chien et al (2001) in 2001 proposed a scheme using a circle in n-dimensional space.…”

Section: Related Workmentioning

confidence: 99%

Remote login password authentication scheme using tangent theorem on circle

Kumari

2016

IJCONVC

View full text Add to dashboard Cite

Abstract:In this paper, we propose a remote password authentication scheme based on geometry. We use some simple tangent theorems of a circle, RSA encryption technique, and a strong one-way function to mutually authenticate the user and the server. It has a facility for a legal user to freely choose and change his password using his smart card. The security of this scheme depends on the tangent points located in a plane associated with the circle and the tangent line itself. In this scheme, the user anonymity is preserved and the communication cost is also reduced due to checking the correctness of the password before sending any authentication message.Keywords: authentication; RSA cryptosystem; tangent theorem; circle; smart card.Reference to this paper should be made as follows: Kumar, S. and Om, H. 94 S. Kumari and H. OmThis paper is a revised and expanded version of a paper entitled 'Remote login password authentication scheme using tangent theorem on circle' presented at FICTA 2014, Bhubaneswar, India, 14-15 Novenber 2014.

show abstract

“…Though it has a performance optimization for the group authentication, it is still exposed to the attacks, like re-direction, man-in-the-middle, DoS and DDoS. Zezhong et al [47] proposed a SIP authentication mechanism to offer high security requirement of client anonymity, though the authors failed to evaluate such security scheme in the real time multimedia system. Thus, the real multimedia server and client systems have been installed and configured on the Linux platform for the purpose of realistic analysis.…”

Section: Related Workmentioning

confidence: 99%

Analyzing secure key authentication and key agreement protocol for promising features of IP multimedia subsystem using IP multimedia server-client systems

Deebak

Muthaiah

Thenmozhi

et al. 2014

Multimed Tools Appl

View full text Add to dashboard Cite

Recently, Session Initiation Protocol (SIP) has become a prime signaling protocol for the multimedia communication systems, though none of the researchers have analyzed its promising features, namely access independence, authentication scheme verification, AKA (Authentication and Key Agreement) security properties, 3GPP security properties, signal congestion, bandwidth consumption and computation overhead using the physical multimedia server-client platform. To examine the issues realistically, the existing authentication schemes, such as UMTS AKA, EPS AKA, Cocktail AKA, S AKA, HL AKA and ZZ AKA were designed and developed in the multimedia server-client systems deployed on Linux platform. The cross-examination revealed that the existing schemes failed to satisfy the IMS (IP Multimedia Subsystem) promising features, like mutual authentication, session-key sharing, (perfect) forward secrecy and implicit-key authentication. Thus, this paper proposes a SecureKey Authentication and Key Agreement protocol (SK AKA) to meet out the standard demands of IMS. To curtail its authentication steps, the secure authentication vector S AV computes and dispenses the generated vectors between the multimedia server-client systems in advance, through the serving call session control function S CSCF . As a result, the execution steps of UMTS AKA are annulled for the sake of accomplishment of the IMS features. In addition, the protocol of SK AKA integrates the strategies of Context Identity C ID and Elliptic CurveDiffie Hellman (EC-DH) to resist most of the potential attacks like SIP flooding, forgery, manin-the-middle, password guessing and key impersonation. and Signalling Congestion realistically, the proposed and existing authentication schemes have been coded and integrated in the real-time IMS client-server system. Above all, the thoroughgoing research has revealed that the proposed protocol of SK AKA accomplishes all the IMS challenges: 1. Adhere the promising features of IMS; 2. Attack resiliency; and 3. Fulfill the promising parameters of IMS, in comparison with the other existing schemes.

show abstract

A secure authentication scheme with anonymity for session initiation protocol using elliptic curve cryptography

Cited by 62 publications

References 16 publications

Analyzing the mutual authenticated session key in IP multimedia server-client systems for 4G networks

Analyzing the mutual authenticated session key in IP multimedia server-client systems for 4G networks

Remote login password authentication scheme using tangent theorem on circle

Analyzing secure key authentication and key agreement protocol for promising features of IP multimedia subsystem using IP multimedia server-client systems

Contact Info

Product

Resources

About