A Three-Party Password Authenticated Key Exchange Protocol Resistant to Stolen Smart Card Attacks

Chen, Chien‐Ming; Xu, Lei; Fang, Wu

doi:10.1007/978-3-319-50209-0_40

Cited by 10 publications

(6 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The performance metrics related to existing similar authentication schemes and our technique is presented in Table 4. Here, we compared with Deebak et al's [38] technique, Chen et al's [39] [58]. To perform comparison amongst our authentication technique, the various operations are chosen such as modular exponential operations, Hash/MAC operations, and other properties of authentication technique.…”

Section: A Computation Costmentioning

confidence: 99%

See 1 more Smart Citation

An Efficient Provably Secure Verifier-Based Three-Factor Authentication Technique Using PDL for Data Exchange in TMIS

Gaikwad

Tembhurne

Meshram³

et al. 2021

IEEE Access

View full text Add to dashboard Cite

In healthcare services, telecare medicine information systems (TMIS) is the viable solution offered currently. Moreover, to provide best security to the TMIS, it attracted the various researchers to investigate the security challenges in TMIS. Subsequently, the security of TMIS is improving but the application becoming widespread hence needs robust security technique. An efficient verifier-based 3-party authentication technique in telecare medicine information systems for data exchange, which permits only two users/patients to store their verifier in the database of an authentication server, computed using own password. The authentication system will then validate the user's verifier and help them safely and easily share electronic medical records. In this work, we present an efficient provably secure verifier-based 3party authentication technique using partial discrete logarithm (PDL) for exchanging data in TMIS. The presented technique not utilizing any public keys of the server, and does not require additional messages and number for key confirmation rounds. The proposed technique has higher security compared to the related verifier-based methods, has lower computational costs and fewer communications, and is therefore ideal for TMIS.

show abstract

Section: A Computation Costmentioning

confidence: 99%

“…We observed that the value of T XOR is negligible in the experimentation. In Table 4, we compared our technique with other authentication techniques [38][39][40], [47], [56], and [57]. The computation cost of our technique is cost effective compared to the mentioned schemes.…”

Section: A Computation Costmentioning

confidence: 99%

An Efficient Provably Secure Verifier-Based Three-Factor Authentication Technique Using PDL for Data Exchange in TMIS

Gaikwad

Tembhurne

Meshram³

et al. 2021

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Furthermore, we also compare our proposed method with other recently published 3PAKA schemes in terms of computation and communication loadings (Table 5) and system properties ( Table 6). The schemes [15,16] are smart card based schemes and some of their security and efficiency are based on smart cards. The properties "resistance to verifier-stolen attacks" of the schemes [11][12][13]17] are all "N/A" because they are password-based schemes without verifiers.…”

Section: Comparisonmentioning

confidence: 99%

An Efficient Three-Party Authentication Scheme for Data Exchange in Medical Environment

Chiou

Lin

2018

Security and Communication Networks

View full text Add to dashboard Cite

Compared with traditional paper medical records, electronic medical records have many advantages such as easy transmission, high efficiency, better accuracy, and easier storage. The further development and penetration of electronic medical records will raise increasingly critical transmitted-data accuracy and security issues. Previous studies have proposed a verifier-based three-party authentication scheme and to provide high efficiency and security, with low computation and transmission costs. However, this protocol fails to achieve anonymity, is vulnerable to tracking attacks, and is inefficient. In this paper, we propose a new authentication scheme which provides patient anonymity and resistance to tracking attacks, while reducing computation and communication costs. The proposed system is easier to implement and is more suitable for use in remote electronic medical record exchange systems.

show abstract

“…Countermeasures for security attacks on remote user authentication schemesAttacks CountermeasuresStolen Smart Card Attack Biometrics-and OTP-based authentication schemes,97 Password Blinding 98 Domain Name Server (DNS) Spoofing Frequency hopping, Updated software versions and security patches, Split DNS 99 Mutual agreement between public and private sector over a common technological standard so as to promote application development for both consumers and traders is required. Hardware, software, applications, and the network must collaborate with each other allowing users to make effective use of smart cards.…”

mentioning

confidence: 99%

A taxonomy of various attacks on smart card–based applications and countermeasures

Gupta

Quamara

2018

Concurrency and Computation

View full text Add to dashboard Cite

Deployment of smart card-based applications is becoming prevalent these days. Security of these applications depends upon the nature of underlying hardware and software platforms, cryptographic algorithms, along with a number of other security mechanisms. To develop a secure smart card-based application, preliminary evaluation of the security of embedded software as well as how that software will work in real time is required. Over the past few years, significant improvements have been made in smart card technology for its large-scale acceptance. However, attackers are in continuous search for exploiting the unknown issues related to this technology. This survey discusses smart card technology in detail and provides a comprehensive taxonomy of security attacks on smart card-based applications and their countermeasures. In addition, it covers some of the open source tools available for its development. Finally, it provides a brief outline of some of the major open challenges and future research directions that are yet to be explored.

show abstract

A Three-Party Password Authenticated Key Exchange Protocol Resistant to Stolen Smart Card Attacks

Cited by 10 publications

References 19 publications

An Efficient Provably Secure Verifier-Based Three-Factor Authentication Technique Using PDL for Data Exchange in TMIS

An Efficient Provably Secure Verifier-Based Three-Factor Authentication Technique Using PDL for Data Exchange in TMIS

An Efficient Three-Party Authentication Scheme for Data Exchange in Medical Environment

A taxonomy of various attacks on smart card–based applications and countermeasures

Contact Info

Product

Resources

About