An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards

Li, Xiong; Xiong, Yu; Ma, Jian; Wang, Wendong

doi:10.1016/j.jnca.2011.11.009

Cited by 244 publications

(179 citation statements)

References 17 publications

Supporting

Mentioning

178

Contrasting

Order By: Relevance

“…Moreover, in other scheme they confirmed that the password-based scheme of different researchers like (X. Li, Qiu et al, 2010;X. Li, Xiong et al, 2012;Juang et al, 2008) cannot resist Denial-of-Service (DoS) and offline password guessing attacks and failed to deliver strong user's anonymity as well as forward secrecy and mutual authentication.…”

Section: Related Workmentioning

confidence: 87%

“…However, the diffidence of the protocols suggested in (Li, C. C.Lee, Liu, & C. W. Lee, 2011) and (Hsiang & Shih, 2009) was verified by researchers (X. Li, Qiu, Zheng, Chen, & J. Li, 2010;Li, Xiong, Ma, & Wang, 2012;Juang, Chen, & Liaw, 2008) correspondingly, which exposed that confrontation to impersonation, replay, stolen smart card and leak of verifier attacks could not be delivered.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

A Robust Authentication Scheme for Client-Server Architecture With Provable Security Analysis

Jan¹,

Qayum²

2018

NCT

View full text Add to dashboard Cite

Client-server computing is the analytical development of compatible programming with significant supposition and the detachment of a massive program into its fundamental parts ("modules"), which can create the chance for extra enhancement, inconsiderable improvement, and prominent maintainability. In client-server computing, total extensive modules don't need to be accomplished within the similar memory space totally but can execute independently on a suitable hardware and software platform according to their behavior. The user authentication is the dominant constraint for client-server computing that limits the illegitimate right of entry into the main workstation. This research is mainly focused on the design of a robust authentication scheme for client-server architecture computing. It carries some additional features like security, virtualization, user's programs security, individuality supervision, integrity, control access to server and authentication. The proposed background also delivers the characteristic supervision, mutual authentication, and establishment of secure session key among users and the remote server.

show abstract

Section: Related Workmentioning

confidence: 87%

Section: Related Workmentioning

confidence: 99%

A Robust Authentication Scheme for Client-Server Architecture With Provable Security Analysis

Jan¹,

Qayum²

2018

NCT

View full text Add to dashboard Cite

show abstract

“…In a multi-server IoT environment, a user may access the multi-server over a wireless network, which can be a serious security threat. The security threats that can occur in the network communication process of a multi-server IoT environment are as follows [11,12].…”

Section: Multi-server Iot Security Threatsmentioning

confidence: 99%

Smart Card-Based Secure Authentication Protocol in Multi-Server IoT Environment

Bae

Kwak

2017

Preprint

View full text Add to dashboard Cite

Abstract:In recent years, the internet of things has been widely utilized in various fields, such as in smart factories or connected cars. As its domain of application has expanded, it has begun to be employed using multi-server architectures for a more efficient use of resources. However, because users wishing to receive IoT services connect to multi-servers over wireless networks, this can expose systems to various attacks and result in serious security risks. To protect systems (and users) from potential security vulnerabilities, a secure authentication technology is necessary. In this paper, we propose a smart card-based authentication protocol, which performs the authentication for each entity by allowing users to go through the authentication process using a smart card transmitted from an authentication server, and to login to a server connected to the IoT. Furthermore, the security of our proposed authentication protocol is verified by simulating a formal verification scenario using AVISPA, a security protocol-verification tool.

show abstract

“…They have become an important criterion of an ideal remote authentication scheme. Most of remote user authentication schemes [4,[40][41][42] are designed and evaluated according to them, while none of the schemes could actually satisfy them simultaneously. Therefore, many researchers begin to pay more attention to e a l 2 Password dependent 3 No verification table 4 Freely chosen password by the users 5 F o r w a r d s e c r e c y 6…”

Section: Introductionmentioning

confidence: 99%

Cryptanalysis of Three Password-Based Remote User Authentication Schemes with Non-Tamper-Resistant Smart Card

Wang¹,

Xu²

2017

Security and Communication Networks

View full text Add to dashboard Cite

Remote user authentication is the first step to guarantee the security of online services. Online services grow rapidly and numerous remote user authentication schemes were proposed with high capability and efficiency. Recently, there are three new improved remote user authentication schemes which claim to be resistant to various attacks. Unfortunately, according to our analysis, these schemes all fail to achieve some critical security goals. This paper demonstrates that they all suffer from offline dictionary attack or fail to achieve forward secrecy and user anonymity. It is worth mentioning that we divide offline dictionary attacks into two categories: (1) the ones using the verification from smart cards and (2) the ones using the verification from the open channel. The second is more complicated and intractable than the first type. Such distinction benefits the exploration of better design principles. We also discuss some practical solutions to the two kinds of attacks, respectively. Furthermore, we proposed a reference model to deal with the first kind of attack and proved its effectiveness by taking one of our cryptanalysis schemes as an example.

show abstract

An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards

Cited by 244 publications

References 17 publications

A Robust Authentication Scheme for Client-Server Architecture With Provable Security Analysis

A Robust Authentication Scheme for Client-Server Architecture With Provable Security Analysis

Smart Card-Based Secure Authentication Protocol in Multi-Server IoT Environment

Cryptanalysis of Three Password-Based Remote User Authentication Schemes with Non-Tamper-Resistant Smart Card

Contact Info

Product

Resources

About