An efficient anonymous user authentication and key agreement protocol for wireless sensor networks

Kumar, Devender; Kaur, Davinder; Verma, Adarsh; Saini, Khushil Kumar; Kumar, Bijendra

doi:10.1002/dac.4724

Cited by 8 publications

(3 citation statements)

References 40 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, the attacker is unable to extract the password PW i of user U i from it. Second, if the attacker wishes to obtain the user's password PW i through offline password guessing, he or she needs to have the biometric trait α i and the private key r i , however, the attacker is not in possession of α i and r i , and therefore, the attacker is unable to carry out an offline password guessing attack 32 . Again, B 2 = h ( HPW i ‖ ID i ‖ α i ‖ r i ) mod n 0 , when n 0 is taken large enough, the number of password guesses grows exponentially and it is not feasible to obtain the password by offline guessing.…”

Section: Security Analysismentioning

confidence: 99%

ECC-based three-factor authentication and key agreement scheme for wireless sensor networks

Huang

2024

Sci Rep

View full text Add to dashboard Cite

In wireless sensor networks (WSNs), protocols with authentication and key agreement functions can enhance the security of the interaction between users and sensor nodes, guaranteeing the security of user access and sensor node information. Existing schemes have various security vulnerabilities and are susceptible to security attacks (e.g., masquerading user, password guessing, internal privilege, and MITT attacks), so they cannot meet the anonymity requirements or achieve forward security. To effectively improve the security performance of WSNs, an elliptic curve cryptography (ECC)-based three-factor authentication and key agreement scheme for WSNs is proposed. The scheme is based on the ECC protocol and combines biometrics, smart card and password authentication technology; uses a challenge/response mechanism to complete the authentication between users, gateways, and sensors; and negotiates a secure session key. The Burrows, Abadi and Needham logic for formal security analysis proves the correctness and security of the scheme, and the informal analysis of multiple known attacks proves that the scheme can resist various attacks and has high security characteristics. The feasibility of the scheme has been analysed and verified with the ProVerif tool. The efficiency analysis results show that the scheme is suitable for resource-constrained WSNs.

show abstract

Section: Security Analysismentioning

confidence: 99%

ECC-based three-factor authentication and key agreement scheme for wireless sensor networks

Huang

2024

Sci Rep

View full text Add to dashboard Cite

show abstract

“…(2) A can get the information stored in the smart card using power analysis [23,24]. (3) A can obtain the information in the smart card and the information transmitted by the user on the secure channel during the registration process [25]. (4) A can simultaneously obtain the information in the smart card and perform offline password guessing as stated in [26,27].…”

Section: Reat Modelmentioning

confidence: 99%

Improved Secure and Lightweight Authentication Scheme for Next-Generation IoT Infrastructure

Chen

Liu

2021

Security and Communication Networks

View full text Add to dashboard Cite

The Internet of Things (IoT) is a huge network formed by connecting various information sensing devices through the Internet. Although IoT has been popularized in many fields, connected devices can be used only when network security is guaranteed. Recently, Rana et al. proposed a secure and lightweight authentication protocol for the next-generation IoT infrastructure. They claim that their protocol can resist major security attacks. However, in this study, we prove that their protocol is still vulnerable to offline password guessing attacks and privilege internal attacks. In order to solve these shortcomings, we propose an improved protocol, which is proved to be secure by formal and informal analysis. In addition, after comparing the time and memory consumption with other protocols, we find that our protocol has more advantages.

show abstract

“…Park et al 12 analyzed their scheme and discovered that the scheme fails to withstand against the offline password guessing attack and developed a secure authentication scheme which uses biometrics. Gope and Hwang 13 in 2016 designed a scheme for WSN, however Kumar et al 14 analyzed their scheme and discovered that it does not protect against insider attack, stolen verifier, user impersonation and smart card loss attack.…”

Section: Introductionmentioning

confidence: 99%

Cryptanalysis and improvement of an authentication protocol for wireless sensor networks

Neerul

Kumar

2023

Trans Emerging Tel Tech

Self Cite

View full text Add to dashboard Cite

The Wireless Sensor Network (WSN) is a network which is composed of many sensor nodes. The sensor nodes in WSN are widespread and lightweight which are deployed for environmental or system monitoring. These sensor nodes within the WSNs communicate with one another using wireless lines. WSNs have practical applications in numerous fields such as smart city, medicine, military, agriculture, and so forth. It is easy for an adversary to intercept the network and steal the valuable information. Consequently, these sensor nodes need enhanced security. Recently, Kwon et al have proposed an authentication scheme for WSNs. However, in this paper, we analyze the security of their scheme and discover that their protocol fails to provide perfect forward security and user untraceability. Also their protocol fails to withstand against session specific random number leakage attack, privileged insider attack and password guessing attack. Their protocol uses only two-factor authentication scheme.In order to overcome the weaknesses of their protocol, we develop a secure three-factor authentication protocol which is based on symmetric key cryptography. We use ProVerif tool to perform its formal security verification and use random oracle model for its formal security analysis. We also show the correctness of mutual authentication of the proposed scheme using BAN logic. Its informal security analysis indicates that the designed scheme can withstand against various known attacks. In the performance analysis, we show that the proposed scheme offers more security features than the other related schemes and has less communication cost as compared to Kwon et al protocol.

show abstract

An efficient anonymous user authentication and key agreement protocol for wireless sensor networks

Cited by 8 publications

References 40 publications

ECC-based three-factor authentication and key agreement scheme for wireless sensor networks

ECC-based three-factor authentication and key agreement scheme for wireless sensor networks

Improved Secure and Lightweight Authentication Scheme for Next-Generation IoT Infrastructure

Cryptanalysis and improvement of an authentication protocol for wireless sensor networks

Contact Info

Product

Resources

About