An Enhanced Biometric-Based Authentication Scheme for Telecare Medicine Information Systems Using Elliptic Curve Cryptosystem

Lu, Yu; Li, Lixiang; Peng, Haipeng; Yang, Yixian

doi:10.1007/s10916-015-0221-7

Cited by 101 publications

(83 citation statements)

References 39 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, our improved scheme can achieve all the security requirements listed in Table 1. From Table 2, we can conclude that our scheme is more efficient than the other two schemes [8,3]. …”

Section: Performance Comparisonsmentioning

confidence: 82%

See 1 more Smart Citation

An Improved User Authentication and Key Agreement Scheme for Multi-medical Server Usable in TMIS

Lin¹,

Wen²,

Du³

2016

dtetr

View full text Add to dashboard Cite

Abstract.Recently, Amin and Biswas proposed a novel authentication protocol for TMIS. They claimed that their protocol provides security protection on the attacks proposed by them. Even though Amin and Biswas's protocol achieves efficiency, we demonstrate that their protocol is insecure against many attacks. To overcome the defects in Amin and Biswas's protocol, we proposed an improved user authentication scheme in TMIS. The security analysis shows that the proposed protocol remedies the weaknesses in Amin and Biswas's protocol.

show abstract

Section: Performance Comparisonsmentioning

confidence: 82%

“…In order to evaluate the security performance of our scheme, we compare the two related schemes [8,3] with our scheme in Table 1. The efficiency comparison in terms of computational overhead among the related schemes and our proposed scheme is shown in Table 2.…”

Section: Performance Comparisonsmentioning

confidence: 99%

An Improved User Authentication and Key Agreement Scheme for Multi-medical Server Usable in TMIS

Lin¹,

Wen²,

Du³

2016

dtetr

View full text Add to dashboard Cite

show abstract

“…Xu and Wu [43] illustrated that Xie et al's [42] suffers from de-synchronization attack and heavy storage burden in server and also proposed an improved scheme. Thereafter, Lu et al [30] also pointed out that the Arshad's [8] scheme cannot achieve complete security requirements and proposed an authentication scheme based on the elliptic curve cryptosystem. Very recently, Zhang-Zhu [45] pointed out that the Islam-Khan's [17] scheme is insecure against several security weaknesses and also proposed a improved scheme to enhance the mentioned security flaws.…”

Section: Introductionmentioning

confidence: 99%

An Improved RSA Based User Authentication and Session Key Agreement Protocol Usable in TMIS

Amin

Biswas

2015

J Med Syst

View full text Add to dashboard Cite

Recently, Giri et al.'s proposed a RSA cryptosystem based remote user authentication scheme for telecare medical information system and claimed that the protocol is secure against all the relevant security attacks. However, we have scrutinized the Giri et al.'s protocol and pointed out that the protocol is not secure against off-line password guessing attack, privileged insider attack and also suffers from anonymity problem. Moreover, the extension of password guessing attack leads to more security weaknesses. Therefore, this protocol needs improvement in terms of security before implementing in real-life application. To fix the mentioned security pitfalls, this paper proposes an improved scheme over Giri et al.'s scheme, which preserves user anonymity property. We have then simulated the proposed protocol using widely-accepted AVISPA tool which ensures that the protocol is SAFE under OFMC and CL-AtSe models, that means the same protocol is secure against active and passive attacks including replay and man-in-the-middle attacks. The informal cryptanalysis has been also presented, which confirmed that the proposed protocol provides well security protection on the relevant security attacks. The performance analysis section compares the proposed protocol with other existing protocols in terms of security and it has been observed that the protocol provides more security and achieves additional functionalities such as user anonymity and session key verification.

show abstract

“…The main advantageous property of the biometrics is uniqueness, leading to the proposal of numerous. In the view of fact that several biometric-based remote user authenticati on schemes using smart card [6][7][8] have been proposed.…”

Section: Introductionmentioning

confidence: 99%

Security Improvement on Biometric-based Three Factors User Authentication Scheme for Multi-Server Environments

Moon¹,

Won²

2016

The Transactions of The Korean Institute of Electrical Engineer

View full text Add to dashboard Cite

-In the multi-server environment, remote user authentication has a very critical issue because it provides the authorization that enables users to access their resource or services. For this reason, numerous remote user authentication schemes have been proposed over recent years. Recently, Lin et al. have shown that the weaknesses of Baruah et al.'s three factors user authentication scheme for multi-server environment, and proposed an enhanced biometric-based remote user authentication scheme. They claimed that their scheme has many security features and can resist various well-known attacks; however, we found that Lin et al.'s scheme is still insecure. In this paper, we demonstrate that Lin et al.'s scheme is vulnerable against the outsider attack and user impersonation attack, and propose a new biometric-based scheme for authentication and key agreement that can be used in the multi-server environment. Lastly, we show that the proposed scheme is more secure and can support the security properties.

show abstract

An Enhanced Biometric-Based Authentication Scheme for Telecare Medicine Information Systems Using Elliptic Curve Cryptosystem

Cited by 101 publications

References 39 publications

An Improved User Authentication and Key Agreement Scheme for Multi-medical Server Usable in TMIS

An Improved User Authentication and Key Agreement Scheme for Multi-medical Server Usable in TMIS

An Improved RSA Based User Authentication and Session Key Agreement Protocol Usable in TMIS

Security Improvement on Biometric-based Three Factors User Authentication Scheme for Multi-Server Environments

Contact Info

Product

Resources

About