An Enhanced Lightweight Biometric-Based Three-Factor Anonymous Authentication Protocol for Mobile Cloud Computing

Chen, Haixian; Xu, Cheng; Xu, Zisang; Tu, Xiaohan

doi:10.1109/hpcc/smartcity/dss.2019.00230

Cited by 6 publications

(3 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this scheme, an improved elliptic curve cryptosystem is used to create a secure client/server channel, also a fuzzy extractor algorithm for fingerprint information with the user identity information, and a smartcard used for mutual authentication. Chen H. et al [18] developed a system based on a three-factor (fingerprint, username, and password) and fuzzy extractor for processing the user's Bio-information with a physical smart cart that uses XOR operations and a hash function.…”

Section: Literature Surveymentioning

confidence: 99%

See 1 more Smart Citation

Mobile Cloud Computing Services Authentication Scheme

Abdulrahman

Al-Gailani²

2022

Iraqi Journal of ICT

View full text Add to dashboard Cite

Because of the rapid growth of cloud computing and the expansion of mobile phone users in recent years, mobile cloud computing has attracted wide attention. In the mobile cloud, wireless computing networks are the basics of sharing data between mobile devices and cloud services. Since air is the communication medium, it must be properly protected; otherwise, it will be subject to a variety of security threats, for example, attacks from middle-man, identity tracking, etc... Furthermore, mobile devices are limited in storage, resources, and computing powers. Hence, designing an efficient and secure balance of authentication schemes is extremely important. First of all, a multi-factor authentication scheme based on biometric (fingerprint information), hash function, and fuzzy vault algorithm is presented in that paper. Secondly, the Validation and Analysis tool of AVISPA Security was approved. Thirdly, the security of the scheme proposed is compared to other related schemes.

show abstract

Section: Literature Surveymentioning

confidence: 99%

“…The three protocols [15]- [18] involved the use of a fuzzy extractor algorithm, which required that one of the generated parameters be kept confidential in the mobile device or smart cart. Since both are vulnerable to lost/stolen attacks.…”

Section: Literature Surveymentioning

confidence: 99%

Mobile Cloud Computing Services Authentication Scheme

Abdulrahman

Al-Gailani²

2022

Iraqi Journal of ICT

View full text Add to dashboard Cite

show abstract

“…Many researchers have designed different authentication schemes [1,[6][7][8][9][10][11][12][13] and methods which comprise different symmetric algorithms such as the Tiny Encryption Algorithm, Advanced Encryption Standard, PRESENT, and Hummingbird, to name a few [14,[15][16][17]. These studies proved that many of the implemented authentication schemes have a pitfall in computation cost and security.…”

Section: Introductionmentioning

confidence: 99%

DMUAS-IoT: A Decentralised Multi-Factor User Authentication Scheme for IoT Systems

Chiadighikaobi¹,

Katuk²,

Osman³

2022

IJC

View full text Add to dashboard Cite

The Internet of Things (IoT) has become the fundamental infrastructure of many intelligent applications, such as smart homes. IoT applications store distributes various information, including user authentication information, over a public channel that exposes it to security threats and attacks. Therefore, this study intends to protect authentication data communication through a decentralised multi-factor user authentication scheme for secure IoT applications (DMUAS-IoT). The scheme is secure and enables efficient user registration, login and authentication, and the user profile updating process where legitimate users can access the IoT system resources. DMUAS-IoT adopted PRESENT for face image encryption and elliptic curve cryptography for data exchange. The scheme security was verified using ProVerif and AVISPA, and mutual authentication was checked with BAN-Logic. The results show that the scheme is secure against man-in-the-middle and impersonation attacks, provides mutual authentication and has a low computation cost. Hence, the outcomes of this study could help secure user authentication data from attacks on applications involved with IoT and resource constraint environments.

show abstract