Authentication in mobile cloud computing: A survey

Alizadeh, Mojtaba; Abolfazli, Saeid; Zamani, Mazdak; Baharun, Sabariah; Sakurai, Kouichi

doi:10.1016/j.jnca.2015.10.005

Cited by 137 publications

(68 citation statements)

References 127 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Sharaf et al [19] proposed (in 2016) an object authentication system in order to exploit device-specific data, known as fingerprints, to authenticate the objects associated with the IoT. In 2016, Alizadeh et al [20] presented a comprehensive survey of authentication schemes of mobile cloud computing (MCC) to explain MCC authentication and differentiate it with that of cloud computing schemes. However, in this paper we performed the cryptanalysis of A.K.Das [17] scheme and found that it is susceptible to stolen smart card attack.…”

Section: Related Workmentioning

confidence: 99%

Fuzzy Extractor and Elliptic Curve Based Efficient User Authentication Protocol for Wireless Sensor Networks and Internet of Things

Maurya

Sastry

2017

Information

View full text Add to dashboard Cite

Abstract:To improve the quality of service and reduce the possibility of security attacks, a secure and efficient user authentication mechanism is required for Wireless Sensor Networks (WSNs) and the Internet of Things (IoT). Session key establishment between the sensor node and the user is also required for secure communication. In this paper, we perform the security analysis of A.K.Das's user authentication scheme (given in 2015), Choi et al.'s scheme (given in 2016), and Park et al.'s scheme (given in 2016). The security analysis shows that their schemes are vulnerable to various attacks like user impersonation attack, sensor node impersonation attack and attacks based on legitimate users. Based on the cryptanalysis of these existing protocols, we propose a secure and efficient authenticated session key establishment protocol which ensures various security features and overcomes the drawbacks of existing protocols. The formal and informal security analysis indicates that the proposed protocol withstands the various security vulnerabilities involved in WSNs. The automated validation using AVISPA and Scyther tool ensures the absence of security attacks in our scheme. The logical verification using the Burrows-Abadi-Needham (BAN) logic confirms the correctness of the proposed protocol. Finally, the comparative analysis based on computational overhead and security features of other existing protocol indicate that the proposed user authentication system is secure and efficient. In future, we intend to implement the proposed protocol in real-world applications of WSNs and IoT.

show abstract

Section: Related Workmentioning

confidence: 99%

Fuzzy Extractor and Elliptic Curve Based Efficient User Authentication Protocol for Wireless Sensor Networks and Internet of Things

Maurya

Sastry

2017

Information

View full text Add to dashboard Cite

show abstract

“…Authentication is used to protect the user against privacy and security issues [48]. It is used to prevent unauthorized access of the user.…”

Section: User Authentication In MCCmentioning

confidence: 99%

“…Some of the threats commonly occurred in mobile devices are denial of service, loss of device, malfunction of device etc. [48]. The authentication in MCC varies in following scenarios when compared with cloud computing: 1) resource limitations, 2) sensors, 3) high mobility, 4) network heterogeneity.…”

Section: User Authentication In MCCmentioning

confidence: 99%

Survey on Three Components of Mobile Cloud Computing: Offloading, Distribution and Privacy

Paranjothi¹,

Khan²,

Nijim³

2017

JCC

View full text Add to dashboard Cite

Mobile Cloud Computing (MCC) brings rich computational resource to mobile users, network operators, and cloud computing providers. It can be represented in many ways, and the ultimate goal of MCC is to enable execution of rich mobile application with rich user experience. Mobility is one of the main characteristics of MCC environment where user can be able to continue their work regardless of movement. This literature review paper presents the state-of-the-art survey of MCC. Also, we provide the communication architecture of MCC and taxonomy of mobile cloud in which specifically concentrates on offloading, mobile distribution computing, and privacy. Through an extensive literature review, we found that MCC is a technologically beneficial and expedient paradigm for virtual environments in terms of virtual servers in a distributed environment, multi-tenant architecture and data storing in a cloud. We further identified the drawbacks in offloading, mobile distribution computing, privacy of MCC and how this technology can be used in an effective way.

show abstract

“…If any adversary tries to exploit the mobile cloud servers, then an adversary is recognized as an illegitimate user, and as a result, it is not permitted by the role manager. Therefore, the SSA helped to identify the probability of the malicious mobile device, whereas the contending approaches either deploy no proper secure authentication or apply fragile authentication mechanisms that can only secure the traditional networks but are not appropriate for mobile cloud computing [37,38].…”

Section: Malicious Detection Probabilitymentioning

confidence: 99%

Energy-efficient service-oriented architecture for mobile cloud handover

Hani

Dichter

2017

J Cloud Comp

View full text Add to dashboard Cite

Mobile cloud computing uses features to deliver outsourcing data to remotely available mobile devices. However, the flexible nature of the mobile device is a critical challenge for the mobile cloud computing environment. The mobile phone significantly degrades the data transfer performance when initiating the handover process. Thus, an energy-efficient handover process could improve the quality of service (QoS). Here, we introduce a secure energy-efficient and quality-of-service architecture (EEQoSA) for the handover process in the mobile cloud computing environment. The proposed architecture involves four layers: application, the Internet protocol multimedia subsystem (IPMS), communication, and media with connectivity layers. These four layers collectively handle the energy-efficiency, security and QoS parameters. Existing serviceoriented architectures designed for mobile cloud computing are based on the symmetric encryption cryptography to support different media services. However, this approach easily allows an adversary to expose the symmetric key and gain access to private data. Thus, our proposed architecture uses the secure and strong authentication (SSA) process at the IPMS layer by protecting the media services from unauthorized users, as the IPMS is the central layer that could be the entry point for an adversary. Furthermore, to extend the mobile lifetime during the handover process, an energy detection (ED) model is deployed at the communication layer to detect the energy level of the mobile device prior to the handover initialization process. The media with the connectivity layer supports the secure handover process using a priority enforcement module that allows only legitimate users to complete the re-registration process after initiating the handover. Finally, the architecture is tested using the CloudSim simulation environment and validated by a comparison with other known service-oriented architectures.

show abstract

Authentication in mobile cloud computing: A survey

Cited by 137 publications

References 127 publications

Fuzzy Extractor and Elliptic Curve Based Efficient User Authentication Protocol for Wireless Sensor Networks and Internet of Things

Fuzzy Extractor and Elliptic Curve Based Efficient User Authentication Protocol for Wireless Sensor Networks and Internet of Things

Survey on Three Components of Mobile Cloud Computing: Offloading, Distribution and Privacy

Energy-efficient service-oriented architecture for mobile cloud handover

Contact Info

Product

Resources

About