Biometric Based Remote Login Password Authentication Scheme Using Smart Card

Abstract: Abstract-

“…Thandra et al (2016) needs 2T exp + 3T mul + 3T hash computational cost for registration phase, 4T exp + 4T mul + 2T hash for login phase and 3T exp + 6T mul + 2T hash for authentication phase. Pooja and Pramav (2016) needs 3T mul + 7T hash + 2T ⊕ computational cost for registration phase, 4T mul + 8T hash + 4T ⊕ for login phase and 2T mul + 5T hash + 3T ⊕ for authentication phase. Liu et al (2017) needs 7T hash + 2T ⊕ computational cost for registration phase, 4T hash + 4T ⊕ for login phase and 9T hash + 12T ⊕ for authentication phase.…”

“…No hashing is required in the mechanism. Xu et al (2009) 1Texp + 2Thash 3Texp + 5hash 3Texp + 4Thash 7Texp + 11Thash Not supported Kumar (2010) Texp + 2Thash + T⊕ 3Texp + 5Thash + 2T⊕ Thash + 3T⊕ 4Texp + 10Thash + 6T⊕ 2T⊕ Sood (2012) 4Texp + Thash + T⊕ 6Texp + 5Thash 6Texp + 4Thash + T⊕ 16Texp + 10Thash + 2T⊕ Texp + Thash Rajaram and Amutha (2012) 2Texp + 3Tmul2Texp + 3Tmul 3Texp + 2Tmul 7Texp + 8Tmul Not supported Thandra et al (2016) 2Texp + 3Tmul + 3Thash 4Texp + 4Tmul + 2Thash 3Texp + 6Tmul + 2Thash 9Texp + 13Tmul + 7Thash 2Texp + 3Tmul + 2Thash Pooja and Pramav (2016) 3Tmul + 7Thash + 2T⊕ 4Tmul + 8Thash + 4T⊕ 2Tmul + 5Thash + 3T⊕ 9Tmul + 20Thash + 9T⊕ 2Tmul + 3Thash Liu et al (2017) 7Thash + 2T⊕ 4Thash + 4T⊕ 9Thash + 12T⊕ 20Thash + 18T⊕ 3Thash + T⊕ Lee 20134Thash +2T⊕ 11Thash + 11T⊕ 4Thash + 4T⊕ 19Thash + 16T⊕ 11Thash + 6T⊕ Chien et al (2002) Thash + 2T⊕ Thash + 2T⊕ 4Thash + 4T⊕ 6Thash + 8T⊕ Not supported Hwang et al (2002) 2Thash + 2T⊕ Thash + 2T⊕ 2Thash + 2T⊕ 5Thash + 6T⊕ Thash + 2T⊕ Sun (2000) Thash Thash + T⊕ 2Thash + T⊕ 4Thash + 2T⊕ Not supported Lee et al (2002) 2Thash + 2T⊕ 3Thash + 3T⊕ 2Thash + 2T⊕ 7Thash + 7T⊕ 2Thash + 2T⊕…”

“…The authors showed the ability for a remote system to determine the validity of the authentication message, but unable to validate the identity of the user. Hwang et al (2002;Lee et al, 2002;Kumar, 2010;Sood, 2012;Rajaram and Amutha, 2012;Lee, 2013;Thandra et al, 2016;Pooja and Pramav, 2016;Liu et al, 2017) enhanced the authentication scheme using smart cards by allowing users to change and select their passwords without revealing them to the server. Sun (2000) proposed an efficient and practical remote user authentication scheme.…”

“…Lee (2013) proposed an improved scheme claimed that it can provides dynamic identity and user anonymity, obtaining forward or backward secrecy and mutual authentication and can withstanding the replay attack, insider attack and impersonation attack. Pooja and Pramav (2016) proposed a biometrical authentication scheme based on geometric approach using smart card. The combination of passwords, smart card and biometric is used to construct a secure three factor authentication scheme.…”

A Practical and Secure Hash Function-Based Password Authentication Scheme

“…Thandra et al (2016) needs 2T exp + 3T mul + 3T hash computational cost for registration phase, 4T exp + 4T mul + 2T hash for login phase and 3T exp + 6T mul + 2T hash for authentication phase. Pooja and Pramav (2016) needs 3T mul + 7T hash + 2T ⊕ computational cost for registration phase, 4T mul + 8T hash + 4T ⊕ for login phase and 2T mul + 5T hash + 3T ⊕ for authentication phase. Liu et al (2017) needs 7T hash + 2T ⊕ computational cost for registration phase, 4T hash + 4T ⊕ for login phase and 9T hash + 12T ⊕ for authentication phase.…”

“…No hashing is required in the mechanism. Xu et al (2009) 1Texp + 2Thash 3Texp + 5hash 3Texp + 4Thash 7Texp + 11Thash Not supported Kumar (2010) Texp + 2Thash + T⊕ 3Texp + 5Thash + 2T⊕ Thash + 3T⊕ 4Texp + 10Thash + 6T⊕ 2T⊕ Sood (2012) 4Texp + Thash + T⊕ 6Texp + 5Thash 6Texp + 4Thash + T⊕ 16Texp + 10Thash + 2T⊕ Texp + Thash Rajaram and Amutha (2012) 2Texp + 3Tmul2Texp + 3Tmul 3Texp + 2Tmul 7Texp + 8Tmul Not supported Thandra et al (2016) 2Texp + 3Tmul + 3Thash 4Texp + 4Tmul + 2Thash 3Texp + 6Tmul + 2Thash 9Texp + 13Tmul + 7Thash 2Texp + 3Tmul + 2Thash Pooja and Pramav (2016) 3Tmul + 7Thash + 2T⊕ 4Tmul + 8Thash + 4T⊕ 2Tmul + 5Thash + 3T⊕ 9Tmul + 20Thash + 9T⊕ 2Tmul + 3Thash Liu et al (2017) 7Thash + 2T⊕ 4Thash + 4T⊕ 9Thash + 12T⊕ 20Thash + 18T⊕ 3Thash + T⊕ Lee 20134Thash +2T⊕ 11Thash + 11T⊕ 4Thash + 4T⊕ 19Thash + 16T⊕ 11Thash + 6T⊕ Chien et al (2002) Thash + 2T⊕ Thash + 2T⊕ 4Thash + 4T⊕ 6Thash + 8T⊕ Not supported Hwang et al (2002) 2Thash + 2T⊕ Thash + 2T⊕ 2Thash + 2T⊕ 5Thash + 6T⊕ Thash + 2T⊕ Sun (2000) Thash Thash + T⊕ 2Thash + T⊕ 4Thash + 2T⊕ Not supported Lee et al (2002) 2Thash + 2T⊕ 3Thash + 3T⊕ 2Thash + 2T⊕ 7Thash + 7T⊕ 2Thash + 2T⊕…”

“…The authors showed the ability for a remote system to determine the validity of the authentication message, but unable to validate the identity of the user. Hwang et al (2002;Lee et al, 2002;Kumar, 2010;Sood, 2012;Rajaram and Amutha, 2012;Lee, 2013;Thandra et al, 2016;Pooja and Pramav, 2016;Liu et al, 2017) enhanced the authentication scheme using smart cards by allowing users to change and select their passwords without revealing them to the server. Sun (2000) proposed an efficient and practical remote user authentication scheme.…”

“…Lee (2013) proposed an improved scheme claimed that it can provides dynamic identity and user anonymity, obtaining forward or backward secrecy and mutual authentication and can withstanding the replay attack, insider attack and impersonation attack. Pooja and Pramav (2016) proposed a biometrical authentication scheme based on geometric approach using smart card. The combination of passwords, smart card and biometric is used to construct a secure three factor authentication scheme.…”

A Practical and Secure Hash Function-Based Password Authentication Scheme