Blockchain-based mutual authentication protocol without CA

Li, Yue; Xu, Mingcheng; Gao-jian, XU

doi:10.1007/s11227-022-04558-5

Cited by 15 publications

(32 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Unfortunately, their protocol is still vulnerable to user/server impersonations, MITM, and privileged insider attacks [25]. In 2022, Li et al [26] proposed a blockchain-based mutual authentication scheme for key agreements between users and servers. They stated that their scheme cannot prevent impersonation and MITM attacks, and that it can provide perfect forward secrecy.…”

Section: Related Workmentioning

confidence: 99%

“…However, their scheme does not handle other security features such as insider, privileged insider attacks, and user anonymity. Although [22], [24], and [26] can be utilized for a metaverse environment, these schemes lack the security features required to ensure secure communication, and they do not consider user-to-user authentication.…”

Section: Related Workmentioning

confidence: 99%

“…In this section, we analyze the computation costs, communication costs, and security features of the proposed scheme. Then, we compare the computation costs, communication costs, and security features of the proposed scheme with existing schemes in similar environments [22], [24], [26].…”

Section: Performance Analysismentioning

confidence: 99%

“…We compare the computation costs of the proposed scheme with [22], [24], and [26]. Depending on [48] and [49], we denote the execution times of bilinear pairing, EC point multiplication, EC point addition, symmetric encryption/decryption, the hash function, and the biohashing function as T bp (≈ 22.0587 ms), T em (≈ 7.3529 ms), T ea (≈ 0.009 ms), T sye (≈ 0.1303 ms), T h (≈ 0.0004 ms), and T bh (≈ 0.01 ms), respectively.…”

Section: A Computation Costsmentioning

confidence: 99%

“…We evaluate the communication costs of the proposed scheme and [22], [24], and [26]. In the proposed scheme, the ECC point, hash function output, avatar identity, random number, symmetric encryption/decryption, and timestamp require 320, 160, 160, 128, 128, and 32 bits, respectively.…”

Section: B Communication Costsmentioning

confidence: 99%

See 4 more Smart Citations

Design of Secure Mutual Authentication Scheme for Metaverse Environments Using Blockchain

et al. 2022

View full text Add to dashboard Cite

During the COVID-19 pandemic, engagement in various remote activities such as online education and meetings has increased. However, since the conventional online environments typically provide simple streaming services using cameras and microphones, there have limitations in terms of physical expression and experiencing real-world activities such as cultural and economic activities. Recently, metaverse environments, three-dimensional virtual reality that use avatars, have attracted increasing attention as a means to solve these problems. Thus, many metaverse platforms such as Roblox, Minecraft, and Fortnite have been emerging to provide various services to users. However, such metaverse environments are potentially vulnerable to various security threats because the users and platform servers communicate through public channels. In addition, sensitive user data such as identity, password, and biometric information are managed by each platform server. In this paper, we design a system model that can guarantee secure communication and transparently manage user identification data in metaverse environments using blockchain technology. We also propose a mutual authentication scheme using biometric information and Elliptic Curve Cryptography (ECC) to provide secure communication between users and platform servers and secure avatar interactions between avatars and avatars. To demonstrate the security of the proposed mutual authentication scheme, we perform informal security analysis, Burrows-Abadi-Needham (BAN) logic, Real-or-Random (ROR) model, and Automated Validation of Internet Security Protocols and Applications (AVISPA). In addition, we compare the computation costs, communication costs, and security features of the proposed scheme with existing schemes in similar environments. The results demonstrate that the proposed scheme has lower computation and communication costs and can provide a wider range of security features than existing schemes. Thus, our proposed scheme can be used to provide secure metaverse environments.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%