Efficient biometric and password based mutual authentication for consumer USB mass storage devices

Giri, Debasis; Sherratt, R. Simon; Maitra, Tanmoy; Amin, Ruhul

doi:10.1109/tce.2015.7389804

Cited by 29 publications

(14 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…But, the researchers have considered biometric feature [2] with the password to enhance the security label. Therefore, many researchers have proposed biometric and password based authentication schemes in [17][18][19][20][21][22][23][24][25][26][27][28]. Li and Hwang [17] proposed a biometrics-based remote user authentication scheme in 2010.…”

Section: Literature Surveymentioning

confidence: 99%

“…A collision resistant fuzzy extractor [2,27] can be model as a procedure, known as Gen, which takes a binary string say, B of some metric space M as an input, where M ∈ {0, 1} k , for some k bits and produces a random string say, ϕ ∈ R {0, 1} n , for some n bits and an auxiliary string say, θ ∈ R {0, 1} r , for some r bits, where r = k or n bits. It can be mathematically represented by Gen : M → ϕ × θ.…”

Section: Preliminariesmentioning

confidence: 99%

See 1 more Smart Citation

A Three Factor Remote User Authentication Scheme Using Collision Resist Fuzzy Extractor in Single Server Environment

Giri

Maitra

2017

ITM Web Conf.

Self Cite

View full text Add to dashboard Cite

Abstract. Due to rapid growth of online applications, it is needed to provide such a facility by which communicators can get the services by applying the applications in a secure way. As communications are done through an insecure channel like Internet, any adversary can trap and modify the communication messages. Only authentication procedure can overcome the aforementioned problem. Many researchers have proposed so many authentication schemes in this literature. But, this paper has shown that many of them are not usable in real world application scenarios because, the existing schemes cannot resist all the possible attacks. Therefore, this paper has proposed a three factor authentication scheme using hash function and fuzzy extractor. This paper has further analyzed the security of the proposed scheme using random oracle model. The analysis shows that the proposed scheme can resist all the possible attacks. Furthermore, comparison between proposed scheme and related existing schemes shows that the proposed scheme has better trade-off among storage, computational and communication costs.

show abstract

Section: Literature Surveymentioning

confidence: 99%

Section: Preliminariesmentioning

confidence: 99%

A Three Factor Remote User Authentication Scheme Using Collision Resist Fuzzy Extractor in Single Server Environment

Giri

Maitra

2017

ITM Web Conf.

Self Cite

View full text Add to dashboard Cite

show abstract

“…The user at higher level uses a one‐way Hash function to derive the lower level group‐key values. The one‐way hash function used in the proposed protocol is H :{0,1}xx‐xx ∗ →{0,1}xx‐xx p where p is a large prime number . The following equation is used to find the link values L i .…”

Section: Proposed Protocolmentioning

confidence: 99%

An effective key distribution for secure internet pay‐TV using access key hierarchies

Vijayakumar¹,

Naresh²,

Islam

et al. 2016

Security Comm Networks

View full text Add to dashboard Cite

Distribution of keys in a Conditional Access System takes long computation time because a huge number of keys is to be updated if any user leaves or joins the system. Moreover, it is necessary to send the keys securely to the authorized members. Thus, an effective key distribution protocol for Internet Pay‐TV system is designed in this article to lower the computation time taken to compute the re‐keying information. In the proposed protocol, when the Service Provider needs to refresh a new shared secret key and link values, only a few key updating operations are needed, and they can be achieved using four primary operations, namely, hash function, addition, subtraction, and multiplication. From the experimental results, we perceive that the proposed approach takes less computation cost, communication cost and storage cost compared with other competitive protocols available in the literature. Copyright © 2016 John Wiley & Sons, Ltd.

show abstract

“…Client‐server communication is a most generic term in network communication system where users' end is treated as client and they get many facilities and services by accessing the services through Internet. There are lot of applications in real world such that e‐medical system, online payment system, access of USB storage device, grid computing, and so on. But as communications are done through insecure channel like Internet, outsider may hamper the communications.…”

Section: Introductionmentioning

confidence: 99%

A robust ElGamal‐based password‐authentication protocol using smart card for client‐server communication

Maitra

Obaidat

Amin

et al. 2016

Int J Communication

Self Cite

View full text Add to dashboard Cite

Smart card-based client-server authentication protocol is well popular for secure data exchange over insecure and hostile networks. Recently, Lee et al. put forward an authentication protocol by utilizing ElGamal cryptosystem and proved that it can withstand known security threats. This article evinces that the protocol of Lee et al. is unwilling to protect various important security vulnerabilities such as forgery attack and off-line password-guessing attack. To vanquish these loopholes, this article presents a robust authentication protocol for client-server communication over any insecure networks. The security explanation of our protocol has done through the formal and informal mechanism and its outcome makes sure that the designed protocol is strong enough to resist the known vulnerabilities. In addition, we have simulated our protocol using ProVerif online software and its results certify that our protocol is safe against private information of the client and server. This paper also has made performance estimation of the presented protocol and others, and the outcome favors the presented protocol. KEYWORDS authentication, forgery attack, identity, password, smart card 1 Int J Commun Syst. 2017;30:e3242.wileyonlinelibrary.com/journal/dac

show abstract

Efficient biometric and password based mutual authentication for consumer USB mass storage devices

Cited by 29 publications

References 25 publications

A Three Factor Remote User Authentication Scheme Using Collision Resist Fuzzy Extractor in Single Server Environment

A Three Factor Remote User Authentication Scheme Using Collision Resist Fuzzy Extractor in Single Server Environment

An effective key distribution for secure internet pay‐TV using access key hierarchies

A robust ElGamal‐based password‐authentication protocol using smart card for client‐server communication

Contact Info

Product

Resources

About