Robust Secure Dynamic ID Based Remote User Authentication Scheme for Multi-server Environment

Truong, Toan-Thinh; Tran, Minh–Triet; Duong, Anh Duc

doi:10.1007/978-3-642-39640-3_37

Cited by 14 publications

(7 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…[18][19][20] Many digital signature schemes, 21,22 key agreement schemes, [23][24][25] and encryption schemes [26][27][28] have been proposed in the last decades. But Truong et al 30 But Truong et al 30 …”

Section: Related Workmentioning

confidence: 98%

A secure and efficient identity‐based mutual authentication scheme with smart card using elliptic curve cryptography

Luo

Zhang

Khan

et al. 2017

Int J Communication

View full text Add to dashboard Cite

The e-commerce has got great development in the past decades and brings great convenience to people. Users can obtain all kinds of services through e-commerce platform with mobile device from anywhere and at anytime. To make it work well, e-commerce platform must be secure and provide privacy preserving. To achieve this goal, Islam et al. proposed a dynamic identity-based remote user mutual authentication scheme with smart card using Elliptic Curve Cryptography(ECC). Islam et al claimed that the security of their scheme was good enough to resist various attacks. However, we demonstrate that their scheme is vulnerable to insider attack and suffers from off-line password guessing attack if smart card is compromised. To overcome the deficiencies, we present an improved scheme over Islam's scheme. The security proof and analysis shows that our scheme can also provide user anonymity and mutual authentication, and the security is enough to against relay attack, impersonation attack, and other common secure attackers. The performance analysis shows that the proposed scheme is more efficient than Islam et al's scheme. KEYWORDSelliptic curve cryptography, password, provable security, smart card Int J Commun Syst. 2017;30:e3333.wileyonlinelibrary.com/journal/dac

show abstract

Section: Related Workmentioning

confidence: 98%

A secure and efficient identity‐based mutual authentication scheme with smart card using elliptic curve cryptography

Luo

Zhang

Khan

et al. 2017

Int J Communication

View full text Add to dashboard Cite

show abstract

“…Lee et al [25] designed an enhanced and efficient multiserver authentication protocol after pointing out the security weakness of the protocol in [24]. Subsequently, Troung et al [26] illustrated that the protocol in [24] cannot resist smart-card stolen and user impersonation attacks. To vanquish these loopholes, the authors put forward another multiserver authentication protocol and showed that it is secure against common attacks.…”

Section: Literature Reviewsmentioning

confidence: 99%

A Two-Factor RSA-Based Robust Authentication System for Multiserver Environments

Amin¹,

Islam²,

Khan³

et al. 2017

Security and Communication Networks

View full text Add to dashboard Cite

The concept of two-factor multiserver authentication protocol was developed to avoid multiple number of registrations using multiple smart-cards and passwords. Recently, a variety of two-factor multiserver authentication protocols have been developed. It is observed that the existing RSA-based multiserver authentication protocols are not suitable in terms of computation complexities and security attacks. To provide lower complexities and security resilience against known attacks, this article proposes a twofactor (password and smart-card) user authentication protocol with the RSA cryptosystem for multiserver environments. The comprehensive security discussion proved that the known security attacks are eliminated in our protocol. Besides, our protocol supports session key agreement and mutual authentication between the application server and the user. We analyze the proof of correctness of the mutual authentication and freshness of session key using the BAN logic model. The experimental outcomes obtained through simulation of the Automated Validation of Internet Security Protocols and Applications (AVISPA) S/W show that our protocol is secured. We consider the computation, communication, and storage costs and the comparative explanations show that our protocol is flexible and efficient compared with protocols. In addition, our protocol offers security resilience against known attacks and provides lower computation complexities than existing protocols. Additionally, the protocol offers password change facility to the authorized user.

show abstract

“…Subsequently, Lee et al came up with an improved authentication scheme. Although Truong et al (2013) identified that Lee et al's scheme does not resist user impersonation attack and stolen smart card attack, Truong et al also designed an improved scheme to present secure solution. But, their scheme is insecure to insider attack.…”

Section: Introductionmentioning

confidence: 96%

Design of a secure smart card-based multi-server authentication scheme

Chaturvedi

Das

Mishra

et al. 2016

Journal of Information Security and Applications

View full text Add to dashboard Cite

Robust Secure Dynamic ID Based Remote User Authentication Scheme for Multi-server Environment

Cited by 14 publications

References 18 publications

A secure and efficient identity‐based mutual authentication scheme with smart card using elliptic curve cryptography

A secure and efficient identity‐based mutual authentication scheme with smart card using elliptic curve cryptography

A Two-Factor RSA-Based Robust Authentication System for Multiserver Environments

Design of a secure smart card-based multi-server authentication scheme

Contact Info

Product

Resources

About