Strong authentication for mobile cloud computing

Ahmed-Nacer, Anis; Samovar, Mehdi Ahmed-Nacer

doi:10.1109/notere.2016.7745824

Cited by 4 publications

(4 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…When a request comes from any user, the server verifies the client URI first. If the user URI is correct, then only the server accepts the request for impersonation and masquerade attack [10].…”

Section: Security Analysis and Verificationmentioning

confidence: 99%

“…Related Work. Authentication is an essential security service in any system or network communications [8][9][10]. It is classified as user authentication, remote authentication, mutual authentication, message authentication, and implicit authentication [11,12].…”

Section: Introductionmentioning

confidence: 99%

“…This scheme used USIM as a primary identity to initiate the authentication process. However, when the mobile device gets stolen, authentication will get disabled, and the entire process will get revoked [10]. In 2012, Grzonkowski et al [15] introduced improved authentication scheme based on the smart card based authentication protocol.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

New Authentication Scheme to Secure against the Phishing Attack in the Mobile Cloud Computing

Munivel

Kannammal

2019

Security and Communication Networks

View full text Add to dashboard Cite

A phishing attack is one of the severe threats to the smartphone users. As per the recent lookout report, mobile phishing attack is increasing 85% year to year and going to become a significant threat to the smartphone users. This social engineering attack attempts to get the user’s password by disguising as trusted service provider. Most of the smartphone users are using the Internet services outside of the traditional firewall. Cloud-based documents are one of the primary targets of this phishing attack in mobile cloud computing. Also, most smartphone users are using the cloud storage in their device. To secure against this password attack in a mobile cloud environment, we propose a new authentication scheme to provide novel security to the mobile cloud services. This scheme will verify the user and service provider without transmitting the password using the Zero-knowledge proof based authentication protocol. Moreover, the proposed scheme will provide mutual authentication between the communication entities. The effectiveness of proposed scheme would be verified using protocol verification tool called Scyther.

show abstract

Section: Security Analysis and Verificationmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

New Authentication Scheme to Secure against the Phishing Attack in the Mobile Cloud Computing

Munivel

Kannammal

2019

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Their proposal provides mutual authentication, authorization, confidentiality, identity and access management, forward secrecy, anonymity, availability and it is secured against all types of attacks. [59] proposes an authentication mechanism for cloud-mobile system. They propose two solutions:…”

Section: Authentication and Key Management Solutionsmentioning

confidence: 99%

Security architecture for Fog-To-Cloud continuum system

Kahvazadeh

View full text Add to dashboard Cite

Nowadays, by increasing the number of connected devices to Internet rapidly, cloud computing cannot handle the real-time processing. Therefore, fog computing was emerged for providing data processing, filtering, aggregating, storing, network, and computing closer to the users. Fog computing provides real-time processing with lower latency than cloud. However, fog computing did not come to compete with cloud, it comes to complete the cloud. Therefore, a hierarchical Fog-to-Cloud (F2C) continuum system was introduced. The F2C system brings the collaboration between distributed fogs and centralized cloud. In F2C systems, one of the main challenges is security. Traditional cloud as security provider is not suitable for the F2C system due to be a single-point-of-failure; and even the increasing number of devices at the edge of the network brings scalability issues. Furthermore, traditional cloud security cannot be applied to the fog devices due to their lower computational power than cloud. On the other hand, considering fog nodes as security providers for the edge of the network brings Quality of Service (QoS) issues due to huge fog device’s computational power consumption by security algorithms. There are some security solutions for fog computing but they are not considering the hierarchical fog to cloud characteristics that can cause a no-secure collaboration between fog and cloud. In this thesis, the security considerations, attacks, challenges, requirements, and existing solutions are deeply analyzed and reviewed. And finally, a decoupled security architecture is proposed to provide the demanded security in hierarchical and distributed fashion with less impact on the QoS. Hoy en día, al aumentar rápidamente el número de dispositivos conectados a Internet, el cloud computing no puede gestionar el procesamiento en tiempo real. Por lo tanto, la informática de niebla surgió para proporcionar procesamiento de datos, filtrado, agregación, almacenamiento, red y computación más cercana a los usuarios. La computación nebulizada proporciona procesamiento en tiempo real con menor latencia que la nube. Sin embargo, la informática de niebla no llegó a competir con la nube, sino que viene a completar la nube. Por lo tanto, se introdujo un sistema continuo jerárquico de niebla a nube (F2C). El sistema F2C aporta la colaboración entre las nieblas distribuidas y la nube centralizada. En los sistemas F2C, uno de los principales retos es la seguridad. La nube tradicional como proveedor de seguridad no es adecuada para el sistema F2C debido a que se trata de un único punto de fallo; e incluso el creciente número de dispositivos en el borde de la red trae consigo problemas de escalabilidad. Además, la seguridad tradicional de la nube no se puede aplicar a los dispositivos de niebla debido a su menor poder computacional que la nube. Por otro lado, considerar los nodos de niebla como proveedores de seguridad para el borde de la red trae problemas de Calidad de Servicio (QoS) debido al enorme consumo de energía computacional del dispositivo de niebla por parte de los algoritmos de seguridad. Existen algunas soluciones de seguridad para la informática de niebla, pero no están considerando las características de niebla a nube jerárquica que pueden causar una colaboración insegura entre niebla y nube. En esta tesis, las consideraciones de seguridad, los ataques, los desafíos, los requisitos y las soluciones existentes se analizan y revisan en profundidad. Y finalmente, se propone una arquitectura de seguridad desacoplada para proporcionar la seguridad exigida de forma jerárquica y distribuida con menor impacto en la QoS.

show abstract

User Behaviour Authentication Model Based on Stochastic Petri Net in Cloud Environment

Yang

Lau

et al. 2017

Communications in Computer and Information Science

View full text Add to dashboard Cite

Strong authentication for mobile cloud computing

Cited by 4 publications

References 7 publications

New Authentication Scheme to Secure against the Phishing Attack in the Mobile Cloud Computing

New Authentication Scheme to Secure against the Phishing Attack in the Mobile Cloud Computing

Security architecture for Fog-To-Cloud continuum system

User Behaviour Authentication Model Based on Stochastic Petri Net in Cloud Environment

Contact Info

Product

Resources

About