Two‐factor mutual authentication with key agreement in wireless sensor networks

Vaidya, Binod; Makrakis, Dimitrios; Mouftah, Hussein T.

doi:10.1002/sec.517

Cited by 65 publications

(78 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…However, the issue of securing and authenticating communication is problematic, because the nodes are vulnerable to attacks and do not have enough capacity for the secure storage of keys [4,5,6]. To solve these security issues, authentication and key agreement schemes using two-factor security, passwords and smart cards have attracted attention and have been studied widely in an effort to guarantee secure communication [7,8,9,10,11,12,13,14]. Unfortunately, many of them still suffer from various attacks and do not provide secure communication.…”

Section: Introductionmentioning

confidence: 99%

“…Subsequently, each proposed their own authentication scheme to provide secure user authentication in WSNs. In 2012, Vaidya et al [12] demonstrated that Das’s scheme [8], Khan and Alghathbar’s scheme [10] and Chen and Shih’s scheme [11] had security problems and that none of them provided key agreement. Vaidya et al proposed a two-factor mutual user authentication scheme with key agreement for WSNs.…”

Section: Introductionmentioning

confidence: 99%

“…Vaidya et al proposed a two-factor mutual user authentication scheme with key agreement for WSNs. In 2014, Kim et al [13] presented that both gateway node bypassing attacks and user impersonation attacks were possible in Vaidya et al’s scheme [12]. They proposed an authentication and key agreement scheme that resisted user impersonation and gateway node bypassing attacks.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Three-Factor User Authentication and Key Agreement Using Elliptic Curve Cryptosystem in Wireless Sensor Networks

Park

2016

Sensors

View full text Add to dashboard Cite

Secure communication is a significant issue in wireless sensor networks. User authentication and key agreement are essential for providing a secure system, especially in user-oriented mobile services. It is also necessary to protect the identity of each individual in wireless environments to avoid personal privacy concerns. Many authentication and key agreement schemes utilize a smart card in addition to a password to support security functionalities. However, these schemes often fail to provide security along with privacy. In 2015, Chang et al. analyzed the security vulnerabilities of previous schemes and presented the two-factor authentication scheme that provided user privacy by using dynamic identities. However, when we cryptanalyzed Chang et al.’s scheme, we found that it does not provide sufficient security for wireless sensor networks and fails to provide accurate password updates. This paper proposes a security-enhanced authentication and key agreement scheme to overcome these security weaknesses using biometric information and an elliptic curve cryptosystem. We analyze the security of the proposed scheme against various attacks and check its viability in the mobile environment.

show abstract

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Three-Factor User Authentication and Key Agreement Using Elliptic Curve Cryptosystem in Wireless Sensor Networks

Park

2016

Sensors

View full text Add to dashboard Cite

show abstract

“…Rubin logic defines actions for dealing with the knowledge in a protocol [36]. The action lists that precede and follow message operations in a principal's behavior list determine a sequence of events performed by the principal during a protocol run.…”

Section: Security Analysis and Verificationmentioning

confidence: 99%

Security Enhanced User Authentication Protocol for Wireless Sensor Networks Using Elliptic Curves Cryptography

Choi

Lee

Kim

et al. 2014

Sensors

194

171

View full text Add to dashboard Cite

Wireless sensor networks (WSNs) consist of sensors, gateways and users. Sensors are widely distributed to monitor various conditions, such as temperature, sound, speed and pressure but they have limited computational ability and energy. To reduce the resource use of sensors and enhance the security of WSNs, various user authentication protocols have been proposed. In 2011, Yeh et al. first proposed a user authentication protocol based on elliptic curve cryptography (ECC) for WSNs. However, it turned out that Yeh et al.'s protocol does not provide mutual authentication, perfect forward secrecy, and key agreement between the user and sensor. Later in 2013, Shi et al. proposed a new user authentication protocol that improves both security and efficiency of Yeh et al.'s protocol. However, Shi et al.'s improvement introduces other security weaknesses. In this paper, we show that Shi et al.'s improved protocol is vulnerable to session key attack, stolen smart card attack, and sensor energy exhausting attack. In addition, we propose a new, security-enhanced user authentication protocol using ECC for WSNs.

show abstract

“…A two-factor user authentication protocol [5] which provided strong authentication and a session of key establishment for WSNs existed in 2009, this authentication means that more than one factor is required to authenticate the communicating party in the authentication mechanism. B. Vaidya et al [6] improved the two factor authentication 2nd International Conference on Advances in Mechanical Engineering and Industrial Informatics (AMEII 2016) scheme, because it is vulnerable to stolen smart card attacks and it did not provide a key agreement. J. Kim et al [7] presented that gateway node bypassing attacks and user impersonation attacks are possible using secret data stored in a sensor or an attacker's own smart card in Vaidya et al's scheme.…”

Section: Related Work About Authenticationmentioning

confidence: 99%

An Identity Authentication Scheme Based on Node Behaviors for Wireless Sensor Networks

Chang¹,

Liang²,

Xu³

2016

Proceedings of the 2nd International Conference on Advances in Mechanical Engineering and Industrial Informatics (AMEII 2016)

View full text Add to dashboard Cite

Abstract. Identity authentication is a crucial security issue in wireless sensor networks, because wireless sensor nodes are typically deployed in an unattended environment, leaving them open to possible hostile network attacks. We propose a new identity authentication scheme based on the behaviors of node in wireless sensor networks. Our scheme which depends on trust mechanism can resist the insider attacks effectively. With the total trust value integrated with direct trust value, recommendation trust value and history trust value of nodes, we can verify identity of nodes. Experiments indicate that our scheme is ideal to enhance the solution for identity authentication of nodes. Moreover, it can against the insider attacks effectively.

show abstract

Two‐factor mutual authentication with key agreement in wireless sensor networks

Cited by 65 publications

References 17 publications

Three-Factor User Authentication and Key Agreement Using Elliptic Curve Cryptosystem in Wireless Sensor Networks

Three-Factor User Authentication and Key Agreement Using Elliptic Curve Cryptosystem in Wireless Sensor Networks

Security Enhanced User Authentication Protocol for Wireless Sensor Networks Using Elliptic Curves Cryptography

An Identity Authentication Scheme Based on Node Behaviors for Wireless Sensor Networks

Contact Info

Product

Resources

About