scholarly journals An Immunity Passport Scheme Based on the Dual-Blockchain Architecture for International Travel

2022 ◽  
Vol 2022 ◽  
pp. 1-11
Author(s):  
Hancheng Gao ◽  
Haoyu Ji ◽  
Haiping Huang ◽  
Fu Xiao ◽  
Luo Jian
Keyword(s):  
International Travel ◽  
Searchable Encryption ◽  
Anonymous Authentication ◽  
Authentication Schemes ◽  
Security Evaluations

The implementation of immunity passport has been hampered by the controversies over vaccines in various countries, the privacy of vaccinators, and the forgery of passports. While some existing schemes have been devoted to accelerating this effort, the problems above are not well solved in existing schemes. In this paper, we present an immunity passport scheme based on the dual-blockchain architecture, which frees people from the cumbersome epidemic prevention process while traveling abroad. Specially, the dual-blockchain architecture is established to fit with the scenarios of immunity passport. Searchable encryption and anonymous authentication are utilized to ensure users’ privacy. In addition, the performance and security evaluations show that our scheme achieves the proposed security goals and surpasses other authentication schemes in communicational and computational overheads.

scholarly journals Publicly Traceable Attribute-Based Anonymous Authentication and Its Application to Voting

2021 ◽  
Vol 2021 ◽  
pp. 1-17
Author(s):  
Peng Li ◽  
Junzuo Lai ◽  
Yongdong Wu
Keyword(s):  
Access Control ◽  
Third Party ◽  
Security Requirements ◽  
Trusted Third Party ◽  
Access Policy ◽  
Anonymous Authentication ◽  
Generic Construction ◽  
Authentication Schemes

Numerous anonymous authentication schemes are designed to provide efficient authentication services while preserving privacy. Such schemes may easily neglect access control and accountability, which are two requirements that play an important role in some particular environments and applications. Prior designs of attribute-based anonymous authentication schemes did not concentrate on providing full anonymity while at the same time holding public traceability. To address this problem, we formally define and present a new primitive called traceable attribute-based anonymous authentication (TABAA) which achieves (i) full anonymity, i.e., both registration and authentication cannot reveal user’s privacy; (ii) reusable credential, i.e., a registered credential can be repeatedly used without being linked; (iii) access control, i.e., only when the user’s attribute satisfies the access policy can the user be involved in authentication; and (iv) public traceability, i.e., anyone, without help from the trusted third party, can trace a misbehaving user who has authenticated two messages corresponding to a common address. Then, we formally define the security requirements of TABAA, including unforgeability, anonymity, and accountability, and give a generic construction satisfying the security requirements. Furthermore, based on TABAA, we propose the first attribute-based, decentralized, fully anonymous, publicly traceable e-voting, which enables voters to engage in a number of different voting activities without repeated registration.

scholarly journals An Efficient Anonymous Authentication Scheme for Mobile Pay-TV Systems

2020 ◽  
Vol 2020 ◽  
pp. 1-12
Author(s):  
Yuting Li ◽  
Qingfeng Cheng ◽  
Jinzheng Cao
Keyword(s):  
Mobile Devices ◽  
Mobile Communication ◽  
Service Providers ◽  
Authentication Protocol ◽  
Authentication Scheme ◽  
Mobile Users ◽  
Anonymous Authentication ◽  
Authentication Schemes ◽  
Pay Tv ◽  
And Storage

As a component of mobile communication, the pay-TV system has attracted a lot of attention. By using mobile devices, users interact with the head end system in service providers to acquire TV services. With the growth of mobile users, how to protect the privacy of users while improving efficiency of the network has become an issue worthy of attention. Anonymous authentication schemes for mobile pay-TV systems came into being. In this paper, we analyze the shortcomings of the existing authentication protocol and then propose an improved one, which is secure against stored set attack and user traceability attack. The proposed scheme is proved to be secure. Moreover, our new scheme performs better in efficiency and storage, compared with several other schemes.

scholarly journals BBAAS: Blockchain-Based Anonymous Authentication Scheme for Providing Secure Communication in VANETs

2021 ◽  
Vol 2021 ◽  
pp. 1-11
Author(s):  
Azees Maria ◽  
Vijayakumar Pandi ◽  
Jeatha Deborah Lazarus ◽  
Marimuthu Karuppiah ◽  
Mary Subaja Christo
Keyword(s):  
Secure Communication ◽  
Vehicular Ad Hoc Networks ◽  
Computational Cost ◽  
Authentication Scheme ◽  
Security Attacks ◽  
Authentication Code ◽  
Coverage Area ◽  
Anonymous Authentication ◽  
Blockchain Technology ◽  
Authentication Schemes

Smart driving has become conceivable due to the rapid growth of vehicular ad hoc networks. VANETs are considered as the main platform for providing safety road information and instant vehicle communication. Nevertheless, due to the open wireless nature of communication channels, VANET is susceptible to security attacks by malicious users. For this reason, secure anonymous authentication schemes are essential in VANETs. However, when vehicles reach a new roadside unit (RSU) coverage area, the vehicles need to perform reauthentication with the current RSU, which significantly diminishes the efficiency of the entire VANET. Therefore, the introduction of blockchain technology has created opportunities for VANETs to resolve the aforementioned challenges. Due to the decentralized nature of blockchain technology, rapid reauthentication of vehicles is achieved in this paper through secure authentication code transfer between the consecutive RSUs. The security strength of the proposed blockchain-based anonymous authentication scheme against various harmful security attacks is proven in the security analysis section to ensure that it provides better security. In addition, blockchain, as presented in the performance analysis section, is used to substantially diminish the computational cost compared to conventional authentication schemes.

Certificateless Remote Anonymous Authentication Schemes for WirelessBody Area Networks

2014 ◽  
Vol 25 (2) ◽  
pp. 332-342 ◽  
Author(s):  
Jingwei Liu ◽  
Zonghua Zhang ◽  
Xiaofeng Chen ◽  
Kyung Sup Kwak
Keyword(s):  
Anonymous Authentication ◽  
Authentication Schemes

scholarly journals Security Analysis on “Anonymous Authentication Scheme for Smart Home Environment with Provable Security”

2020 ◽  
Vol 2020 ◽  
pp. 1-4
Author(s):  
Meijia Xu ◽  
Qiying Dong ◽  
Mai Zhou ◽  
Chenyu Wang ◽  
Yangyang Liu
Keyword(s):  
Smart Home ◽  
User Authentication ◽  
Security Analysis ◽  
Authentication Scheme ◽  
Dictionary Attack ◽  
Anonymous Authentication ◽  
Smart Home Environment ◽  
User Authentication Scheme ◽  
Authentication Schemes ◽  
The Internet Of Things

As an important application of the Internet of Things, smart home has greatly facilitated our life. Since the communication channels of smart home are insecure and the transmitted data are usually sensitive, a secure and anonymous user authentication scheme is required. Numerous attempts have been taken to design such authentication schemes. Recently, Shuai et al. (Computer & Security 86(2019):132146) designed an anonymous authentication scheme for smart home using elliptic curve cryptography. They claimed that the proposed scheme is secure against various attacks and provides ideal attributes. However, we show that their scheme cannot resist inside attack and offline dictionary attack and also fails to achieve forward secrecy. Furthermore, we give some suggestions to enhance the security of the scheme. These suggestions also apply to other user authentication schemes with similar flaws.

scholarly journals A Secure and Efficient ECC-Based Anonymous Authentication Protocol

2019 ◽  
Vol 2019 ◽  
pp. 1-13 ◽  
Author(s):  
Feifei Wang ◽  
Guoai Xu ◽  
Lize Gu
Keyword(s):  
User Authentication ◽  
Authentication Protocol ◽  
Performance Comparison ◽  
Impersonation Attack ◽  
Session Key ◽  
Anonymous Authentication ◽  
Password Guessing Attack ◽  
Authentication Schemes ◽  
And Performance ◽  
Guessing Attack

Nowadays, remote user authentication protocol plays a great role in ensuring the security of data transmission and protecting the privacy of users for various network services. In this study, we discover two recently introduced anonymous authentication schemes are not as secure as they claimed, by demonstrating they suffer from offline password guessing attack, desynchronization attack, session key disclosure attack, failure to achieve user anonymity, or forward secrecy. Besides, we reveal two environment-specific authentication schemes have weaknesses like impersonation attack. To eliminate the security vulnerabilities of existing schemes, we propose an improved authentication scheme based on elliptic curve cryptosystem. We use BAN logic and heuristic analysis to prove our scheme provides perfect security attributes and is resistant to known attacks. In addition, the security and performance comparison show that our scheme is superior with better security and low computation and communication cost.

scholarly journals Two-Level-Composite-Hashing Facilitating Highly Efficient Anonymous IoT and D2D Authentication

Electronics ◽  
2021 ◽  
Vol 10 (7) ◽  
pp. 789
Author(s):  
Hung-Yu Chien
Keyword(s):  
High Efficiency ◽  
Denial Of Service ◽  
Resource Limitation ◽  
Sensitive Information ◽  
Dos Attacks ◽  
Anonymous Authentication ◽  
Public Keys ◽  
Identity Privacy ◽  
Authentication Schemes ◽  
Iot Devices

Resource limitation is quite popular in many Internet of Things (IoT) devices and eavesdropping on the identities of IoT devices could reveal the sensitive information; therefore, high efficiency (computation and communication) and anonymity protection are two desirable properties in IoT authentication and in device-to-device (D2D) authentication. Conventionally, dynamic pseudonyms are widely adopted to protect the device identity privacy in IoT authentication and in D2D communications; however, the conventional mechanisms of pseudonym-renewing and pseudonym-bound-public-keys updating could be very costly or be vulnerable to the desynchronization-based denial-of-service (DoS) attacks. In this paper, we propose a novel 2-level composite hashing (2LCH) mechanism to mitigate the problems, and propose the 2LCH-based anonymous IoT and D2D authentication schemes. The schemes simultaneously achieve high efficiency and strong anonymity for such environments; once two devices successfully complete one instance of the server-assist anonymous authentication, they can run several instances of the direct D2D anonymous authentication without the involvement of the server. The merits of the schemes include: (1) high efficiency in terms of computation and communication; (2) easy and efficient generation/synchronization of dynamic pseudonyms; (3) robustness to both desynchronization-based DoS attacks and the unreliable connections; (4) easy application to the existent IoT architectures and standards; and (5) formal security verification.

Sign in / Sign up

Export Citation Format

Share Document