Forward Secrecy of SPAKE2

Efficient privacy-preserving user authentication scheme with forward secrecy for industry 4.0

Science China Information Sciences ◽

10.1007/s11432-020-2975-6 ◽

2021 ◽

Vol 65 (1) ◽

Author(s):

Chenyu Wang ◽

Ding Wang ◽

Guoai Xu ◽

Debiao He

Keyword(s):

Industry 4.0 ◽

User Authentication ◽

Privacy Preserving ◽

Authentication Scheme ◽

Forward Secrecy ◽

User Authentication Scheme

Download Full-text

Drone Secure Communication Protocol for Future Sensitive Applications in Military Zone

Sensors ◽

10.3390/s21062057 ◽

2021 ◽

Vol 21 (6) ◽

pp. 2057

Author(s):

Yongho Ko ◽

Jiyoon Kim ◽

Daniel Gerbi Duguma ◽

Philip Virgil Astillo ◽

Ilsun You ◽

...

Keyword(s):

Performance Evaluation ◽

Secure Communication ◽

Communication Protocol ◽

Denial Of Service ◽

Mutual Authentication ◽

Information Leakage ◽

Security Protocol ◽

Security Requirements ◽

Forward Secrecy ◽

Perfect Forward Secrecy

Unmanned Aerial Vehicle (UAV) plays a paramount role in various fields, such as military, aerospace, reconnaissance, agriculture, and many more. The development and implementation of these devices have become vital in terms of usability and reachability. Unfortunately, as they become widespread and their demand grows, they are becoming more and more vulnerable to several security attacks, including, but not limited to, jamming, information leakage, and spoofing. In order to cope with such attacks and security threats, a proper design of robust security protocols is indispensable. Although several pieces of research have been carried out with this regard, there are still research gaps, particularly concerning UAV-to-UAV secure communication, support for perfect forward secrecy, and provision of non-repudiation. Especially in a military scenario, it is essential to solve these gaps. In this paper, we studied the security prerequisites of the UAV communication protocol, specifically in the military setting. More importantly, a security protocol (with two sub-protocols), that serves in securing the communication between UAVs, and between a UAV and a Ground Control Station, is proposed. This protocol, apart from the common security requirements, achieves perfect forward secrecy and non-repudiation, which are essential to a secure military communication. The proposed protocol is formally and thoroughly verified by using the BAN-logic (Burrow-Abadi-Needham logic) and Scyther tool, followed by performance evaluation and implementation of the protocol on a real UAV. From the security and performance evaluation, it is indicated that the proposed protocol is superior compared to other related protocols while meeting confidentiality, integrity, mutual authentication, non-repudiation, perfect forward secrecy, perfect backward secrecy, response to DoS (Denial of Service) attacks, man-in-the-middle protection, and D2D (Drone-to-Drone) security.

Download Full-text

Cryptanalysis of a Group Key Establishment Protocol

Symmetry ◽

10.3390/sym13020332 ◽

2021 ◽

Vol 13 (2) ◽

pp. 332

Author(s):

Jorge Martínez Carracedo ◽

Adriana Suárez Corona

Keyword(s):

Forward Secrecy ◽

Key Establishment ◽

Group Key ◽

Active Attack ◽

Group Key Establishment

In this paper, we analyze the security of a group key establishment scheme proposed by López-Ramos et al. This proposal aims at allowing a group of users to agree on a common key. We present several attacks against the security of the proposed protocol. In particular, an active attack is presented, and it is also proved that the protocol does not provide forward secrecy.

Download Full-text

End-to-End Encrypted Messaging Based on PGP with Forward Secrecy

Journal of Physics Conference Series ◽

10.1088/1742-6596/1873/1/012031 ◽

2021 ◽

Vol 1873 (1) ◽

pp. 012031

Author(s):

Yiming Shen

Keyword(s):

Forward Secrecy ◽

End To End

Download Full-text

Efficient Multi-Factor User Authentication Protocol with Forward Secrecy for Real-Time Data Access in WSNs

ACM Transactions on Cyber-Physical Systems ◽

10.1145/3325130 ◽

2020 ◽

Vol 4 (3) ◽

pp. 1-26 ◽

Cited By ~ 3

Author(s):

Ding Wang ◽

Ping Wang ◽

Chenyu Wang

Keyword(s):

Real Time ◽

User Authentication ◽

Data Access ◽

Authentication Protocol ◽

Time Data ◽

Forward Secrecy ◽

Real Time Data

Download Full-text

An efficient hash‐based authentication protocol for wireless sensor networks in Internet of Things applications with forward secrecy

International Journal of Communication Systems ◽

10.1002/dac.4823 ◽

2021 ◽

Author(s):

Mohammad Javad Sadri ◽

Maryam Rajabzadeh Asaar

Keyword(s):

Wireless Sensor Networks ◽

Sensor Networks ◽

Internet Of Things ◽

Authentication Protocol ◽

Wireless Sensor ◽

Forward Secrecy

Download Full-text

Enhanced ID-Based Authentication Scheme Using OTP in Smart Grid AMI Environment

Journal of Applied Mathematics ◽

10.1155/2014/208424 ◽

2014 ◽

Vol 2014 ◽

pp. 1-8

Author(s):

Sang-Soo Yeo ◽

Dae-il Park ◽

Young-Ae Jung

Keyword(s):

Smart Grid ◽

Good Choice ◽

Authentication Scheme ◽

Security Requirements ◽

Smart Devices ◽

Smart Meter ◽

Forward Secrecy ◽

Hardware Specification ◽

At Home

This paper presents the vulnerabilities analyses of KL scheme which is an ID-based authentication scheme for AMI network attached SCADA in smart grid and proposes a security-enhanced authentication scheme which satisfies forward secrecy as well as security requirements introduced in KL scheme and also other existing schemes. The proposed scheme uses MDMS which is the supervising system located in an electrical company as a time-synchronizing server in order to synchronize smart devices at home and conducts authentication between smart meter and smart devices using a new secret value generated by an OTP generator every session. The proposed scheme has forward secrecy, so it increases overall security, but its communication and computation overhead reduce its performance slightly, comparing the existing schemes. Nonetheless, hardware specification and communication bandwidth of smart devices will have better conditions continuously, so the proposed scheme would be a good choice for secure AMI environment.

Download Full-text

Attribute Revocable Attribute-Based Encryption with Forward Secrecy for Fine-Grained Access Control of Shared Data

IEICE Transactions on Information and Systems ◽

10.1587/transinf.2016ofp0008 ◽

2017 ◽

Vol E100.D (10) ◽

pp. 2432-2439

Author(s):

Yoshiaki SHIRAISHI ◽

Kenta NOMURA ◽

Masami MOHRI ◽

Takeru NARUSE ◽

Masakatu MORII

Keyword(s):

Access Control ◽

Forward Secrecy ◽

Fine Grained ◽

Shared Data ◽

Attribute Based Encryption

Download Full-text

Cryptanalysis and Security Enhancement of Three Authentication Schemes in Wireless Sensor Networks

Wireless Communications and Mobile Computing ◽

10.1155/2018/8539674 ◽

2018 ◽

Vol 2018 ◽

pp. 1-11 ◽

Cited By ~ 9

Author(s):

Wenting Li ◽

Bin Li ◽

Yiming Zhao ◽

Ping Wang ◽

Fushan Wei

Keyword(s):

Wireless Sensor Networks ◽

Sensor Networks ◽

Data Access ◽

Academic Community ◽

Sensor Nodes ◽

Wireless Sensor ◽

Time Data ◽

Forward Secrecy ◽

User Friendliness ◽

Authentication Mechanism

Nowadays wireless sensor networks (WSNs) have drawn great attention from both industrial world and academic community. To facilitate real-time data access for external users from the sensor nodes directly, password-based authentication has become the prevalent authentication mechanism in the past decades. In this work, we investigate three foremost protocols in the area of password-based user authentication scheme for WSNs. Firstly, we analyze an efficient and anonymous protocol and demonstrate that though this protocol is equipped with a formal proof, it actually has several security loopholes been overlooked, such that it cannot resist against smart card loss attack and violate forward secrecy. Secondly, we scrutinize a lightweight protocol and point out that it cannot achieve the claimed security goal of forward secrecy, as well as suffering from user anonymity violation attack and offline password guessing attack. Thirdly, we find that an anonymous scheme fails to preserve two critical properties of forward secrecy and user friendliness. In addition, by adopting the “perfect forward secrecy (PFS)” principle, we provide several effective countermeasures to remedy the identified weaknesses. To test the necessity and effectiveness of our suggestions, we conduct a comparison of 10 representative schemes in terms of the underlying cryptographic primitives used for realizing forward secrecy.

Download Full-text

Efficient and Secure Multicast in WirelessMAN: A Cross-layer Design

Journal of Communications Software and Systems ◽

10.24138/jcomss.v3i3.254 ◽

2007 ◽

Vol 3 (3) ◽

pp. 199 ◽

Cited By ~ 5

Author(s):

Chin-Tser Huang ◽

Manton Matthews ◽

Matthew Ginley ◽

Xinliang Zheng ◽

Chuming Chen ◽

...

Keyword(s):

Cross Layer ◽

Cross Layer Design ◽

Security Measures ◽

Application Layer ◽

Mac Layer ◽

Forward Secrecy ◽

Group Management ◽

Multicast Service ◽

Secure Protocol ◽

Security Property

Effectively adding security measures to a multicast service is an intriguing problem, especially when the service isdeployed in a wireless setting. Next generation IEEE 802.16standard WirelessMAN networks are a perfect example of this problem, and the latest draft specification of the standard includes a secure protocol solution called Multicast and Broadcast Rekeying Algorithm (MBRA). In this paper, we expose the security problems of MBRA, including non-scalability and omission of backward and forward secrecy, and propose new approaches, ELAPSE and ELAPSE+, to address these problems. In particular, ELAPSE+ makes use of membership and mobility information gathered in the application layer to augment the adaptive group management in the MAC layer. We analyze the security property of ELAPSE and ELAPSE+, and compare their performances with MBRA by simulating group rekeying scenarios.

Download Full-text