scholarly journals A Novel Multiserver Authentication Protocol with Multifactors for Cloud Service

2018 ◽  
Vol 2018 ◽  
pp. 1-13 ◽  
Author(s):  
Jian Song ◽  
Guang-song Li ◽  
Bo-ru Xu ◽  
Chuan-gui Ma
Keyword(s):  
Smart Card ◽  
Cloud Service ◽  
Authentication Protocol ◽  
Authentication Protocols ◽  
Chaotic Mapping ◽  
Cryptographic Algorithm ◽  
Multifactor Authentication ◽  
Man In The Middle ◽  
Secret Keys ◽  
Weak Points

Secure and efficient authentication protocols are necessary for cloud service. Multifactor authentication protocols taking advantage of smart card, user’s password, and biometric, are more secure than password-based single-factor authentication protocols which are widely used in practice. However, most of the multiserver authentication protocols may have weak points, such as smart card loss attack, man-in-the-middle attack, anonymity, and high computation cost of authentication center. In order to overcome the above weaknesses, we propose a novel multiserver multifactor authentication protocol based on the Kerberos protocol using the extended Chebyshev chaotic mapping as a cryptographic algorithm. The proposed protocol achieves anonymity without sharing secret keys in advance and needs the user to register with the authentication center only once. Finally, we prove the security of the new protocol with BAN logic and compare it with other multifactor authentication protocols for multiserver environment. The results show that our proposed protocol is more secure and efficient and better for practical application.

scholarly journals A Protocol for Provably Secure Authentication of a Tiny Entity to a High Performance Computing One

2016 ◽  
Vol 2016 ◽  
pp. 1-9 ◽  
Author(s):  
Siniša Tomović ◽  
Miodrag J. Mihaljević ◽  
Aleksandar Perović ◽  
Zoran Ognjanović
Keyword(s):  
High Performance Computing ◽  
High Performance ◽  
Authentication Protocol ◽  
Authentication Protocols ◽  
Man In The Middle ◽  
Lpn Problem ◽  
Secure Authentication ◽  
Performance Computing ◽  
Specific Scenario ◽  
Provably Secure

The problem of developing authentication protocols dedicated to a specific scenario where an entity with limited computational capabilities should prove the identity to a computationally powerful Verifier is addressed. An authentication protocol suitable for the considered scenario which jointly employs the learning parity with noise (LPN) problem and a paradigm of random selection is proposed. It is shown that the proposed protocol is secure against active attacking scenarios and so called GRS man-in-the-middle (MIM) attacking scenarios. In comparison with the related previously reported authentication protocols the proposed one provides reduction of the implementation complexity and at least the same level of the cryptographic security.

scholarly journals Applying Semigroup Property of Enhanced Chebyshev Polynomials to Anonymous Authentication Protocol

2012 ◽  
Vol 2012 ◽  
pp. 1-17 ◽  
Author(s):  
Hong Lai ◽  
Jinghua Xiao ◽  
Lixiang Li ◽  
Yixian Yang
Keyword(s):  
Computational Complexity ◽  
Smart Card ◽  
Chebyshev Polynomials ◽  
Authentication Protocol ◽  
Dictionary Attack ◽  
Semigroup Property ◽  
Anonymous Authentication ◽  
Storage Overhead ◽  
Man In The Middle ◽  
And Storage

We apply semigroup property of enhanced Chebyshev polynomials to present an anonymous authentication protocol. This paper aims at improving security and reducing computational and storage overhead. The proposed scheme not only has much lower computational complexity and cost in the initialization phase but also allows the users to choose their passwords freely. Moreover, it can provide revocation of lost or stolen smart card, which can resist man-in-the-middle attack and off-line dictionary attack together with various known attacks.

scholarly journals Conformal Chebyshev chaotic map-based remote user password authentication protocol using smart card

2021 ◽  
Author(s):  
Chandrashekhar Meshram ◽  
Sarita Gajbhiye Meshram ◽  
Rabha W. Ibrahim ◽  
Hamid A. Jalab ◽  
Sajjad Shaukat Jamal ◽  
...  
Keyword(s):  
Fractional Calculus ◽  
Smart Card ◽  
Low Cost ◽  
Chaotic Map ◽  
Authentication Protocol ◽  
Formal Proof ◽  
Authentication Protocols ◽  
Password Authentication ◽  
User Friendly ◽  
Remote User

AbstractWith the rapid advancement and growth of computer networks, there have been greater and greater demands for remote user password authentication protocols. In current ages, smartcard-based authentication protocol has formed the standard with their incredibly insubstantial, user-friendly equipment and low-cost apps. In this study, we proposed an effective robust authentication protocol using the conformable chaotic map, where a conformable calculus is a branch of newly appearing fractional calculus. It has a magnificent property, because it formulates using a controller term. We shall also offer formal proof of smooth execution of the proposed authenticated protocol. Our new protocol is more secure as compared to several comparable protocols.

scholarly journals Remote Quantum-Safe Authentication of Entities with Physical Unclonable Functions

Photonics ◽  
2021 ◽  
Vol 8 (7) ◽  
pp. 289
Author(s):  
Georgios M. Nikolopoulos
Keyword(s):  
Authentication Protocol ◽  
Authentication Protocols ◽  
Photonic Networks ◽  
Physical Unclonable Functions ◽  
Quantum Protocols ◽  
Open Question ◽  
Standard Techniques

Physical unclonable functions have been shown to be a useful resource of randomness for implementing various cryptographic tasks including entity authentication. All the related entity authentication protocols that have been discussed in the literature so far, either they are vulnerable to an emulation attack, or they are limited to short distances. Hence, quantum-safe remote entity authentication over large distances remains an open question. In the first part of this work, we discuss the requirements that an entity authentication protocol has to offer, to be useful for remote entity authentication in practice. Subsequently, we propose a protocol, which can operate over large distances, and offers security against both classical and quantum adversaries. The proposed protocol relies on standard techniques, it is fully compatible with the infrastructure of existing and future photonic networks, and it can operate in parallel with other quantum protocols, including QKD protocols.

Design and Implementation of a Zero-Knowledge Authentication Framework for Java Card

2013 ◽  
pp. 131-148
Author(s):  
Ahmed Patel ◽  
Kenan Kalajdzic ◽  
Laleh Golafshan ◽  
Mona Taghavi
Keyword(s):  
Smart Card ◽  
Public Key Cryptography ◽  
Performance Criteria ◽  
Authentication Protocols ◽  
Zero Knowledge ◽  
Memory Space ◽  
Design And Implementation ◽  
Java Card ◽  
Authentication Mechanism ◽  
Processing Power

Zero-knowledge authentication protocols are an alternative to authentication protocols based on public key cryptography. Low processing and memory consumption make them especially suitable for implementation in smart card microprocessors, which are severely limited in processing power and memory space. This paper describes a design and implementation of a software library providing smart card application developers with a reliable authentication mechanism based on well-known zero-knowledge authentication schemes. Java Card is used as the target smart card platform implementation based on the evaluation of the Fiat-Shamir (F-S) and Guillou-Quisquater (G-Q) protocols under various performance criteria are presented to show the effectiveness of the implementation and that G-Q is a more efficient protocol.

A Secure Authentication Infrastructure for Mobile Users

2011 ◽  
pp. 56-80
Author(s):  
Gregor V. Bochmann ◽  
Eric Zhen Zhang
Keyword(s):  
Electronic Commerce ◽  
Authentication Protocol ◽  
Security Requirements ◽  
Mobile Users ◽  
Authentication Protocols ◽  
Its Analysis ◽  
Trust Relationships ◽  
Authentication Schemes ◽  
Access Rights ◽  
Secure Authentication

The requirements for an authentication infrastructure for electronic commerce are explained by identifying the partners involved in e-commerce transactions and the trust relationships required. Related security requirements are also explained, such as authentication, access rights, payment credentials, anonymity (in certain cases), and privacy and integrity of message exchanges. Then several general authentication schemes and specific protocols are reviewed and their suitability for mobile users is discussed. Finally, an improved authentication protocol is presented which can provide trust relationships for mobile e-commerce users. Its analysis and comparison with other proposed authentication protocols indicate that it is a good candidate for use in the context of mobile e-commerce.

scholarly journals Provably Secure Crossdomain Multifactor Authentication Protocol for Wearable Health Monitoring Systems

2020 ◽  
Vol 2020 ◽  
pp. 1-13
Author(s):  
Hui Zhang ◽  
Yuanyuan Qian ◽  
Qi Jiang
Keyword(s):  
Health Monitoring ◽  
Security Analysis ◽  
Wearable Devices ◽  
Authentication Protocol ◽  
Security And Privacy ◽  
Monitoring Systems ◽  
Multifactor Authentication ◽  
Health Monitoring Systems ◽  
Wearable Health Monitoring Systems ◽  
Provably Secure

Wearable health monitoring systems (WHMSs) have become the most effective and practical solutions to provide users with low-cost, noninvasive, long-term continuous health monitoring. Authentication is one of the key means to ensure physiological information security and privacy. Although numerous authentication protocols have been proposed, few of them cater to crossdomain WHMSs. In this paper, we present an efficient and provably secure crossdomain multifactor authentication protocol for WHMSs. First, we propose a ticket-based authentication model for multidomain WHMSs. Specifically, a mobile device of one domain can request a ticket from the cloud server of another domain with which wearable devices are registered and remotely access the wearable devices with the ticket. Secondly, we propose a crossdomain three-factor authentication scheme based on the above model. Only a doctor who can present all three factors can request a legitimate ticket and use it to access the wearable devices. Finally, a comprehensive security analysis of the proposed scheme is carried out. In particular, we give a provable security analysis in the random oracle model. The comparisons of security and efficiency with the related schemes demonstrate that the proposed scheme is secure and practical.

scholarly journals Heterogeneous Cross-Domain Identity Authentication Scheme Based on Proxy Resignature in Cloud Environment

2020 ◽  
Vol 2020 ◽  
pp. 1-12
Author(s):  
Yongyang Lv ◽  
Wenju Liu ◽  
Ze Wang
Keyword(s):  
Simulation Experiment ◽  
Service Providers ◽  
Cloud Service ◽  
Identity Authentication ◽  
Cloud Environment ◽  
Cross Domain ◽  
Replay Attacks ◽  
Man In The Middle ◽  
Cloud Service Providers ◽  
Computing Performance

Based on proxy resignature, the signature transformation between trust domains of different cryptographic systems is realized with the help of the cloud authentication center, so as to achieve cross-domain access between users and cloud service providers in heterogeneous environment. Hierarchical ID tree realizes the uniqueness of identity in communication, and the security of heterogeneous cross-domain identity authentication is enhanced by the two-factor authentication of “password + key” and temporary identity replacing real identity. The security of the scheme is proved under the CK model, which can anonymously trace entity identity, resist replay attacks, replacement attacks, and man-in-the-middle attacks, and the simulation experiment is carried out. By searching it in related fields, no paper on heterogeneous cross-domain identity authentication based on proxy resignature has been published yet. The results of this paper show that the proposed scheme has better computing performance and higher security.

An Enhanced Authentication Protocol for Multi-server Environment Using Password and Smart Card

2020 ◽  
Vol 115 (4) ◽  
pp. 2779-2803
Author(s):  
T. Sudhakar ◽  
V. Natarajan ◽  
M. Gopinath ◽  
J. Saranyadevi
Keyword(s):  
Smart Card ◽  
Authentication Protocol ◽  
Multi Server
Sign in / Sign up

Export Citation Format

Share Document