An Anonymous Mutual Authentication Scheme for RFID-Based Transportation System

In traditional transportation, each driver usually relies on their experience to determine an appropriate route, which may shorten the driving time and transport cost. However, this may also lead to a waste of time in traffic jams or due to other problems. In recent years, by introducing Internet of Things technology into the transportation system, traffic condition data can be collected and analyzed in real-time, which makes it easier for drivers to choose appropriate routes. However, the transmitted data may be intercepted or falsified, especially in untrusted public communication channels. Some schemes have been proposed to protect personal data, while they are vulnerable to some known attacks. Therefore, we propose a mutual authentication scheme for session key agreement and information encryption before transmitting personal data. This scheme can correctly identify vehicles and information. The Burrows–Abadi–Needham logic proof and our security discussion demonstrate that this authentication scheme can resist the various known attacks, including de-synchronization, the replay attack and the reader lost attack, which is solved for the first time in this field. Compared with some typical schemes, the performance analysis shows that this new scheme realizes a balance between security and computing costs.

Download Full-text

Secure and Efficient Anonymous Authentication Scheme in Global Mobility Networks

Journal of Applied Mathematics ◽

10.1155/2013/302582 ◽

2013 ◽

Vol 2013 ◽

pp. 1-12 ◽

Cited By ~ 5

Author(s):

Jun-Sub Kim ◽

Jin Kwak

Keyword(s):

Mutual Authentication ◽

Authentication Scheme ◽

Session Key ◽

Replay Attack ◽

Anonymous Authentication ◽

Computational Overhead ◽

Global Mobility ◽

Global Mobility Network ◽

Man In The Middle ◽

Perfect Forward Secrecy

In 2012, Mun et al. pointed out that Wu et al.’s scheme failed to achieve user anonymity and perfect forward secrecy and disclosed the passwords of legitimate users. And they proposed a new enhancement for anonymous authentication scheme. However, their proposed scheme has vulnerabilities that are susceptible to replay attack and man-in-the-middle attack. It also incurs a high overhead in the database. In this paper, we examine the vulnerabilities in the existing schemes and the computational overhead incurred in the database. We then propose a secure and efficient anonymous authentication scheme for roaming service in global mobility network. Our proposed scheme is secure against various attacks, provides mutual authentication and session key establishment, and incurs less computational overhead in the database than Mun et al.'s scheme.

Download Full-text

An Efficient Chaotic Map-Based Authentication Scheme with Mutual Anonymity

Applied Computational Intelligence and Soft Computing ◽

10.1155/2016/3916942 ◽

2016 ◽

Vol 2016 ◽

pp. 1-10

Author(s):

Yousheng Zhou ◽

Junfeng Zhou ◽

Feng Wang ◽

Feng Guo

Keyword(s):

Key Management ◽

Chaotic Map ◽

Mutual Authentication ◽

Security Analysis ◽

Random Oracle Model ◽

Random Oracle ◽

Authentication Scheme ◽

Session Key ◽

The Real ◽

Shared Key

A chaotic map-based mutual authentication scheme with strong anonymity is proposed in this paper, in which the real identity of the user is encrypted with a shared key between the user and the trusted server. Only the trusted server can determine the real identity of a user during the authentication, and any other entities including other users of the system get nothing about the user’s real identity. In addition, the shared key of encryption can be easily computed by the user and trusted server using the Chebyshev map without additional burdensome key management. Once the partnered two users are authenticated by the trusted server, they can easily proceed with the agreement of the session key. Formal security analysis demonstrates that the proposed scheme is secure under the random oracle model.

Download Full-text

An Enhanced Authentication Scheme for Internet of Things Based E-Healthcare System

Journal of Computational and Theoretical Nanoscience ◽

10.1166/jctn.2020.8658 ◽

2020 ◽

Vol 17 (1) ◽

pp. 246-253 ◽

Cited By ~ 1

Author(s):

Ravi Raushan Kumar Chaudhary ◽

Ashish Singh ◽

Kakali Chatterjee

Keyword(s):

Mutual Authentication ◽

Security Analysis ◽

Authentication Scheme ◽

Key Generation ◽

Key Exchange Protocol ◽

Session Key ◽

Diffie Hellman ◽

Healthcare Monitoring ◽

Diffie Hellman Key Exchange ◽

Mutual Authentication Protocol

Security is a major challenge in modern IoT based healthcare monitoring systems. It provides many benefits such as critical patient monitoring, remote diagnosis at anytime, anywhere. Hence, security of this data is essential when the healthcare professionals access it. Also, while storing the patients record; it must be kept safe from misuse and modification of data as other devices can easily track it. To prevent this type of threats, we have proposed a mutual authentication protocol to enhance health care security and to resist vulnerable attacks. The proposed scheme used Challenge response protocol for the authentication purpose and the Diffie-Hellman key exchange protocol is used for generation of the session key generation. The security analysis of the proposed scheme shows that the scheme is more secure and resist all the major attacks as compared to other schemes. The Formal verification of this schema also ensures that it resists most probable attacks in this system. The result of the proposed authentication scheme shows that it has low computational and communicational load.

Download Full-text

Session key exchange and mutual authentication scheme between mobile machines in WLAN based ad hoc networks

2010 International Conference on Information and Communication Technology Convergence (ICTC) ◽

10.1109/ictc.2010.5674797 ◽

2010 ◽

Cited By ~ 1

Author(s):

Hyosun Roh ◽

Souhwan Jung

Keyword(s):

Ad Hoc Networks ◽

Ad Hoc ◽

Mutual Authentication ◽

Key Exchange ◽

Authentication Scheme ◽

Session Key ◽

Hoc Networks

Download Full-text

Password Based Client-Server-User Authenticated Key Agreement Mechanism for Cloud System

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.d8352.118419 ◽

2019 ◽

Vol 8 (4) ◽

pp. 12839-12841

Keyword(s):

Key Agreement ◽

Identity Management ◽

Mutual Authentication ◽

Security Analysis ◽

Impersonation Attack ◽

Session Key ◽

Replay Attack ◽

Authentication Mechanism ◽

Diffie Hellman ◽

Cloud Server

The authentication is an essential concern in the cloud environment to restrict the unauthorized users to retrieve the files from cloud server. Moreover, authentication mechanisms are used to prevent illegal access of resources over insecure channel. Thus proposed work provides the strong and efficient authentication process in cloud computing environment by chebyshev polynomial based chaotic maps Diffie Hellman property. The proposed authentication mechanism does not disclose the identity of the user to CSP. Moreover proposed authentication mechanism enables mutual authentication, Identity management, and session-key agreement. The Proposed mechanism of security analysis includes the enabling mutual authentication and key agreement, restricting the impersonation attack, man in the middle attack and replay attack.

Download Full-text

A Secure Lightweight Three-Factor Authentication Scheme for IoT in Cloud Computing Environment

Sensors ◽

10.3390/s19163598 ◽

2019 ◽

Vol 19 (16) ◽

pp. 3598 ◽

Cited By ~ 13

Author(s):

SungJin Yu ◽

KiSung Park ◽

YoungHo Park

Keyword(s):

Cloud Computing ◽

Mutual Authentication ◽

Internet Security ◽

Authentication Scheme ◽

Sensitive Information ◽

Computing Environment ◽

Session Key ◽

Cloud Computing Environment ◽

Smart Healthcare ◽

Three Factor

With the development of cloud computing and communication technology, users can access the internet of things (IoT) services provided in various environments, including smart home, smart factory, and smart healthcare. However, a user is insecure various types of attacks, because sensitive information is often transmitted via an open channel. Therefore, secure authentication schemes are essential to provide IoT services for legal users. In 2019, Pelaez et al. presented a lightweight IoT-based authentication scheme in cloud computing environment. However, we prove that Pelaez et al.’s scheme cannot prevent various types of attacks such as impersonation, session key disclosure, and replay attacks and cannot provide mutual authentication and anonymity. In this paper, we present a secure and lightweight three-factor authentication scheme for IoT in cloud computing environment to resolve these security problems. The proposed scheme can withstand various attacks and provide secure mutual authentication and anonymity by utilizing secret parameters and biometric. We also show that our scheme achieves secure mutual authentication using Burrows–Abadi–Needham logic analysis. Furthermore, we demonstrate that our scheme resists replay and man-in-the-middle attacks usingthe automated validation of internet security protocols and applications (AVISPA) simulation tool. Finally, we compare the performance and the security features of the proposed scheme with some existing schemes. Consequently, we provide better safety and efficiency than related schemes and the proposed scheme is suitable for practical IoT-based cloud computing environment.

Download Full-text

Mutual Authentication Scheme in Secure Internet of Things Technology for Comfortable Lifestyle

Sensors ◽

10.3390/s16010020 ◽

2015 ◽

Vol 16 (1) ◽

pp. 20 ◽

Cited By ~ 43

Author(s):

Namje Park ◽

Namhi Kang

Keyword(s):

Internet Of Things ◽

Mutual Authentication ◽

Authentication Scheme ◽

Internet Of Things Technology

Download Full-text

A New Remote User Authentication Scheme on Three Dimensions

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.846-847.1707 ◽

2013 ◽

Vol 846-847 ◽

pp. 1707-1710

Author(s):

Wei Chen Wu

Keyword(s):

User Authentication ◽

Mutual Authentication ◽

Authentication Scheme ◽

Three Dimensions ◽

Session Key ◽

Remote User Authentication ◽

User Authentication Scheme ◽

Remote System ◽

Multi Server ◽

Remote User

The authors present a new remote user authentication scheme on three dimensions for multi-server environments. The merits include: the scheme can be used in multi-server environments; the system does not need to maintain any verification table; the users who have registered with various servers do not need to remember different login passwords for each; the ability to choose passwords freely and change them offline; mutual authentication is provided between the user and the remote system; a session key agreed by the user and the remote system is generated in every session. Furthermore, we propose a specific Access Right (AR). The AR means the legal users have different level of authorization based on which server in the multi-server environment in used.

Download Full-text

A Time-Bound Ticket-Based Mutual Authentication Scheme for Cloud Computing

International Journal of Computers Communications & Control ◽

10.15837/ijccc.2011.2.2170 ◽

2011 ◽

Vol 6 (2) ◽

pp. 227 ◽

Cited By ~ 24

Author(s):

Zhuo Hao ◽

Sheng Zhong ◽

Nenghai Yu

Keyword(s):

Cloud Computing ◽

Mutual Authentication ◽

Security Analysis ◽

Data Integrity ◽

Authentication Scheme ◽

Replay Attack ◽

Good Efficiency ◽

Password Guessing Attack ◽

Integrity Checking ◽

Guessing Attack

<p>Cloud computing is becoming popular quickly. In cloud computing, people store their important data in the cloud, which makes it important to ensure the data integrity and availability. Remote data integrity checking enables the client to perform data integrity verification without access to the complete file. This service brings convenience to clients, but degrades the server’s performance severely. Proper schemes must be designed to reduce the performance degradation.<br /> In this paper, a time-bound ticket-based mutual authentication scheme is proposed for solving this problem. The proposed authentication scheme achieves mutual authentication between the server and the client. The use of timebound tickets reduces the server’s processing overhead efficiently. The correspondence relationship between the digital ticket and the client’s smart card prevents user masquerade attack effectively. By security analysis, we show that the proposed scheme is resistant to masquerade attack, replay attack and password guessing attack. By performance analysis, we show that the proposed scheme has good efficiency. The proposed scheme is very suitable for cloud computing.</p>

Download Full-text

A Novel Authentication Scheme for Multi-Server Environment of Industrial Internet

CONVERTER ◽

10.17762/converter.105 ◽

2021 ◽

pp. 718-729

Author(s):

Yu Zhang, Guangmin Sun

Keyword(s):

Mutual Authentication ◽

Security Analysis ◽

Performance Comparison ◽

Authentication Scheme ◽

Session Key ◽

Industrial Internet ◽

The Face ◽

And Performance ◽

Value Decomposition ◽

Multi Server

Aiming at the security problems of authentication in multi-server environments, a novel three-factor authentication scheme for multi-server environments of industrial Internet is proposed. After verifying password and face, a temporary session key is established for the user and server. Then the user obtains the permission of application services and accessing resources. In process of verifying password, hash function is used to hide password. The method of verifying face is the face recognition based on singular value decomposition. During the key agreement phase, only four dot multiplication operations based on elliptic curve cryptography is used to realize one-time key for cryptograph transmission and mutual authentication. Through security analysis and performance comparison, the proposed scheme has stronger robustness, higher security, better convenience and less computation cost than other similar schemes, and has high application value for multi-server environments of industrial Internet.

Download Full-text