Node Authentication in Networks Using Zero-Knowledge Proofs

Zero Knowledge ◽

Authentication Schemes ◽

Zero-knowledge proof (ZKP) based authentication protocols provide a smart way to prove an identity of a node without giving away any information about the secret of that identity. There are many advantages as well as disadvantages to using this protocol over other authentication schemes, and challenges to overcome in order to make it practical for general use. This chapter examines the viability of ZKPs for use in authentication protocols in networks. It is concluded that nodes in a network can achieve a desired level of security by trading off key size, interactivity, and other parameters of the authentication protocol. This chapter also provides data analysis that can be useful in determining expected authentication times based on device capabilities. Pseudocode is provided for implementing a graph-based ZKP on small or limited processing devices.

Izvestiya of Saratov University New Series Series Mathematics Mechanics Informatics ◽

Zero-Knowledge Proof Authentication Protocols

10.18500/1816-9791-2019-19-1-114-121 ◽

2019 ◽

Vol 19 (1) ◽

pp. 114-121

Author(s):

S. M. Ratseev ◽

◽

M. A. Rostov ◽

Keyword(s):

Zero Knowledge ◽

A Secure Authentication Infrastructure for Mobile Users

Advances in Security and Payment Methods for Mobile Commerce ◽

10.4018/978-1-59140-345-6.ch004 ◽

2011 ◽

pp. 56-80

Author(s):

Gregor V. Bochmann ◽

Eric Zhen Zhang

Keyword(s):

Electronic Commerce ◽

Authentication Protocol ◽

Security Requirements ◽

Mobile Users ◽

Its Analysis ◽

Trust Relationships ◽

Authentication Schemes ◽

Access Rights ◽

Secure Authentication

The requirements for an authentication infrastructure for electronic commerce are explained by identifying the partners involved in e-commerce transactions and the trust relationships required. Related security requirements are also explained, such as authentication, access rights, payment credentials, anonymity (in certain cases), and privacy and integrity of message exchanges. Then several general authentication schemes and specific protocols are reviewed and their suitability for mobile users is discussed. Finally, an improved authentication protocol is presented which can provide trust relationships for mobile e-commerce users. Its analysis and comparison with other proposed authentication protocols indicate that it is a good candidate for use in the context of mobile e-commerce.

Web Authentication Protocol Using Zero Knowledge Proof

Information Security Journal A Global Perspective ◽

10.1080/19393555.2011.560925 ◽

2011 ◽

Vol 20 (2) ◽

pp. 112-121

Author(s):

U. Thiruvaazhi ◽

R. Divya

Keyword(s):

Authentication Protocol ◽

Zero Knowledge ◽

ZERO KNOWLEDGE PASSWORD AUTHENTICATION PROTOCOL

International Journal of Communication Networks and Security ◽

10.47893/ijcns.2012.1047 ◽

2012 ◽

pp. 30-34

Author(s):

NIVEDITA DATTA

Keyword(s):

Mutual Authentication ◽

Public Key Cryptography ◽

Authentication Protocol ◽

Public Key ◽

Zero Knowledge ◽

Password Authentication ◽

Valuable Data ◽

Authentication Server ◽

Simple Protocol ◽

In many applications, the password is sent as cleartext to the server to be authenticated thus providing the eavesdropper with opportunity to steal valuable data. This paper presents a simple protocol based on zero knowledge proof by which the user can prove to the authentication server that he has the password without having to send the password to the server as either cleartext or in encrypted format. Thus the user can authenticate himself without having to actually reveal the password to the server. Also, another version of this protocol has been proposed which makes use of public key cryptography thus adding one more level of security to the protocol and enabling mutual authentication between the client & server.

A Secure Authentication Infrastructure for Mobile Users

Information Security and Ethics ◽

10.4018/978-1-59904-937-3.ch255 ◽

2008 ◽

pp. 3765-3783

Author(s):

Gregor V. Bochmann ◽

Eric Zhen Zhang

Keyword(s):

Electronic Commerce ◽

Authentication Protocol ◽

Security Requirements ◽

Mobile Users ◽

Its Analysis ◽

Trust Relationships ◽

Authentication Schemes ◽

Access Rights ◽

Secure Authentication

Wireless Authentication Protocol Implementation: Descriptions of a Zero-Knowledge Proof (ZKP) Protocol Implementation for Testing on Ground and Airborne Mobile Networks

10.21236/ada616684 ◽

2015 ◽

Author(s):

Thomas Scatko ◽

Nathaniel Rowe

Keyword(s):

Mobile Networks ◽

Authentication Protocol ◽

Zero Knowledge ◽

Protocol Implementation ◽

Adaptive Group-Based Zero Knowledge Proof-Authentication Protocol in Vehicular Ad Hoc Networks

IEEE Transactions on Intelligent Transportation Systems ◽

10.1109/tits.2019.2899321 ◽

2020 ◽

Vol 21 (2) ◽

pp. 867-881 ◽

Cited By ~ 1

Author(s):

Amar A. Rasheed ◽

Rabi N. Mahapatra ◽

Felix G. Hamza-Lup

Keyword(s):

Ad Hoc Networks ◽

Vehicular Ad Hoc Networks ◽

Ad Hoc ◽

Authentication Protocol ◽

Zero Knowledge ◽

Hoc Networks ◽

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

Zero-Knowledge Proof Based Authentication Over Untrusted Networks

10.35940/ijitee.i6917.079920 ◽

2020 ◽

Vol 9 (9) ◽

pp. 238-241

Keyword(s):

Data Security ◽

User Anonymity ◽

The Other ◽

Cryptographic Protocol ◽

Zero Knowledge ◽

Ip Spoofing ◽

Authentication Schemes ◽

Zero knowledge proof is a powerful cryptographic protocol that is utilized to establish data security whilst ensuring and maintaining user anonymity. ZKP has relatively less complex computational requirements as compared to the other protocols for authentication. Conventional authentication schemes are susceptible to attacks such as MiTM, IP spoofing, DoS, replay and other eavesdropping based attacks, when the data is shared across an untrusted network. This paper shows an approach to ensure authentication of a device over an untrusted network whilst maintaining and safeguarding user credentials, by using the concepts of ZKP protocol.