A secure and enhanced elliptic curve cryptography‐based dynamic authentication scheme using smart card. (27th May 2018)
- Record Type:
- Journal Article
- Title:
- A secure and enhanced elliptic curve cryptography‐based dynamic authentication scheme using smart card. (27th May 2018)
- Main Title:
- A secure and enhanced elliptic curve cryptography‐based dynamic authentication scheme using smart card
- Authors:
- R, Madhusudhan
Hegde, Manjunath
Memon, Imran - Abstract:
- Summary: In remote system security, 2‐factor authentication is one of the security approaches and provides fundamental protection to the system. Recently, numerous 2‐factor authentication schemes are proposed. In 2014, Troung et al proposed an enhanced dynamic authentication scheme using smart card mainly to provide anonymity, secure mutual authentication, and session key security. By the analysis of Troung et al's scheme, we observed that Troung et al' s scheme does not provide user anonymity, perfect forward secrecy, server's secret key security and does not allow the user to choose his/her password. We also identified that Troung et al's scheme is vulnerable to replay attack. To fix these security weaknesses, a robust authentication scheme is proposed and analyzed using the formal verification tool for measuring the robustness. From the observation of computational efficiency of the proposed scheme, we conclude that the scheme is more secure and easy to implement practically. Abstract : We reviewed Troung et al's scheme and identified that the scheme is vulnerable to replay attack, does not provide user anonymity, perfect forward secrecy, server's secret key security, and does not allow the user to choose his/her password. To fix these security weaknesses, a robust authentication scheme is proposed and analyzed using the formal verification tool for measuring the robustness. From the security proofs, we conclude that the proposed scheme is secure and practicallySummary: In remote system security, 2‐factor authentication is one of the security approaches and provides fundamental protection to the system. Recently, numerous 2‐factor authentication schemes are proposed. In 2014, Troung et al proposed an enhanced dynamic authentication scheme using smart card mainly to provide anonymity, secure mutual authentication, and session key security. By the analysis of Troung et al's scheme, we observed that Troung et al' s scheme does not provide user anonymity, perfect forward secrecy, server's secret key security and does not allow the user to choose his/her password. We also identified that Troung et al's scheme is vulnerable to replay attack. To fix these security weaknesses, a robust authentication scheme is proposed and analyzed using the formal verification tool for measuring the robustness. From the observation of computational efficiency of the proposed scheme, we conclude that the scheme is more secure and easy to implement practically. Abstract : We reviewed Troung et al's scheme and identified that the scheme is vulnerable to replay attack, does not provide user anonymity, perfect forward secrecy, server's secret key security, and does not allow the user to choose his/her password. To fix these security weaknesses, a robust authentication scheme is proposed and analyzed using the formal verification tool for measuring the robustness. From the security proofs, we conclude that the proposed scheme is secure and practically implementable. … (more)
- Is Part Of:
- International journal of communication systems. Volume 31:Number 11(2018)
- Journal:
- International journal of communication systems
- Issue:
- Volume 31:Number 11(2018)
- Issue Display:
- Volume 31, Issue 11 (2018)
- Year:
- 2018
- Volume:
- 31
- Issue:
- 11
- Issue Sort Value:
- 2018-0031-0011-0000
- Page Start:
- n/a
- Page End:
- n/a
- Publication Date:
- 2018-05-27
- Subjects:
- authentication -- dynamic ID -- network communication -- password -- security protocol -- smart card
Telecommunication systems -- Periodicals
621.382 - Journal URLs:
- http://onlinelibrary.wiley.com/ ↗
- DOI:
- 10.1002/dac.3701 ↗
- Languages:
- English
- ISSNs:
- 1074-5351
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 4542.172515
British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 6918.xml