An enhanced and provably secure multi-factor authentication scheme for Internet-of-Multimedia-Things environments. (December 2020)
- Record Type:
- Journal Article
- Title:
- An enhanced and provably secure multi-factor authentication scheme for Internet-of-Multimedia-Things environments. (December 2020)
- Main Title:
- An enhanced and provably secure multi-factor authentication scheme for Internet-of-Multimedia-Things environments
- Authors:
- Mahmood, Khalid
Akram, Waseem
Shafiq, Akasha
Altaf, Izwa
Lodhi, Muhammad Ali
Islam, SK Hafizul - Abstract:
- Highlights: We have cryptanalyzed Dhillon and Karla's authentication protocol for IoMT environments and found that it is insecure against many attacks. We have designed a more secure remote user authentication protocol using elliptic curve for IoMT system. The proposed protocol is provably secure in the Random Oracle Model. The proposed protocol provides resistance against significant security attacks. The performance analysis proved that proposed protocol is more efficient than other competing protocols. Graphical abstract: Abstract: The Internet-of-Multimedia-Things (IoMT) opens new doors towards various contingencies to improve applications and services through efficient multimedia data usage. The ever-enlarging content of multimedia information in an IoT system makes it a critical security concern. Whenever users access services or information through a public channel, he/she is exposed to numerous security threats. Many security schemes have been introduced for IoMT environments to tackle the above-said concerns. Still, most of them do not fulfill all the security requirements of the IoMT systems. Recently, Dhillon and Karla have presented an authentication scheme for the IoMT environment. They have declared that the scheme is robust and can resist significant security attacks. However, we noticed that Dhillon and Kalra's scheme is susceptible to user masquerading attacks and a stolen verifier attack. Besides, their scheme also violates the anonymity and traceability ofHighlights: We have cryptanalyzed Dhillon and Karla's authentication protocol for IoMT environments and found that it is insecure against many attacks. We have designed a more secure remote user authentication protocol using elliptic curve for IoMT system. The proposed protocol is provably secure in the Random Oracle Model. The proposed protocol provides resistance against significant security attacks. The performance analysis proved that proposed protocol is more efficient than other competing protocols. Graphical abstract: Abstract: The Internet-of-Multimedia-Things (IoMT) opens new doors towards various contingencies to improve applications and services through efficient multimedia data usage. The ever-enlarging content of multimedia information in an IoT system makes it a critical security concern. Whenever users access services or information through a public channel, he/she is exposed to numerous security threats. Many security schemes have been introduced for IoMT environments to tackle the above-said concerns. Still, most of them do not fulfill all the security requirements of the IoMT systems. Recently, Dhillon and Karla have presented an authentication scheme for the IoMT environment. They have declared that the scheme is robust and can resist significant security attacks. However, we noticed that Dhillon and Kalra's scheme is susceptible to user masquerading attacks and a stolen verifier attack. Besides, their scheme also violates the anonymity and traceability of a user. This paper proposes a more secure remote user authentication scheme using the elliptic curve cryptosystem for the IoMT system. We have evaluated our scheme formally through the random oracle model. The informal security description proves that our scheme provides resistance against significant security attacks. Further, the performance analysis reveals that our scheme is more flexible, robust, and efficient than the relevant schemes. … (more)
- Is Part Of:
- Computers & electrical engineering. Volume 88(2020)
- Journal:
- Computers & electrical engineering
- Issue:
- Volume 88(2020)
- Issue Display:
- Volume 88, Issue 2020 (2020)
- Year:
- 2020
- Volume:
- 88
- Issue:
- 2020
- Issue Sort Value:
- 2020-0088-2020-0000
- Page Start:
- Page End:
- Publication Date:
- 2020-12
- Subjects:
- Anonymity -- Authentication -- Internet-of-Multimedia-Things -- Provable security -- Random oracle model -- Elliptic curve
Computer engineering -- Periodicals
Electrical engineering -- Periodicals
Electrical engineering -- Data processing -- Periodicals
Ordinateurs -- Conception et construction -- Périodiques
Électrotechnique -- Périodiques
Électrotechnique -- Informatique -- Périodiques
Computer engineering
Electrical engineering
Electrical engineering -- Data processing
Periodicals
Electronic journals
621.302854 - Journal URLs:
- http://www.sciencedirect.com/science/journal/00457906/ ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.compeleceng.2020.106888 ↗
- Languages:
- English
- ISSNs:
- 0045-7906
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.680000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 23868.xml