Papers by Keyword: Mutual Authentication

Abstract: Radio Frequency Identification (RFID) technology is an automated identification technology which is widely used to identify and track all kind of objects. It is well suitable for many fields and is expected to replace barcodes in the near future. However, it is a challenging task to design an authentication protocol because of the limited resource of low-cost RFID tags. Recently, a lightweight RFID authentication protocol presented by Kulseng et al uses Physically Unclonable Functions (PUFs) and Linear Feedback Shift Registers (LFSRs) which are well known lightweight operations. The number of gates which the protocol require can be significantly decreased. Unfortunately, their protocol faces several serious security issues. In this paper, based PUFs and LFSRs, we suggest a secure mutual authentication for low-cost RFID Systems. Security analysis shows that our protocol owns security and privacy.

Abstract: In Recent years, the rapid development of cloud computing promotes the technological innovation. In the meantime, the security of cloud attracts many researchers. In this paper, a security architecture is proposed to provide a trust communication mechanism between entities in the cloud. Based on this security architecture and BFIBE, three security protocols are proposed to implement mutual authentication and key agreement, which can resist man-in-middle attacks and masquerading attacks. Besides, based the three protocols, an effective data sharing method is proposed.

Abstract: The RFID back-end system is the core of the thing of networking technical framework, and it has suffered more security threats. In the face of these security problems in the backend system, this paper design a node bidirectional authentication and key exchange protocol based on certificate and ECDH(SRCE), to guarantee the safety of the RFID backend systems. The analysis result indicates that the protocol obtain smaller key sizes and higher computational efficiency on the performance, furthermore, there are many security properties in which, such as data confidentiality, mutual entity authentication, against known key attack, etc.

Abstract: Due to the strong capacity of computing and storage, more and more hackers choose to attack cloud systems for their own use to obtain illegal benefits. In order to prevent the occurrence of this phenomenon, when a cloud user enters into the cloud system, their identity must be verified to protect the security of cloud platform and the interests of legitimate users. Then, we propose a new ECC dynamic password-based authentication scheme for cloud computing in this paper. The proposed scheme provides mutual authentication and identity management. A user also can change his/her password whenever demanded. Furthermore, the scheme has the resistance to possible attacks in cloud computing.

Abstract: Password authentication scheme using smart cards is an important part of securely accessing the server program. In 2012, Chen et al. proposed a robust smart-card-based remote user password authentication scheme. Recently, Li et al. discovered the scheme of Chen et al. cannot really ensure forward secrecy, and it cannot achieve the goal of efficiency for wrong password login. Then, they proposed an enhanced remote user password authentication scheme based on smart cards. In this paper, we propose a novel authentication scheme by using elliptic curve cryptography. The new scheme can achieve both the user anonymity and the goal of efficiency of incorrect password detection, and can also establish a session key for the subsequent secure communication. Moreover, we show by a detailed analysis that it requires lower computation cost while improving the security of the scheme.

Abstract: This paper proposes scheme can achieve mutual authentication and session key agreement based on multi-factor. It improves the scheme proposed by Chuang et al on protecting from the stolen smart card attack, impersonation attack, server spoofing attack and man-in-the-middle attack, and guaranteeing on the forward security. It solves the problem of weak resistance to attacks in single-factor authentication approaches, by combining the smart card with biometrics and password. It also guarantees the security of mutual identity authentication between users and servers and that of session keys. It consumes more computing resources that the Chuang’s scheme, but it can resist to several known attacks efficiently.

Abstract: Recently, the telecare medical information system, which enables various healthcare delivery services, has been paid more and more attention in countries with aging populations. Using the telecare medical information system, it is possible to bring the advantages of telemedical directly into the patients home. At the same time, it faces some common security threats, thus, only authorized users should be granted the access to this system for the privacy concern. There are many authentication schemes studying protection of user medical information. Unfortunately, these schemes are still vulnerable to some common cyber attacks or has inefficient computational and communication cost. To remedy the weaknesses of these schemes, we propose an enhanced scheme based on elliptic curve cryptography to ensure necessary security and reduce computation load in this paper. By security analysis, we also demonstrate that our scheme is secure and efficient. Therefore, our scheme is suitable for telecare medical information system.

Abstract: Recently, several protocols came into being successively to meet the requirement of efficient operations in low-power roaming environment with the fast advance of communication technologies. Unfortunately, these protocols are not a suitable candidate for special requirements in automobile roaming system such as low consumption, high performance and convenience since these protocols pay more attention to a common network environment. In this paper, we address the problem of mutual authentication and key agreement with user anonymity for an automobile roaming system. More specifically, we propose the protocol employs elliptic curve cryptography system to enhance operational efficiency and take into account common attacks and give corresponding resist measures to ensure security. The analysis shows our scheme is user friendly and secure.

Abstract: In order to solve the RFID authentication protocols, a new mutual authentication protocol based on Hash for the lightweight RFID system is proposed in this paper. Compared with several RFID authentication protocols with the similar structure, the proposed protocol can effectively solve the privacy and security of the RFID system, and it has significant performance advantages. It greatly reduces the amount storage and computation of tags.

Abstract: RFID technology plays an important role in our daily life nowadays. It widely used in the automatic identification system by embedding the tag into product. However, some security risks presented due to radio frequency signal channel between the tag and the reader which may lead privacy disclosure for the user. Various solutions are proposed to resole to security issues in RFID system, but there still presented some limitations. A security elliptic curve cryptography based authentication protocol is presented in this paper to preserve the privacy of the RFID system. The proposed protocol provides mutual authentication and a security communication channel between the tag and the reader. By the security analysis, our protocol can resist common passive and active attack; moreover, it also can provide forward security.