article

An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards

Authors:

Yongping Xiong,

Wendong WangAuthors Info & Claims

Journal of Network and Computer Applications, Volume 35, Issue 2

Pages 763 - 769

https://doi.org/10.1016/j.jnca.2011.11.009

Published: 01 March 2012 Publication History

Abstract

Generally, if a user wants to use numerous different network services, he/she must register himself/herself to every service providing server. It is extremely hard for users to remember these different identities and passwords. In order to resolve this problem, various multi-server authentication protocols have been proposed. Recently, Sood et al. analyzed Hsiang and Shih's multi-server authentication protocol and proposed an improved dynamic identity based authentication protocol for multi-server architecture. They claimed that their protocol provides user's anonymity, mutual authentication, the session key agreement and can resist several kinds of attacks. However, through careful analysis, we find that Sood et al.'s protocol is still vulnerable to leak-of-verifier attack, stolen smart card attack and impersonation attack. Besides, since there is no way for the control server CS to know the real identity of the user, the authentication and session key agreement phase of Sood et al.'s protocol is incorrect. We propose an efficient and security dynamic identity based authentication protocol for multi-server architecture that removes the aforementioned weaknesses. The proposed protocol is extremely suitable for use in distributed multi-server architecture since it provides user's anonymity, mutual authentication, efficient, and security.

References

[1]

An efficient and secure multi-server password authentication scheme using smart cards. In: Proceedings of the third international conference on cyberworlds November 2004, pp. 417-422.

Digital Library

[2]

A public key cryptosystem and a signature scheme based on discrete logarithms. IEEE Transactions on Information Theory. v32 i4. 469-472.

Digital Library

[3]

Robust remote authentication scheme with smart cards. Computers & Security. v24 i8. 619-628.

[4]

Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment. Computer Standards & Interfaces. v31 i6. 1118-1123.

Digital Library

[5]

Dos-resistant ID-based password authentication scheme using smart cards. Journal of Systems and Software. v83 i1. 163-172.

Digital Library

[6]

A new remote user authentication scheme using smart cards. IEEE Transactions on Consumer Electronics. v46 i1. 28-30.

Digital Library

[7]

Efficient multi-server password authenticated key agreement using smart cards. IEEE Transaction on Consumer Electronics. v50 i1. 251-255.

Digital Library

[8]

Password authentication with insecure communication. Communications of the ACM. v24 i11. 770-772.

Digital Library

[9]

Efficient nonce-based remote user authentication scheme using smart cards. Applied Mathematics and Computation. v167 i1. 355-361.

[10]

An efficient biometrics-based remote user authentication scheme using smart cards. Journal of Network and Computer Applications. v33 i1. 1-5.

Digital Library

[11]

A remote password authentication scheme for multi-server architecture using neural networks. IEEE Transactions on Neural Networks. v12 i6. 1498-1504.

Digital Library

[12]

Cryptanalysis and improvement of a biometric-based remote authentication scheme using smart cards. Journal of Network and Computer Applications. v34 i1. 73-79.

Digital Library

[13]

A secure dynamic ID based remote user authentication scheme for multi-server environment. Computer Standards & Interfaces. v31 i1. 24-29.

Digital Library

[14]

A new mutual authentication scheme based on nonce and smart cards. Computer Communications. v31 i10. 2205-2209.

Digital Library

[15]

Advanced smart card based password authentication protocol. Computer Standards & Interfaces. v32 i5-6. 321-325.

Digital Library

[16]

A secure dynamic identity based authentication protocol for multi-server architecture. Journal of Network and Computer Applications. v34 i2. 609-618.

Digital Library

[17]

Efficient multi-server authentication scheme based on one-way hash function without verification table. Computers & Security. v27 i3-4. 115-121.

[18]

A smart card-based remote scheme for password authentication in multi-server Internet services. Computer Standards & Interfaces. v27 i1. 39-51.

Cited By

Hai TAksoy MIwendi CIbeke EMohan S(2024)CIA Security for Internet of Vehicles and Blockchain-AI IntegrationJournal of Grid Computing10.1007/s10723-024-09757-322:2Online publication date: 2-Apr-2024
https://dl.acm.org/doi/10.1007/s10723-024-09757-3
Fei YZhu HYin J(2023)FVF-AKA: A Formal Verification Framework of AKA Protocols for Multi-server IoTFormal Aspects of Computing10.1145/359973135:4(1-36)Online publication date: 25-May-2023
https://dl.acm.org/doi/10.1145/3599731
Xie XWu BHou B(2023)BEPHAPJournal of Systems Architecture: the EUROMICRO Journal10.1016/j.sysarc.2023.102869138:COnline publication date: 1-May-2023
https://dl.acm.org/doi/10.1016/j.sysarc.2023.102869
Show More Cited By

An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards
1. Security and privacy
  1. Security services

Recommendations

A secure dynamic identity based authentication protocol for multi-server architecture

Most of the password based authentication protocols rely on single authentication server for the user's authentication. User's verification information stored on the single server is a main point of susceptibility and remains an attractive target for ...
Cryptanalysis of a Secure Dynamic Identity Based Authentication Protocol for Multi-server Architecture
IS3C '12: Proceedings of the 2012 International Symposium on Computer, Consumer and Control

The dynamic identity based authentication was a worth researching issue in the mutual authentication. In 2011, Sood et al. proposed a secure dynamic identity based authentication protocol for multi-server architecture to improve Hsiang and Shih's ...
An Enhancement of a Smart Card Authentication Scheme for Multi-server Architecture

User authentication is an important security issue for network based services. Multi-server authentication scheme resolves the repeated registration problem of single-server authentication scenario where the user has to register at different servers to ...

Comments

Information & Contributors

Information

Published In

cover image Journal of Network and Computer Applications

Journal of Network and Computer Applications Volume 35, Issue 2

March, 2012

349 pages

ISSN:1084-8045

Issue’s Table of Contents

Copyright © Elsevier Ltd © 2011.

Publisher

Academic Press Ltd.

United Kingdom

Publication History

Published: 01 March 2012

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

98
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 03 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

Hai TAksoy MIwendi CIbeke EMohan S(2024)CIA Security for Internet of Vehicles and Blockchain-AI IntegrationJournal of Grid Computing10.1007/s10723-024-09757-322:2Online publication date: 2-Apr-2024
https://dl.acm.org/doi/10.1007/s10723-024-09757-3
Fei YZhu HYin J(2023)FVF-AKA: A Formal Verification Framework of AKA Protocols for Multi-server IoTFormal Aspects of Computing10.1145/359973135:4(1-36)Online publication date: 25-May-2023
https://dl.acm.org/doi/10.1145/3599731
Xie XWu BHou B(2023)BEPHAPJournal of Systems Architecture: the EUROMICRO Journal10.1016/j.sysarc.2023.102869138:COnline publication date: 1-May-2023
https://dl.acm.org/doi/10.1016/j.sysarc.2023.102869
Servati MSafkhani M(2023)ECCbASPervasive and Mobile Computing10.1016/j.pmcj.2023.10175390:COnline publication date: 1-Mar-2023
https://dl.acm.org/doi/10.1016/j.pmcj.2023.101753
Wu FLi X(2023)Cloud‐assisted authentication scheme supporting dynamic pseudo‐identity for autonomous vehiclesTransactions on Emerging Telecommunications Technologies10.1002/ett.474534:5Online publication date: 5-May-2023
https://dl.acm.org/doi/10.1002/ett.4745
Ghafouri Mirsaraei ABarati ABarati H(2022)A secure three-factor authentication scheme for IoT environmentsJournal of Parallel and Distributed Computing10.1016/j.jpdc.2022.06.011169:C(87-105)Online publication date: 1-Nov-2022
https://dl.acm.org/doi/10.1016/j.jpdc.2022.06.011
He JLiu XWu FChen CLi X(2022)A mutual authentication scheme in VANET providing vehicular anonymity and trackingTelecommunications Systems10.1007/s11235-022-00911-481:2(175-190)Online publication date: 1-Oct-2022
https://dl.acm.org/doi/10.1007/s11235-022-00911-4
Singh ANayyar AGarg A(2022)A secure elliptic curve based anonymous authentication and key establishment mechanism for IoT and cloudMultimedia Tools and Applications10.1007/s11042-022-14140-z82:15(22525-22576)Online publication date: 23-Nov-2022
https://dl.acm.org/doi/10.1007/s11042-022-14140-z
Zhao OLiu XLi XSingh PWu F(2022)Privacy‐preserving data aggregation scheme for edge computing supported vehicular ad hoc networksTransactions on Emerging Telecommunications Technologies10.1002/ett.395233:5Online publication date: 27-May-2022
https://dl.acm.org/doi/10.1002/ett.3952
Pathak VSingh KThampi SEl-Alfy ETrajkovic L(2021)Secure and efficient WBANs algorithm with authentication mechanismJournal of Intelligent & Fuzzy Systems: Applications in Engineering and Technology10.3233/JIFS-18987341:5(5525-5534)Online publication date: 1-Jan-2021
https://dl.acm.org/doi/10.3233/JIFS-189873
Show More Cited By

View Options

View options

Media

Figures

Other

Tables

View Issue’s Table of Contents