A Two-Factor RSA-Based Robust Authentication System for Multiserver Environments-Reference-Cited by-同舟云学术

A Two-Factor RSA-Based Robust Authentication System for Multiserver Environments

Published:2017 Issue: Volume:2017 Page:1-15
ISSN:1939-0114
Container-title:Security and Communication Networks
language:en
Short-container-title:Security and Communication Networks

Author:

Amin Ruhul¹,Islam SK Hafizul²^ORCID,Khan Muhammad Khurram³,Karati Arijit⁴,Giri Debasis⁵,Kumari Saru⁶^ORCID

Affiliation:

1. Computer Science and Engineering, Thapar University, Patiala, Punjab 147004, India

2. Computer Science and Engineering, Indian Institute of Information Technology Kalyani, West Bengal 741235, India

3. Center of Excellence in Information Assurance, King Saud University, Riyadh 11451, Saudi Arabia

4. Computer Science and Engineering, NIIT University, Neemrana, Rajasthan 301705, India

5. Computer Science and Engineering, Haldia Institute of Technology, Haldia, West Bengal 721657, India

6. Department of Mathematics, Chaudhary Charan Singh University, Meerut, Uttar Pradesh 250004, India

Abstract

The concept of two-factor multiserver authentication protocol was developed to avoid multiple number of registrations using multiple smart-cards and passwords. Recently, a variety of two-factor multiserver authentication protocols have been developed. It is observed that the existing RSA-based multiserver authentication protocols are not suitable in terms of computation complexities and security attacks. To provide lower complexities and security resilience against known attacks, this article proposes a two-factor (password and smart-card) user authentication protocol with the RSA cryptosystem for multiserver environments. The comprehensive security discussion proved that the known security attacks are eliminated in our protocol. Besides, our protocol supports session key agreement and mutual authentication between the application server and the user. We analyze the proof of correctness of the mutual authentication and freshness of session key using the BAN logic model. The experimental outcomes obtained through simulation of the Automated Validation of Internet Security Protocols and Applications (AVISPA) S/W show that our protocol is secured. We consider the computation, communication, and storage costs and the comparative explanations show that our protocol is flexible and efficient compared with protocols. In addition, our protocol offers security resilience against known attacks and provides lower computation complexities than existing protocols. Additionally, the protocol offers password change facility to the authorized user.

Funder

King Saud University

Publisher

Hindawi Limited

Subject

Computer Networks and Communications,Information Systems

Link

http://downloads.hindawi.com/journals/scn/2017/5989151.pdf

Reference33 articles.

1. Cryptanalysis and an Efficient Secure ID-based Remote User Authentication using Smart Card

2. An Improvement of Wang. et. al. 's Remote User Authentication Scheme against Smart Card Security Breach

3. Cryptanalysis of an Improved Smartcard-based Remote Password Authentication Scheme

Cited by 37 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. A provably secure multi-server authentication scheme based on Chebyshev chaotic map;Journal of Information Security and Applications;2024-06

2. GPOD: An Efficient and Secure Graphical Password Authentication System by Fast Object Detection;Multimedia Tools and Applications;2023-12-12

3. Smart Card Based Remote User Authentication Scheme in Multi-server Environment Using Chebyshev Chaotic Map;Wireless Personal Communications;2023-12

4. Lightweight and privacy-preserving multi-server authentication scheme based on PUF and biometrics;Journal of Intelligent & Fuzzy Systems;2023-07-02

5. Forestry 4.0 – An Overview of Authentication in the Internet of Things;2023 11th International Conference on Internet of Everything, Microwave Engineering, Communication and Networks (IEMECON);2023-02-10