Efficient Multi-Factor Authenticated Key Exchange Scheme for Mobile Communications

Zhang Rui; Xiao Yuting; Sun Shuzhou; Ma Hui

首页> 外文期刊>IEEE transactions on dependable and secure computing >Efficient Multi-Factor Authenticated Key Exchange Scheme for Mobile Communications

【24h】

Efficient Multi-Factor Authenticated Key Exchange Scheme for Mobile Communications

机译：高效的移动通信多因素认证密钥交换方案

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Authenticated key exchange (AKE) is one of the most important applications in applied cryptography, where a user interacts with a server to set up a session key where pre-registered information (aka. authentication factor), such as a password or biometrics, of the user is stored. While single-factor AKE is widely used in practice, higher security concerns call for multi-factor AKE (MFAKE) schemes, e.g., combining both passwords and biometrics simultaneously. However, in some casually designed schemes, security is even weakened in the sense that leakage of one authentication factor will defeat the whole MFAKE protocol. Furthermore, an inevitable by-product arise that the usability of the protocol often drop greatly. To summarize, the existing multi-factor protocols did not provide enough security and efficiency simultaneously. In this paper, we make one step ahead by proposing a very efficient MFAKE protocol. We define the security model and give the according security analysis. We also implement our protocol on a smartphone and a cloud server. The theoretic comparisons and the experimental results show that our scheme achieves both security and usability.

机译：身份验证密钥交换（AKE）是应用密码学中最重要的应用程序之一，在该应用程序中，用户与服务器进行交互以设置会话密钥，在该会话密钥中，预先注册的信息（即密码或生物识别信息）用户已存储。尽管单因子AKE在实践中被广泛使用，但是出于更高的安全性考虑，需要采用多因子AKE（MFAKE）方案，例如同时结合密码和生物识别技术。但是，在某些随意设计的方案中，从某种意义上讲，一个认证因素的泄漏将破坏整个MFAKE协议，甚至会削弱安全性。此外，不可避免地会产生副产品，该协议的可用性通常会大大下降。总而言之，现有的多因素协议不能同时提供足够的安全性和效率。在本文中，我们通过提出一种非常有效的MFAKE协议向前迈了一步。我们定义安全模型并给出相应的安全分析。我们还在智能手机和云服务器上实施我们的协议。理论上的比较和实验结果表明，该方案实现了安全性和可用性。

著录项

来源
《IEEE transactions on dependable and secure computing》 |2019年第4期|625-634|共10页
作者
Zhang Rui; Xiao Yuting; Sun Shuzhou; Ma Hui;
展开▼
作者单位

Chinese Acad Sci IIE SKLOIS Beijing Peoples R China;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Multi-factor authentication; usability; efficiency; security;

机译：多因素认证;可用性;效率;安全;

相似文献

外文文献
中文文献
专利

1. Provably Secure Mutual Authentication and Key Exchange Scheme for Expeditious Mobile Communication Through Synchronously One-Time Secrets [J] . Tzonelih Hwang, Prosanta Gope Wireless personal communications: An Internaional Journal . 2014,第1期

机译：通过同步一次机密的快速移动通信的安全相互验证和密钥交换方案
2. A security-enhanced authentication with key agreement scheme for wireless mobile communications using elliptic curve cryptosystem [J] . Shen Han, Kumar Neeraj, He Debiao, Journal of supercomputing . 2016,第9期

机译：使用椭圆曲线密码系统的无线移动通信安全性与密钥协商方案的认证
3. A MORE SECURE AND EFFICIENT AUTHENTICATION SCHEME WITH ROAMING SERVICE AND USER ANONYMITY FOR MOBILE COMMUNICATIONS [J] . Li Chun-Ta Engineering Economics . 2012,第1期

机译：带有漫游服务和用户匿名性的移动通信更安全，更有效的认证方案
4. An Efficient Three Party Authenticated Key Exchange for Mobile Communications [C] . Hui-Feng Huang, Yi-Jia Chang, Kuo-Ching Liu International Symposium on Pervasive Systems, Algorithms, and Networks . 2009

机译：用于移动通信的有效三方认证密钥交换
5. Key management: Towards the design of efficient, lightweight schemes for secure group communications in large Mobile Ad Hoc Networks. [D] . Striki, Maria. 2006

机译：密钥管理：旨在设计高效，轻便的方案，以在大型Mobile Ad Hoc网络中进行安全的组通信。
6. A secure heterogeneous mobile authentication and key agreement scheme for e-healthcare cloud systems [O] . Han-Yu Lin -1

机译：电子医疗云系统的安全异构移动身份验证和密钥协商方案
7. Experimental Analysis using Robust Key Exchange Authentication Scheme in Mobile Ad-hoc Environments [O] . Cheol-seung Lee 2016

机译：移动临时环境中鲁棒密钥交换认证方案的实验分析
8. Security Analysis of a Multi-Factor Authenticated Key Exchange Protocol [R] . Hao, F., Clarke, D. 2012

机译：多因素认证密钥交换协议的安全性分析

Efficient Multi-Factor Authenticated Key Exchange Scheme for Mobile Communications

摘要

著录项

相似文献

相关主题

期刊订阅