An efficient and secure 3‐factor user‐authentication protocol for multiserver environment
Summary In the last decade, the number of web‐based applications is increasing rapidly, which leads to high demand for user authentication protocol for multiserver environment. Many user‐authentication protocols have been proposed for different applications. Unfortunately, most of them either have s...
Gespeichert in:
| Veröffentlicht in: | International journal of communication systems 2018-09, Vol.31 (14), p.n/a |
|---|---|
| Hauptverfasser: | , , , |
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | n/a |
|---|---|
| container_issue | 14 |
| container_start_page | |
| container_title | International journal of communication systems |
| container_volume | 31 |
| creator | Luo, Min Sun, Aiying He, Debiao Li, Xiaohong |
| description | Summary
In the last decade, the number of web‐based applications is increasing rapidly, which leads to high demand for user authentication protocol for multiserver environment. Many user‐authentication protocols have been proposed for different applications. Unfortunately, most of them either have some security weaknesses or suffer from unsatisfactory performance. Recently, Ali and Pal proposed a three‐factor user‐authentication protocol for multiserver environment. They claimed that their protocol can provide mutual authentication and is secure against many kinds of attacks. However, we find that Ali and Pal's protocol cannot provide user anonymity and is vulnerable to 4 kinds of attacks. To enhance security, we propose a new user‐authentication protocol for multiserver environment. Then, we provide a formal security analysis and a security discussion, which indicate our protocol is provably secure and can withstand various attacks. Besides, we present a performance analysis to show that our protocol is efficient and practical for real industrial environment.
We showed that a user authentication protocol for multi‐server environment is vulnerable to 4 kinds of attacks and cannot provide user anonymity. We provide a secure and efficient user authentication protocol which is provably secure and can withstand various attacks. We also present a performance analysis which show that our protocol can perform efficiently. |
| doi_str_mv | 10.1002/dac.3734 |
| format | Article |
| fullrecord | <record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_journals_2088501422</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>2088501422</sourcerecordid><originalsourceid>FETCH-LOGICAL-c2934-85c918ff98198fdf2c42b69532834228c3a9f4cbed63b016e9149109eeeec1843</originalsourceid><addsrcrecordid>eNp10MtOAyEUBmBiNLFWEx-BxI2bqRxgprBs6jVp4kaXhlAGIs10qMDUuPMRfEafRGrdygZIvpzLj9A5kAkQQq9abSZsyvgBGgGRsgJgcLh7T3lVsxqO0UlKK0KIoE09Qi-zHlvnvPG2z1j3LU7WDNFi9v355bTJIeIh2Vh-esivBXmjsw893sSQgwkddoWshy77wrY2YttvfQz9uthTdOR0l-zZ3z1Gz7c3T_P7avF49zCfLSpDJeOVqI0E4ZwUIIVrHTWcLhtZMyoYp1QYpqXjZmnbhi0JNFYCl2U7W44BwdkYXezrlqHeBpuyWoUh9qWlokSImkApU9TlXpkYUorWqU30ax0_FBC1C0-V8NQuvEKrPX33nf3416nr2fzX_wDsInKA</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2088501422</pqid></control><display><type>article</type><title>An efficient and secure 3‐factor user‐authentication protocol for multiserver environment</title><source>Wiley Online Library Journals Frontfile Complete</source><creator>Luo, Min ; Sun, Aiying ; He, Debiao ; Li, Xiaohong</creator><creatorcontrib>Luo, Min ; Sun, Aiying ; He, Debiao ; Li, Xiaohong</creatorcontrib><description>Summary
In the last decade, the number of web‐based applications is increasing rapidly, which leads to high demand for user authentication protocol for multiserver environment. Many user‐authentication protocols have been proposed for different applications. Unfortunately, most of them either have some security weaknesses or suffer from unsatisfactory performance. Recently, Ali and Pal proposed a three‐factor user‐authentication protocol for multiserver environment. They claimed that their protocol can provide mutual authentication and is secure against many kinds of attacks. However, we find that Ali and Pal's protocol cannot provide user anonymity and is vulnerable to 4 kinds of attacks. To enhance security, we propose a new user‐authentication protocol for multiserver environment. Then, we provide a formal security analysis and a security discussion, which indicate our protocol is provably secure and can withstand various attacks. Besides, we present a performance analysis to show that our protocol is efficient and practical for real industrial environment.
We showed that a user authentication protocol for multi‐server environment is vulnerable to 4 kinds of attacks and cannot provide user anonymity. We provide a secure and efficient user authentication protocol which is provably secure and can withstand various attacks. We also present a performance analysis which show that our protocol can perform efficiently.</description><identifier>ISSN: 1074-5351</identifier><identifier>EISSN: 1099-1131</identifier><identifier>DOI: 10.1002/dac.3734</identifier><language>eng</language><publisher>Chichester: Wiley Subscription Services, Inc</publisher><subject>biometrics ; Ellipse Curve Cryptography (ECC) ; multiserver ; Security ; user authentication</subject><ispartof>International journal of communication systems, 2018-09, Vol.31 (14), p.n/a</ispartof><rights>2018 John Wiley & Sons, Ltd.</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c2934-85c918ff98198fdf2c42b69532834228c3a9f4cbed63b016e9149109eeeec1843</citedby><cites>FETCH-LOGICAL-c2934-85c918ff98198fdf2c42b69532834228c3a9f4cbed63b016e9149109eeeec1843</cites><orcidid>0000-0002-2446-7436</orcidid></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktopdf>$$Uhttps://onlinelibrary.wiley.com/doi/pdf/10.1002%2Fdac.3734$$EPDF$$P50$$Gwiley$$H</linktopdf><linktohtml>$$Uhttps://onlinelibrary.wiley.com/doi/full/10.1002%2Fdac.3734$$EHTML$$P50$$Gwiley$$H</linktohtml><link.rule.ids>314,776,780,1411,27901,27902,45550,45551</link.rule.ids></links><search><creatorcontrib>Luo, Min</creatorcontrib><creatorcontrib>Sun, Aiying</creatorcontrib><creatorcontrib>He, Debiao</creatorcontrib><creatorcontrib>Li, Xiaohong</creatorcontrib><title>An efficient and secure 3‐factor user‐authentication protocol for multiserver environment</title><title>International journal of communication systems</title><description>Summary
In the last decade, the number of web‐based applications is increasing rapidly, which leads to high demand for user authentication protocol for multiserver environment. Many user‐authentication protocols have been proposed for different applications. Unfortunately, most of them either have some security weaknesses or suffer from unsatisfactory performance. Recently, Ali and Pal proposed a three‐factor user‐authentication protocol for multiserver environment. They claimed that their protocol can provide mutual authentication and is secure against many kinds of attacks. However, we find that Ali and Pal's protocol cannot provide user anonymity and is vulnerable to 4 kinds of attacks. To enhance security, we propose a new user‐authentication protocol for multiserver environment. Then, we provide a formal security analysis and a security discussion, which indicate our protocol is provably secure and can withstand various attacks. Besides, we present a performance analysis to show that our protocol is efficient and practical for real industrial environment.
We showed that a user authentication protocol for multi‐server environment is vulnerable to 4 kinds of attacks and cannot provide user anonymity. We provide a secure and efficient user authentication protocol which is provably secure and can withstand various attacks. We also present a performance analysis which show that our protocol can perform efficiently.</description><subject>biometrics</subject><subject>Ellipse Curve Cryptography (ECC)</subject><subject>multiserver</subject><subject>Security</subject><subject>user authentication</subject><issn>1074-5351</issn><issn>1099-1131</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2018</creationdate><recordtype>article</recordtype><recordid>eNp10MtOAyEUBmBiNLFWEx-BxI2bqRxgprBs6jVp4kaXhlAGIs10qMDUuPMRfEafRGrdygZIvpzLj9A5kAkQQq9abSZsyvgBGgGRsgJgcLh7T3lVsxqO0UlKK0KIoE09Qi-zHlvnvPG2z1j3LU7WDNFi9v355bTJIeIh2Vh-esivBXmjsw893sSQgwkddoWshy77wrY2YttvfQz9uthTdOR0l-zZ3z1Gz7c3T_P7avF49zCfLSpDJeOVqI0E4ZwUIIVrHTWcLhtZMyoYp1QYpqXjZmnbhi0JNFYCl2U7W44BwdkYXezrlqHeBpuyWoUh9qWlokSImkApU9TlXpkYUorWqU30ax0_FBC1C0-V8NQuvEKrPX33nf3416nr2fzX_wDsInKA</recordid><startdate>20180925</startdate><enddate>20180925</enddate><creator>Luo, Min</creator><creator>Sun, Aiying</creator><creator>He, Debiao</creator><creator>Li, Xiaohong</creator><general>Wiley Subscription Services, Inc</general><scope>AAYXX</scope><scope>CITATION</scope><scope>7SP</scope><scope>8FD</scope><scope>JQ2</scope><scope>L7M</scope><orcidid>https://orcid.org/0000-0002-2446-7436</orcidid></search><sort><creationdate>20180925</creationdate><title>An efficient and secure 3‐factor user‐authentication protocol for multiserver environment</title><author>Luo, Min ; Sun, Aiying ; He, Debiao ; Li, Xiaohong</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c2934-85c918ff98198fdf2c42b69532834228c3a9f4cbed63b016e9149109eeeec1843</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2018</creationdate><topic>biometrics</topic><topic>Ellipse Curve Cryptography (ECC)</topic><topic>multiserver</topic><topic>Security</topic><topic>user authentication</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Luo, Min</creatorcontrib><creatorcontrib>Sun, Aiying</creatorcontrib><creatorcontrib>He, Debiao</creatorcontrib><creatorcontrib>Li, Xiaohong</creatorcontrib><collection>CrossRef</collection><collection>Electronics & Communications Abstracts</collection><collection>Technology Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><jtitle>International journal of communication systems</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Luo, Min</au><au>Sun, Aiying</au><au>He, Debiao</au><au>Li, Xiaohong</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>An efficient and secure 3‐factor user‐authentication protocol for multiserver environment</atitle><jtitle>International journal of communication systems</jtitle><date>2018-09-25</date><risdate>2018</risdate><volume>31</volume><issue>14</issue><epage>n/a</epage><issn>1074-5351</issn><eissn>1099-1131</eissn><abstract>Summary
In the last decade, the number of web‐based applications is increasing rapidly, which leads to high demand for user authentication protocol for multiserver environment. Many user‐authentication protocols have been proposed for different applications. Unfortunately, most of them either have some security weaknesses or suffer from unsatisfactory performance. Recently, Ali and Pal proposed a three‐factor user‐authentication protocol for multiserver environment. They claimed that their protocol can provide mutual authentication and is secure against many kinds of attacks. However, we find that Ali and Pal's protocol cannot provide user anonymity and is vulnerable to 4 kinds of attacks. To enhance security, we propose a new user‐authentication protocol for multiserver environment. Then, we provide a formal security analysis and a security discussion, which indicate our protocol is provably secure and can withstand various attacks. Besides, we present a performance analysis to show that our protocol is efficient and practical for real industrial environment.
We showed that a user authentication protocol for multi‐server environment is vulnerable to 4 kinds of attacks and cannot provide user anonymity. We provide a secure and efficient user authentication protocol which is provably secure and can withstand various attacks. We also present a performance analysis which show that our protocol can perform efficiently.</abstract><cop>Chichester</cop><pub>Wiley Subscription Services, Inc</pub><doi>10.1002/dac.3734</doi><tpages>19</tpages><orcidid>https://orcid.org/0000-0002-2446-7436</orcidid></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 1074-5351 |
| ispartof | International journal of communication systems, 2018-09, Vol.31 (14), p.n/a |
| issn | 1074-5351 1099-1131 |
| language | eng |
| recordid | cdi_proquest_journals_2088501422 |
| source | Wiley Online Library Journals Frontfile Complete |
| subjects | biometrics Ellipse Curve Cryptography (ECC) multiserver Security user authentication |
| title | An efficient and secure 3‐factor user‐authentication protocol for multiserver environment |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-03T18%3A40%3A25IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=An%20efficient%20and%20secure%203%E2%80%90factor%20user%E2%80%90authentication%20protocol%20for%20multiserver%20environment&rft.jtitle=International%20journal%20of%20communication%20systems&rft.au=Luo,%20Min&rft.date=2018-09-25&rft.volume=31&rft.issue=14&rft.epage=n/a&rft.issn=1074-5351&rft.eissn=1099-1131&rft_id=info:doi/10.1002/dac.3734&rft_dat=%3Cproquest_cross%3E2088501422%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2088501422&rft_id=info:pmid/&rfr_iscdi=true |