• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

一种基于椭圆曲线密码学的多服务器架构中带有密钥协商协议的增强型生物特征认证方法。

An Enhanced Biometric Based Authentication with Key-Agreement Protocol for Multi-Server Architecture Based on Elliptic Curve Cryptography.

作者信息

Reddy Alavalapati Goutham, Das Ashok Kumar, Odelu Vanga, Yoo Kee-Young

机构信息

School of Computer Science and Engineering, Kyungpook National University, Daegu, Korea.

Center for Security, Theory and Algorithmic Research, International Institute of Information Technology, Hyderabad, India.

出版信息

PLoS One. 2016 May 10;11(5):e0154308. doi: 10.1371/journal.pone.0154308. eCollection 2016.

DOI:10.1371/journal.pone.0154308
PMID:27163786
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC4862638/
Abstract

Biometric based authentication protocols for multi-server architectures have gained momentum in recent times due to advancements in wireless technologies and associated constraints. Lu et al. recently proposed a robust biometric based authentication with key agreement protocol for a multi-server environment using smart cards. They claimed that their protocol is efficient and resistant to prominent security attacks. The careful investigation of this paper proves that Lu et al.'s protocol does not provide user anonymity, perfect forward secrecy and is susceptible to server and user impersonation attacks, man-in-middle attacks and clock synchronization problems. In addition, this paper proposes an enhanced biometric based authentication with key-agreement protocol for multi-server architecture based on elliptic curve cryptography using smartcards. We proved that the proposed protocol achieves mutual authentication using Burrows-Abadi-Needham (BAN) logic. The formal security of the proposed protocol is verified using the AVISPA (Automated Validation of Internet Security Protocols and Applications) tool to show that our protocol can withstand active and passive attacks. The formal and informal security analyses and performance analysis demonstrates that the proposed protocol is robust and efficient compared to Lu et al.'s protocol and existing similar protocols.

摘要

近年来,由于无线技术的进步及相关限制,用于多服务器架构的基于生物特征的认证协议得到了广泛应用。Lu等人最近提出了一种使用智能卡的针对多服务器环境的基于生物特征的健壮认证与密钥协商协议。他们声称他们的协议高效且能抵御常见的安全攻击。本文的仔细研究证明,Lu等人的协议不能提供用户匿名性、完美前向保密性,并且容易受到服务器和用户伪装攻击、中间人攻击以及时钟同步问题的影响。此外,本文提出了一种基于椭圆曲线密码学并使用智能卡的针对多服务器架构的增强型基于生物特征的认证与密钥协商协议。我们使用Burrows-Abadi-Needham(BAN)逻辑证明了所提出的协议实现了相互认证。使用AVISPA(互联网安全协议和应用自动验证)工具验证了所提出协议的形式安全性,以表明我们的协议能够抵御主动和被动攻击。形式和非形式安全分析以及性能分析表明,与Lu等人的协议及现有类似协议相比,所提出的协议更加健壮和高效。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/370d774d7299/pone.0154308.g010.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/d498d643efbe/pone.0154308.g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/1c4298dea842/pone.0154308.g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/70f30e82a159/pone.0154308.g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/077e2622b1f0/pone.0154308.g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/17e08df599b2/pone.0154308.g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/e3dbd61c6ce2/pone.0154308.g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/d1f5bbc39cb5/pone.0154308.g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/683e54d67567/pone.0154308.g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/ca8335d99c89/pone.0154308.g009.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/370d774d7299/pone.0154308.g010.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/d498d643efbe/pone.0154308.g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/1c4298dea842/pone.0154308.g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/70f30e82a159/pone.0154308.g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/077e2622b1f0/pone.0154308.g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/17e08df599b2/pone.0154308.g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/e3dbd61c6ce2/pone.0154308.g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/d1f5bbc39cb5/pone.0154308.g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/683e54d67567/pone.0154308.g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/ca8335d99c89/pone.0154308.g009.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/c819/4862638/370d774d7299/pone.0154308.g010.jpg

相似文献

1
An Enhanced Biometric Based Authentication with Key-Agreement Protocol for Multi-Server Architecture Based on Elliptic Curve Cryptography.一种基于椭圆曲线密码学的多服务器架构中带有密钥协商协议的增强型生物特征认证方法。
PLoS One. 2016 May 10;11(5):e0154308. doi: 10.1371/journal.pone.0154308. eCollection 2016.
2
A secure biometrics-based authentication key exchange protocol for multi-server TMIS using ECC.基于椭圆曲线密码的 TMIS 多服务器安全生物认证密钥交换协议
Comput Methods Programs Biomed. 2018 Oct;164:101-109. doi: 10.1016/j.cmpb.2018.07.008. Epub 2018 Jul 18.
3
A robust anonymous biometric-based authenticated key agreement scheme for multi-server environments.一种适用于多服务器环境的基于健壮匿名生物特征的认证密钥协商方案。
PLoS One. 2017 Nov 9;12(11):e0187403. doi: 10.1371/journal.pone.0187403. eCollection 2017.
4
Secure Three-Factor Authentication Protocol for Multi-Gateway IoT Environments.用于多网关物联网环境的安全三因素认证协议
Sensors (Basel). 2019 May 22;19(10):2358. doi: 10.3390/s19102358.
5
Robust Multiple Servers Architecture Based Authentication Scheme Preserving Anonymity.基于健壮多服务器架构的匿名认证方案
Sensors (Basel). 2019 Jul 17;19(14):3144. doi: 10.3390/s19143144.
6
Security enhanced multi-factor biometric authentication scheme using bio-hash function.使用生物哈希函数的增强安全性多因素生物特征认证方案。
PLoS One. 2017 May 1;12(5):e0176250. doi: 10.1371/journal.pone.0176250. eCollection 2017.
7
A Multi-Server Two-Factor Authentication Scheme with Un-Traceability Using Elliptic Curve Cryptography.基于椭圆曲线密码学的使用不可追踪的多服务器双因素认证方案。
Sensors (Basel). 2018 Jul 23;18(7):2394. doi: 10.3390/s18072394.
8
Secure anonymity-preserving password-based user authentication and session key agreement scheme for telecare medicine information systems.用于远程医疗信息系统的基于密码的安全匿名用户认证和会话密钥协商方案。
Comput Methods Programs Biomed. 2016 Oct;135:167-85. doi: 10.1016/j.cmpb.2016.07.028. Epub 2016 Jul 29.
9
A Secure Lightweight Three-Factor Authentication Scheme for IoT in Cloud Computing Environment.一种适用于云计算环境中物联网的安全轻量级三因素认证方案。
Sensors (Basel). 2019 Aug 19;19(16):3598. doi: 10.3390/s19163598.
10
Cryptanalysis and improvement of a biometrics-based authentication and key agreement scheme for multi-server environments.基于生物特征的认证和密钥协商方案在多服务器环境中的密码分析与改进。
PLoS One. 2018 Mar 13;13(3):e0194093. doi: 10.1371/journal.pone.0194093. eCollection 2018.

引用本文的文献

1
Lightweight user authentication scheme for roaming service in GLOMONET with privacy preserving.具有隐私保护的 GLOMONET 中漫游服务的轻量级用户认证方案。
PLoS One. 2021 Feb 26;16(2):e0247441. doi: 10.1371/journal.pone.0247441. eCollection 2021.
2
An efficient dynamic ID-based remote user authentication scheme using self-certified public keys for multi-server environments.一种基于自签名公钥的高效动态 ID 基远程用户认证方案,适用于多服务器环境。
PLoS One. 2018 Oct 9;13(10):e0202657. doi: 10.1371/journal.pone.0202657. eCollection 2018.
3
Cryptanalysis and improvement of a biometrics-based authentication and key agreement scheme for multi-server environments.

本文引用的文献

1
An Efficient and Practical Smart Card Based Anonymity Preserving User Authentication Scheme for TMIS using Elliptic Curve Cryptography.基于椭圆曲线密码学的 TMIS 中高效实用的智能卡匿名保护用户认证方案。
J Med Syst. 2015 Nov;39(11):180. doi: 10.1007/s10916-015-0351-y. Epub 2015 Oct 3.
2
Security Analysis and Improvement of 'a More Secure Anonymous User Authentication Scheme for the Integrated EPR Information System'.《“用于集成电子病历信息系统的更安全匿名用户认证方案”的安全性分析与改进》
PLoS One. 2015 Aug 11;10(8):e0131368. doi: 10.1371/journal.pone.0131368. eCollection 2015.
3
A Secure and Robust User Authenticated Key Agreement Scheme for Hierarchical Multi-medical Server Environment in TMIS.
基于生物特征的认证和密钥协商方案在多服务器环境中的密码分析与改进。
PLoS One. 2018 Mar 13;13(3):e0194093. doi: 10.1371/journal.pone.0194093. eCollection 2018.
4
An improved anonymous authentication scheme for roaming in ubiquitous networks.一种改进的普适网络中漫游的匿名认证方案。
PLoS One. 2018 Mar 5;13(3):e0193366. doi: 10.1371/journal.pone.0193366. eCollection 2018.
5
Parallel point-multiplication architecture using combined group operations for high-speed cryptographic applications.用于高速密码应用的采用组合群运算的并行点乘架构。
PLoS One. 2017 May 1;12(5):e0176214. doi: 10.1371/journal.pone.0176214. eCollection 2017.
TMIS 中分层多医疗服务器环境的安全稳健的用户认证密钥协商方案。
J Med Syst. 2015 Sep;39(9):92. doi: 10.1007/s10916-015-0276-5. Epub 2015 Aug 6.
4
A Secure User Anonymity and Authentication Scheme Using AVISPA for Telecare Medical Information Systems.使用 AVISPA 实现远程医疗信息系统中的安全用户匿名和认证方案。
J Med Syst. 2015 Sep;39(9):89. doi: 10.1007/s10916-015-0265-8. Epub 2015 Aug 5.
5
Robust biometrics based authentication and key agreement scheme for multi-server environments using smart cards.基于智能卡的多服务器环境中健壮的生物特征识别认证与密钥协商方案。
PLoS One. 2015 May 15;10(5):e0126323. doi: 10.1371/journal.pone.0126323. eCollection 2015.
6
Efficient and anonymous two-factor user authentication in wireless sensor networks: achieving user anonymity with lightweight sensor computation.无线传感器网络中高效且匿名的双因素用户认证:通过轻量级传感器计算实现用户匿名性
PLoS One. 2015 Apr 7;10(4):e0116709. doi: 10.1371/journal.pone.0116709. eCollection 2015.
7
Cryptanalysis and improvement of authentication and key agreement protocols for telecare medicine information systems.远程医疗信息系统认证与密钥协商协议的密码分析及改进
J Med Syst. 2014 Oct;38(10):135. doi: 10.1007/s10916-014-0135-9. Epub 2014 Sep 5.