A Remote User Authentication Scheme with Anonymity for Mobile Devices
With the rapid growth of information technologies, mobile devices have been utilized in a variety of services such as e-commerce. When a remote server provides such e-commerce services to a user, it must verify the legitimacy of the user over an insecure communication channel. Therefore, remote user...
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
SAGE Publishing
2012-04-01
|
| Series: | International Journal of Advanced Robotic Systems |
| Online Access: | https://doi.org/10.5772/50912 |
| id |
doaj-171b36b324554a36b3b0ca27b65ee547 |
|---|---|
| record_format |
Article |
| spelling |
doaj-171b36b324554a36b3b0ca27b65ee5472020-11-25T03:46:03ZengSAGE PublishingInternational Journal of Advanced Robotic Systems1729-88142012-04-01910.5772/5091210.5772_50912A Remote User Authentication Scheme with Anonymity for Mobile DevicesSoobok Shin0Kangseok Kim1Ki-Hyung Kim2Hongjin Yeh3 Graduate school of Information and Communication at Ajou University, Suwon, Korea Department of Knowledge Information Security at Ajou University, Suwon, Korea Department of Information and Computer Engineering at Ajou University, Suwon, Korea Graduate school of Information and Communication at Ajou University, Suwon, KoreaWith the rapid growth of information technologies, mobile devices have been utilized in a variety of services such as e-commerce. When a remote server provides such e-commerce services to a user, it must verify the legitimacy of the user over an insecure communication channel. Therefore, remote user authentication has been widely deployed to verify the legitimacy of remote user login requests using mobile devices like smart cards. In this paper we propose a smart card-based authentication scheme that provides both user anonymity and mutual authentication between a remote server and a user. The proposed authentication scheme is a simple and efficient system applicable to the limited resource and low computing performance of the smart card. The proposed scheme provides not only resilience to potential attacks in the smart card-based authentication scheme, but also secure authentication functions. A smart card performs a simple one-way hash function, the operations of exclusive-or and concatenation in the authentication phase of the proposed scheme. The proposed scheme also provides user anonymity using a dynamic identity and key agreement, and secure password change.https://doi.org/10.5772/50912 |
| collection |
DOAJ |
| language |
English |
| format |
Article |
| sources |
DOAJ |
| author |
Soobok Shin Kangseok Kim Ki-Hyung Kim Hongjin Yeh |
| spellingShingle |
Soobok Shin Kangseok Kim Ki-Hyung Kim Hongjin Yeh A Remote User Authentication Scheme with Anonymity for Mobile Devices International Journal of Advanced Robotic Systems |
| author_facet |
Soobok Shin Kangseok Kim Ki-Hyung Kim Hongjin Yeh |
| author_sort |
Soobok Shin |
| title |
A Remote User Authentication Scheme with Anonymity for Mobile Devices |
| title_short |
A Remote User Authentication Scheme with Anonymity for Mobile Devices |
| title_full |
A Remote User Authentication Scheme with Anonymity for Mobile Devices |
| title_fullStr |
A Remote User Authentication Scheme with Anonymity for Mobile Devices |
| title_full_unstemmed |
A Remote User Authentication Scheme with Anonymity for Mobile Devices |
| title_sort |
remote user authentication scheme with anonymity for mobile devices |
| publisher |
SAGE Publishing |
| series |
International Journal of Advanced Robotic Systems |
| issn |
1729-8814 |
| publishDate |
2012-04-01 |
| description |
With the rapid growth of information technologies, mobile devices have been utilized in a variety of services such as e-commerce. When a remote server provides such e-commerce services to a user, it must verify the legitimacy of the user over an insecure communication channel. Therefore, remote user authentication has been widely deployed to verify the legitimacy of remote user login requests using mobile devices like smart cards. In this paper we propose a smart card-based authentication scheme that provides both user anonymity and mutual authentication between a remote server and a user. The proposed authentication scheme is a simple and efficient system applicable to the limited resource and low computing performance of the smart card. The proposed scheme provides not only resilience to potential attacks in the smart card-based authentication scheme, but also secure authentication functions. A smart card performs a simple one-way hash function, the operations of exclusive-or and concatenation in the authentication phase of the proposed scheme. The proposed scheme also provides user anonymity using a dynamic identity and key agreement, and secure password change. |
| url |
https://doi.org/10.5772/50912 |
| work_keys_str_mv |
AT soobokshin aremoteuserauthenticationschemewithanonymityformobiledevices AT kangseokkim aremoteuserauthenticationschemewithanonymityformobiledevices AT kihyungkim aremoteuserauthenticationschemewithanonymityformobiledevices AT hongjinyeh aremoteuserauthenticationschemewithanonymityformobiledevices AT soobokshin remoteuserauthenticationschemewithanonymityformobiledevices AT kangseokkim remoteuserauthenticationschemewithanonymityformobiledevices AT kihyungkim remoteuserauthenticationschemewithanonymityformobiledevices AT hongjinyeh remoteuserauthenticationschemewithanonymityformobiledevices |
| _version_ |
1724508249905954816 |