Efficient and Flexible Multi-Factor Authentication Protocol Based on Fuzzy Extractor of Administrator’s Fingerprint and Smart Mobile Device

Efficient and Flexible Multi-Factor Authentication Protocol Based on Fuzzy Extractor of Administrator’s Fingerprint and Smart Mobile Device

In an era of tremendous development in information technology and the Internet of Things (IoT), security plays a key role in safety devices connected with the Internet. Authentication is vital in the security field, and to achieve a strong authentication scheme, there are several systems using a Mul...

Full description

Bibliographic Details
Main Authors: Alzahraa J. Mohammed, Ali A. Yassin
Format: Article
Language:English
Published: MDPI AG 2019-09-01
Series:Cryptography
Subjects:
IoT
MFA
administrator
authenticated server
smart mobile device
fuzzy extractor
Online Access:https://www.mdpi.com/2410-387X/3/3/24
id doaj-7972477941d1418bafea205773071667
record_format Article
spelling doaj-7972477941d1418bafea2057730716672020-11-25T00:59:16ZengMDPI AGCryptography2410-387X2019-09-01332410.3390/cryptography3030024cryptography3030024Efficient and Flexible Multi-Factor Authentication Protocol Based on Fuzzy Extractor of Administrator’s Fingerprint and Smart Mobile DeviceAlzahraa J. Mohammed0Ali A. Yassin1Computer Science Department, Education College for Pure Sciences, University of Basrah, Basrah 6100, IraqComputer Science Department, Education College for Pure Sciences, University of Basrah, Basrah 6100, IraqIn an era of tremendous development in information technology and the Internet of Things (IoT), security plays a key role in safety devices connected with the Internet. Authentication is vital in the security field, and to achieve a strong authentication scheme, there are several systems using a Multi-Factor Authentication (MFA) scheme based on a smart card, token, and biometric. However, these schemes have suffered from the extra cost; lost, stolen or broken factor, and malicious attacks. In this paper, we design an MFA protocol to be the authenticated administrator of IoT’s devices. The main components of our protocol are a smart mobile device and the fuzzy extractor of the administrator’s fingerprint. The information of the authenticated user is stored in an anomalous manner in mobile devices and servers to resist well-known attacks, and, as a result, the attacker fails to authenticate the system when they obtain a mobile device or password. Our work overcomes the above-mentioned issues and does not require extra cost for a fingerprint device. By using the AVISPA tool to analysis protocol security, the results are good and safe against known attacks.https://www.mdpi.com/2410-387X/3/3/24IoTMFAadministratorauthenticated serversmart mobile devicefuzzy extractor
collection DOAJ
language English
format Article
sources DOAJ
author Alzahraa J. Mohammed
Ali A. Yassin
spellingShingle Alzahraa J. Mohammed
Ali A. Yassin
Efficient and Flexible Multi-Factor Authentication Protocol Based on Fuzzy Extractor of Administrator’s Fingerprint and Smart Mobile Device
Cryptography
IoT
MFA
administrator
authenticated server
smart mobile device
fuzzy extractor
author_facet Alzahraa J. Mohammed
Ali A. Yassin
author_sort Alzahraa J. Mohammed
title Efficient and Flexible Multi-Factor Authentication Protocol Based on Fuzzy Extractor of Administrator’s Fingerprint and Smart Mobile Device
title_short Efficient and Flexible Multi-Factor Authentication Protocol Based on Fuzzy Extractor of Administrator’s Fingerprint and Smart Mobile Device
title_full Efficient and Flexible Multi-Factor Authentication Protocol Based on Fuzzy Extractor of Administrator’s Fingerprint and Smart Mobile Device
title_fullStr Efficient and Flexible Multi-Factor Authentication Protocol Based on Fuzzy Extractor of Administrator’s Fingerprint and Smart Mobile Device
title_full_unstemmed Efficient and Flexible Multi-Factor Authentication Protocol Based on Fuzzy Extractor of Administrator’s Fingerprint and Smart Mobile Device
title_sort efficient and flexible multi-factor authentication protocol based on fuzzy extractor of administrator’s fingerprint and smart mobile device
publisher MDPI AG
series Cryptography
issn 2410-387X
publishDate 2019-09-01
description In an era of tremendous development in information technology and the Internet of Things (IoT), security plays a key role in safety devices connected with the Internet. Authentication is vital in the security field, and to achieve a strong authentication scheme, there are several systems using a Multi-Factor Authentication (MFA) scheme based on a smart card, token, and biometric. However, these schemes have suffered from the extra cost; lost, stolen or broken factor, and malicious attacks. In this paper, we design an MFA protocol to be the authenticated administrator of IoT’s devices. The main components of our protocol are a smart mobile device and the fuzzy extractor of the administrator’s fingerprint. The information of the authenticated user is stored in an anomalous manner in mobile devices and servers to resist well-known attacks, and, as a result, the attacker fails to authenticate the system when they obtain a mobile device or password. Our work overcomes the above-mentioned issues and does not require extra cost for a fingerprint device. By using the AVISPA tool to analysis protocol security, the results are good and safe against known attacks.
topic IoT
MFA
administrator
authenticated server
smart mobile device
fuzzy extractor
url https://www.mdpi.com/2410-387X/3/3/24
work_keys_str_mv AT alzahraajmohammed efficientandflexiblemultifactorauthenticationprotocolbasedonfuzzyextractorofadministratorsfingerprintandsmartmobiledevice
AT aliayassin efficientandflexiblemultifactorauthenticationprotocolbasedonfuzzyextractorofadministratorsfingerprintandsmartmobiledevice
_version_ 1725218294045081600

Similar Items