当前位置: X-MOL 学术J. Inf. Secur. Appl. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
Analysis and enhancement of secure three-factor user authentication using Chebyshev Chaotic Map
Journal of Information Security and Applications ( IF 5.6 ) Pub Date : 2021-06-26 , DOI: 10.1016/j.jisa.2021.102915
Tanmoy Maitra , Shiwangi Singh , Ritwik Saurabh , Debasis Giri

The most popular solution for a variety of business applications such as e-banking and e-healthcare is the multi-server environment. The user registration of individual servers is not the primary concern in such an environment. Here, the user can get various services from different servers by registering him/her under one server. To get secure services through this environment, the authenticity of users and servers are crucial. In this observation, the smart card based biometric authentication system is well popular and easy to use. This paper delineates that the security flaws can be found in a trusted authentication scheme proposed by Chatterjee et al. (2018). Besides, this work proposes an enhanced authentication scheme namely, asymmetric encryption based secure user authentication (ASESUA) to eliminate the drawbacks of Chatterjee et al.’s scheme. The formal security analysis of ASESUA has been done with the help of random oracle model and verified by the well popular AVISPA tool. The analysis shows that ASESUA performs better concerning security, communication cost, and computation cost than other related existing schemes.



中文翻译:

基于切比雪夫混沌图的安全三因素用户认证分析与增强

适用于各种业务应用程序(例如电子银行和电子医疗保健)的最流行的解决方案是多服务器环境。在这种环境中,单个服务器的用户注册不是主要问题。在这里,用户可以通过在一台服务器下注册他/她从不同的服务器获得各种服务。要通过这种环境获得安全的服务,用户和服务器的真实性至关重要。在这一观察中,基于智能卡的生物特征认证系统非常流行且易于使用。本文描述了可以在 Chatterjee 等人提出的可信身份验证方案中发现安全漏洞。(2018)。此外,这项工作提出了一种增强的认证方案,即基于非对称加密的安全用户认证(ASESUA),以消除 Chatterjee 等人的缺点。的方案。ASESUA 的正式安全分析是在随机预言模型的帮助下完成的,并通过广受欢迎的 AVISPA 工具进行了验证。分析表明,ASESUA 在安全性、通信成本和计算成本方面均优于其他相关现有方案。

更新日期:2021-06-28
down
wechat
bug