Cargando…
Security Analysis and Improvement of an Anonymous Authentication Scheme for Roaming Services
An anonymous authentication scheme for roaming services in global mobility networks allows a mobile user visiting a foreign network to achieve mutual authentication and session key establishment with the foreign-network operator in an anonymous manner. In this work, we revisit He et al.'s anony...
| Autores principales: | , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Hindawi Publishing Corporation
2014
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC4180899/ https://www.ncbi.nlm.nih.gov/pubmed/25302330 http://dx.doi.org/10.1155/2014/687879 |
| _version_ | 1782337281523187712 |
|---|---|
| author | Lee, Youngsook Paik, Juryon |
| author_facet | Lee, Youngsook Paik, Juryon |
| author_sort | Lee, Youngsook |
| collection | PubMed |
| description | An anonymous authentication scheme for roaming services in global mobility networks allows a mobile user visiting a foreign network to achieve mutual authentication and session key establishment with the foreign-network operator in an anonymous manner. In this work, we revisit He et al.'s anonymous authentication scheme for roaming services and present previously unpublished security weaknesses in the scheme: (1) it fails to provide user anonymity against any third party as well as the foreign agent, (2) it cannot protect the passwords of mobile users due to its vulnerability to an offline dictionary attack, and (3) it does not achieve session-key security against a man-in-the-middle attack. We also show how the security weaknesses of He et al.'s scheme can be addressed without degrading the efficiency of the scheme. |
| format | Online Article Text |
| id | pubmed-4180899 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2014 |
| publisher | Hindawi Publishing Corporation |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-41808992014-10-09 Security Analysis and Improvement of an Anonymous Authentication Scheme for Roaming Services Lee, Youngsook Paik, Juryon ScientificWorldJournal Research Article An anonymous authentication scheme for roaming services in global mobility networks allows a mobile user visiting a foreign network to achieve mutual authentication and session key establishment with the foreign-network operator in an anonymous manner. In this work, we revisit He et al.'s anonymous authentication scheme for roaming services and present previously unpublished security weaknesses in the scheme: (1) it fails to provide user anonymity against any third party as well as the foreign agent, (2) it cannot protect the passwords of mobile users due to its vulnerability to an offline dictionary attack, and (3) it does not achieve session-key security against a man-in-the-middle attack. We also show how the security weaknesses of He et al.'s scheme can be addressed without degrading the efficiency of the scheme. Hindawi Publishing Corporation 2014 2014-09-11 /pmc/articles/PMC4180899/ /pubmed/25302330 http://dx.doi.org/10.1155/2014/687879 Text en Copyright © 2014 Y. Lee and J. Paik. https://creativecommons.org/licenses/by/3.0/ This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited. |
| spellingShingle | Research Article Lee, Youngsook Paik, Juryon Security Analysis and Improvement of an Anonymous Authentication Scheme for Roaming Services |
| title | Security Analysis and Improvement of an Anonymous Authentication Scheme for Roaming Services |
| title_full | Security Analysis and Improvement of an Anonymous Authentication Scheme for Roaming Services |
| title_fullStr | Security Analysis and Improvement of an Anonymous Authentication Scheme for Roaming Services |
| title_full_unstemmed | Security Analysis and Improvement of an Anonymous Authentication Scheme for Roaming Services |
| title_short | Security Analysis and Improvement of an Anonymous Authentication Scheme for Roaming Services |
| title_sort | security analysis and improvement of an anonymous authentication scheme for roaming services |
| topic | Research Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC4180899/ https://www.ncbi.nlm.nih.gov/pubmed/25302330 http://dx.doi.org/10.1155/2014/687879 |
| work_keys_str_mv | AT leeyoungsook securityanalysisandimprovementofananonymousauthenticationschemeforroamingservices AT paikjuryon securityanalysisandimprovementofananonymousauthenticationschemeforroamingservices |