An Improvement of Robust Biometrics-Based Authentication and Key Agreement Scheme for Multi-Server Environments Using Smart Cards

In multi-server environments, user authentication is a very important issue because it provides the authorization that enables users to access their data and services; furthermore, remote user authentication schemes for multi-server environments have solved the problem that has arisen from user’s ma...

Descripción completa

Detalles Bibliográficos
Autores principales: Moon, Jongho, Choi, Younsung, Jung, Jaewook, Won, Dongho
Formato: Online Artículo Texto
Lenguaje:English
Publicado: Public Library of Science 2015
Materias:
Research Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC4699843/
https://www.ncbi.nlm.nih.gov/pubmed/26709702
http://dx.doi.org/10.1371/journal.pone.0145263
_version_ 1782408241239556096
author Moon, Jongho
Choi, Younsung
Jung, Jaewook
Won, Dongho
author_facet Moon, Jongho
Choi, Younsung
Jung, Jaewook
Won, Dongho
author_sort Moon, Jongho
collection PubMed
description In multi-server environments, user authentication is a very important issue because it provides the authorization that enables users to access their data and services; furthermore, remote user authentication schemes for multi-server environments have solved the problem that has arisen from user’s management of different identities and passwords. For this reason, numerous user authentication schemes that are designed for multi-server environments have been proposed over recent years. In 2015, Lu et al. improved upon Mishra et al.’s scheme, claiming that their remote user authentication scheme is more secure and practical; however, we found that Lu et al.’s scheme is still insecure and incorrect. In this paper, we demonstrate that Lu et al.’s scheme is vulnerable to outsider attack and user impersonation attack, and we propose a new biometrics-based scheme for authentication and key agreement that can be used in multi-server environments; then, we show that our proposed scheme is more secure and supports the required security properties.
format Online
Article
Text
id pubmed-4699843
institution National Center for Biotechnology Information
language English
publishDate 2015
publisher Public Library of Science
record_format MEDLINE/PubMed
spelling pubmed-46998432016-01-14 An Improvement of Robust Biometrics-Based Authentication and Key Agreement Scheme for Multi-Server Environments Using Smart Cards Moon, Jongho Choi, Younsung Jung, Jaewook Won, Dongho PLoS One Research Article In multi-server environments, user authentication is a very important issue because it provides the authorization that enables users to access their data and services; furthermore, remote user authentication schemes for multi-server environments have solved the problem that has arisen from user’s management of different identities and passwords. For this reason, numerous user authentication schemes that are designed for multi-server environments have been proposed over recent years. In 2015, Lu et al. improved upon Mishra et al.’s scheme, claiming that their remote user authentication scheme is more secure and practical; however, we found that Lu et al.’s scheme is still insecure and incorrect. In this paper, we demonstrate that Lu et al.’s scheme is vulnerable to outsider attack and user impersonation attack, and we propose a new biometrics-based scheme for authentication and key agreement that can be used in multi-server environments; then, we show that our proposed scheme is more secure and supports the required security properties. Public Library of Science 2015-12-28 /pmc/articles/PMC4699843/ /pubmed/26709702 http://dx.doi.org/10.1371/journal.pone.0145263 Text en © 2015 Moon et al http://creativecommons.org/licenses/by/4.0/ This is an open-access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are properly credited.
spellingShingle Research Article
Moon, Jongho
Choi, Younsung
Jung, Jaewook
Won, Dongho
An Improvement of Robust Biometrics-Based Authentication and Key Agreement Scheme for Multi-Server Environments Using Smart Cards
title An Improvement of Robust Biometrics-Based Authentication and Key Agreement Scheme for Multi-Server Environments Using Smart Cards
title_full An Improvement of Robust Biometrics-Based Authentication and Key Agreement Scheme for Multi-Server Environments Using Smart Cards
title_fullStr An Improvement of Robust Biometrics-Based Authentication and Key Agreement Scheme for Multi-Server Environments Using Smart Cards
title_full_unstemmed An Improvement of Robust Biometrics-Based Authentication and Key Agreement Scheme for Multi-Server Environments Using Smart Cards
title_short An Improvement of Robust Biometrics-Based Authentication and Key Agreement Scheme for Multi-Server Environments Using Smart Cards
title_sort improvement of robust biometrics-based authentication and key agreement scheme for multi-server environments using smart cards
topic Research Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC4699843/
https://www.ncbi.nlm.nih.gov/pubmed/26709702
http://dx.doi.org/10.1371/journal.pone.0145263
work_keys_str_mv AT moonjongho animprovementofrobustbiometricsbasedauthenticationandkeyagreementschemeformultiserverenvironmentsusingsmartcards
AT choiyounsung animprovementofrobustbiometricsbasedauthenticationandkeyagreementschemeformultiserverenvironmentsusingsmartcards
AT jungjaewook animprovementofrobustbiometricsbasedauthenticationandkeyagreementschemeformultiserverenvironmentsusingsmartcards
AT wondongho animprovementofrobustbiometricsbasedauthenticationandkeyagreementschemeformultiserverenvironmentsusingsmartcards
AT moonjongho improvementofrobustbiometricsbasedauthenticationandkeyagreementschemeformultiserverenvironmentsusingsmartcards
AT choiyounsung improvementofrobustbiometricsbasedauthenticationandkeyagreementschemeformultiserverenvironmentsusingsmartcards
AT jungjaewook improvementofrobustbiometricsbasedauthenticationandkeyagreementschemeformultiserverenvironmentsusingsmartcards
AT wondongho improvementofrobustbiometricsbasedauthenticationandkeyagreementschemeformultiserverenvironmentsusingsmartcards

Ejemplares similares