Cargando…
Cryptanalysis and improved mutual authentication key agreement protocol using pseudo-identity
The authentication key agreement is a scheme that generates a session key for encrypted communication between two participants. In the authentication key agreement, to provide the mutual authentication and the robust session key agreement is one of the important security requirements to enhance the...
| Autores principales: | , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Public Library of Science
2022
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9333255/ https://www.ncbi.nlm.nih.gov/pubmed/35901113 http://dx.doi.org/10.1371/journal.pone.0271817 |
| _version_ | 1784758833116086272 |
|---|---|
| author | Jo, Hyang-Rim Pak, Kyong-Sok Kim, Chung-Hyok Zhang, Il-Jin |
| author_facet | Jo, Hyang-Rim Pak, Kyong-Sok Kim, Chung-Hyok Zhang, Il-Jin |
| author_sort | Jo, Hyang-Rim |
| collection | PubMed |
| description | The authentication key agreement is a scheme that generates a session key for encrypted communication between two participants. In the authentication key agreement, to provide the mutual authentication and the robust session key agreement is one of the important security requirements to enhance the security performance of key agreement. Recently Zhou et al. had proposed the key agreement protocol using pseudo-identifiers, but we found that there were weaknesses in their protocol. We have demonstrated that Zhou et al.’s protocol is vulnerable to replay attack, fails to provide mutual authentication, no key control, re-registration with the original identifier and efficiency in the verification of wrong password. We improved their scheme and proposed an improved authentication key agreement protocol that provides robust mutual authentication and the secure session key agreement. We analyzed its security performance using BAN logic and AVISPA tools and compared computational cost, communication overhead and security properties with other related schemes. |
| format | Online Article Text |
| id | pubmed-9333255 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2022 |
| publisher | Public Library of Science |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-93332552022-07-29 Cryptanalysis and improved mutual authentication key agreement protocol using pseudo-identity Jo, Hyang-Rim Pak, Kyong-Sok Kim, Chung-Hyok Zhang, Il-Jin PLoS One Research Article The authentication key agreement is a scheme that generates a session key for encrypted communication between two participants. In the authentication key agreement, to provide the mutual authentication and the robust session key agreement is one of the important security requirements to enhance the security performance of key agreement. Recently Zhou et al. had proposed the key agreement protocol using pseudo-identifiers, but we found that there were weaknesses in their protocol. We have demonstrated that Zhou et al.’s protocol is vulnerable to replay attack, fails to provide mutual authentication, no key control, re-registration with the original identifier and efficiency in the verification of wrong password. We improved their scheme and proposed an improved authentication key agreement protocol that provides robust mutual authentication and the secure session key agreement. We analyzed its security performance using BAN logic and AVISPA tools and compared computational cost, communication overhead and security properties with other related schemes. Public Library of Science 2022-07-28 /pmc/articles/PMC9333255/ /pubmed/35901113 http://dx.doi.org/10.1371/journal.pone.0271817 Text en © 2022 Jo et al https://creativecommons.org/licenses/by/4.0/This is an open access article distributed under the terms of the Creative Commons Attribution License (https://creativecommons.org/licenses/by/4.0/) , which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited. |
| spellingShingle | Research Article Jo, Hyang-Rim Pak, Kyong-Sok Kim, Chung-Hyok Zhang, Il-Jin Cryptanalysis and improved mutual authentication key agreement protocol using pseudo-identity |
| title | Cryptanalysis and improved mutual authentication key agreement protocol using pseudo-identity |
| title_full | Cryptanalysis and improved mutual authentication key agreement protocol using pseudo-identity |
| title_fullStr | Cryptanalysis and improved mutual authentication key agreement protocol using pseudo-identity |
| title_full_unstemmed | Cryptanalysis and improved mutual authentication key agreement protocol using pseudo-identity |
| title_short | Cryptanalysis and improved mutual authentication key agreement protocol using pseudo-identity |
| title_sort | cryptanalysis and improved mutual authentication key agreement protocol using pseudo-identity |
| topic | Research Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9333255/ https://www.ncbi.nlm.nih.gov/pubmed/35901113 http://dx.doi.org/10.1371/journal.pone.0271817 |
| work_keys_str_mv | AT johyangrim cryptanalysisandimprovedmutualauthenticationkeyagreementprotocolusingpseudoidentity AT pakkyongsok cryptanalysisandimprovedmutualauthenticationkeyagreementprotocolusingpseudoidentity AT kimchunghyok cryptanalysisandimprovedmutualauthenticationkeyagreementprotocolusingpseudoidentity AT zhangiljin cryptanalysisandimprovedmutualauthenticationkeyagreementprotocolusingpseudoidentity |