• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)

Forward Anonymity-Preserving Secure Remote Authentication Scheme

Vol. 10, No.3, March 31, 2016
10.3837/tiis.2016.03.019, Full Text:

Abstract

Dynamic ID-based authentication solves the ID-theft problem by changing the ID in each session instead of using a fixed ID while performing authenticated key exchanges between communicating parties. User anonymity is expected to be maintained and the exchanged key kept secret even if one of the long-term keys is compromised in the future. However, in the conventional dynamic ID-based authentication scheme, if the server’s long-term key is compromised, user anonymity can be broken or the identities of the users can be traced. In addition, these schemes are vulnerable to replay attacks, in which any adversary who captures the authentication message can retransmit it, and eventually cause the legitimate user to be denied service. This paper proposes a novel dynamic ID-based authentication scheme that preserves forward anonymity as well as forward secrecy and obviates replay attacks.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
Hanwook Lee, Junghyun Nam, Moonseong Kim and Dongho Won, "Forward Anonymity-Preserving Secure Remote Authentication Scheme," KSII Transactions on Internet and Information Systems, vol. 10, no. 3, pp. 1289-1310, 2016. DOI: 10.3837/tiis.2016.03.019

[ACM Style]
Lee, H., Nam, J., Kim, M., and Won, D. 2016. Forward Anonymity-Preserving Secure Remote Authentication Scheme. KSII Transactions on Internet and Information Systems, 10, 3, (2016), 1289-1310. DOI: 10.3837/tiis.2016.03.019