Presentation is loading. Please wait.

Presentation is loading. Please wait.

多媒體網路安全實驗室 A novel user authentication and privacy preserving scheme with smartcards for wireless communications 作者 :Chun-Ta Li,Cgeng-Chi Lee 出處 :Mathematical.

Published byBennett Norton Modified over 8 years ago

Similar presentations

Presentation on theme: "多媒體網路安全實驗室 A novel user authentication and privacy preserving scheme with smartcards for wireless communications 作者 :Chun-Ta Li,Cgeng-Chi Lee 出處 :Mathematical."— Presentation transcript:

1 多媒體網路安全實驗室 A novel user authentication and privacy preserving scheme with smartcards for wireless communications 作者 :Chun-Ta Li,Cgeng-Chi Lee 出處 :Mathematical and Computer Modelling,2012 報告人 : 葉瑞群 日期 :2012/09/07

2 多媒體網路安全實驗室 Outline Introduction 1 Review of He et al.’s scheme 2 Three weaknesses in He et al.’s scheme 33 The proposed scheme 44 Security analusis of the proposed scheme 35 Functionality features and performance analysis of the proposed scheme 46 Conclusions 37 2

3 多媒體網路安全實驗室 1.Introduction(1/3)  Generally speaking, mobile users (MU) can access the services provided by the home agent of the MU (HA) in a visited foreign agent of the MU (FA). 3

4 多媒體網路安全實驗室 1.Introduction(2/3)  Recently, He et al. [5] showed that Wu et al.’s scheme is vulnerable to several weaknesses and then proposed a strong user authentication scheme with smart cards for wireless communications. 4

5 多媒體網路安全實驗室 1.Introduction(3/3) In this paper we will show that He et al.’s scheme has three weaknesses as follows.  1. Lack of user friendliness.  2. Unfairness in key agreement.  3. Attacks against the user anonymity. 5

6 多媒體網路安全實驗室 2.Review of He et al.’s scheme(1/7) TABLE 1 (I) MUThe mobile user PW MU The password of MU ID MU The identity of MU HAThe home agent of Ui ID HA The identity of HA FAThe foreign agent of MU roamed ID FA The identity of FA NThe master secret key stored in HA TXTX A timestamp generated by an entity X SKThe common session key ⊕ The bitwise XOR operation H(.)A collision free one-way hash function 6

7 多媒體網路安全實驗室 2.Review of He et al.’s scheme(2/7) TABLE 1 (II) ||String concatenation E k [.]/D k [.]The symmetric encryption/decryption function with key K E k {.}/D k [{.}The asymmetric encryption/decryption function with key K ⇒ A secure channel →A common channel 7

8 多媒體網路安全實驗室 2.Review of He et al.’s scheme (3/7) – Registration phase [1] MU HA ID MU,H(PW MU ⊕ d) TK MU = H(ID MU ||X HA ) SK MU = H(N||ID MU ) r = TK MU ⊕ ID HA ⊕ E N [(ID MU ||m)] {TK MU,SK MU,H(.),r} SK * MU = H(ID MU ||H(PW MU )) ⊕ SK MU V MU = TK MU ⊕ H(ID MU ||H(PW MU ⊕ d)) H MU = H(TK MU ) {V MU,H MU,SK * MU,H(.),d,r} 8

9 多媒體網路安全實驗室 2.Review of He et al.’s scheme (4/7) – Login phase [2] MU FA Smart card TK * MU = V MU ⊕ H(ID MU ||H(PW MU ⊕ d)) H * MU = H(TK * MU ) check H * MU = H MU SK MU = H(ID MU ||H(PW MU )) ⊕ SK * MU L = H(T MU ⊕ SK MU ) F = E L [H(T MU )||ID FA ||x 0 ||x] n = r ⊕ TK MU = ID HA ⊕ E N [(ID MU ||m)] m1{n,F,ID HA,T MU } 9

10 多媒體網路安全實驗室 2.Review of He et al.’s scheme (5/7) – Authentication phase [3] - I 10

11 多媒體網路安全實驗室 2.Review of He et al.’s scheme (6/7) – Authentication phase [3] - II 11

12 多媒體網路安全實驗室 2.Review of He et al.’s scheme (7/7) – Password change phase [4] Smart card TK * MU = V MU ⊕ H(ID MU ||H(PW MU || ⊕ d)) H * MU = H(TK * MU ),Check H * MU = H MU MU Input PW NEW MU Smart card SK’ MU = H(ID MU ||H(PW NEW MU )) ⊕ SK MU = H(ID MU ||H(PW NEW MU )) ⊕ H(ID MU ||H(PW MU )) ⊕ SK * MU, Replaces SK’ MU →SK * MU V’ MU = TK MU ⊕ H(ID MU ||H(PW NEW MU ⊕ d NEW )),Replaces V’ MU →V MU {V’ MU,H MU,SK’ MU,H(.),d NEW,r},PW NEW MU 12

13 多媒體網路安全實驗室 3. Three weaknesses in He et al.’s scheme(1/3) 1.Lack of user friendliness  Authors assumed that the bit length of MU’s ID MU is 128 bit and MU has to bear in mind such a 128 bit identity (usually in the form of as many as 32 hexadecimal ASCII characters). 13

14 多媒體網路安全實驗室 3. Three weaknesses in He et al.’s scheme(2/3) 2.Unfairness in key agreement  The MU can always choose x 0 and x, where x 0 and x are two 256 bits random number generated by the MU alone, such that in Step V7,the common session key computed by the FA according to SK = H(H(H(N ‖ ID MU )) ‖ x ‖ x 0 ) is always the MU’s pre-determined x 0 and x. 14

15 多媒體網路安全實驗室 3. Three weaknesses in He et al.’s scheme(3/3) 3. Attacks against the user’s anonymity  Consider that a mobile user MU roams into the foreign network and sends the login message m1 = {n,F,ID HA,T MU } to the FA to access service, the contents of n and ID HA are for the mobile user MU’s exclusive use and these two values always unchanging in Step L 4 of the login phase. 15

16 多媒體網路安全實驗室 4.The proposed scheme(1/7) Notations p,qpublic large prime numbers S HA = cHA selects a private key P HA =g c mod pHA computes its public key S FA = eFA selects a private key P FA = g e mod pFA computes its public key 16

17 多媒體網路安全實驗室 4.The proposed scheme(2/7) Registration phase [1] MU HA ID MU,H(ID MU ⊕ PW MU ⊕ d) TK MU = H(N||ID MU ) ⊕ H(ID MU ⊕ PW MU ⊕ d) r = ID HA ⊕ E N [(ID MU ||m)] TK MU,H(.),r TK MU,H(.),r,d 17

18 多媒體網路安全實驗室 4.The proposed scheme(3/7) Login phase [2] MU FA Smart card TK * MU = TK MU ⊕ H(ID MU ⊕ PW MU ⊕ d) = H(N||ID MU ) A = g a mod p L = H(T MU ⊕ TK * MU ), F = E L [T MU ||ID FA ||A] DH = P HA a mod p = g ac mod p, M=E DH [r] MU DH’ = P FA a mod p = g ea mod p m 1 = {A,T MU,U=E DH’ [M,F,ID HA,T MU ]} 18

19 多媒體網路安全實驗室 4.The proposed scheme(4/7) Authentication phase [3] I 19

20 多媒體網路安全實驗室 4.The proposed scheme(5/7) Authentication phase [3] II 20

21 多媒體網路安全實驗室 4.The proposed scheme(6/7) Authentication phase [3] III MU FA HA SK = B a mod p = g ba mod p D SK [Z] = TCert MU,H(H(N||ID MU )||D),A,B,D 21

22 多媒體網路安全實驗室 4.The proposed scheme(7/7) Password change phase [4] MU 、 Smart card TK * MU = TK MU ⊕ H(ID MU ⊕ PW MU ⊕ d)=H(N||ID MU ) H(ID MU ⊕ PW NEW MU ⊕ d’) TK NEW MU = TK * MU ⊕ H(ID MU ⊕ PW NEW MU ⊕ d’) Replaces TK NEW MU,d’ 22

23 多媒體網路安全實驗室 5.Security analusis of the proposed scheme(1/3)  The proposed scheme is able to provide user anonymity.  m 1 = {A,T MU,U=E DH’ [M,F,ID HA,T MU ]}  Step1 DH’ = A e mod p =g ae mod p  Step2 D DH’ [U] = M,F,ID HA,T MU 23

24 多媒體網路安全實驗室 5.Security analusis of the proposed scheme(2/3) MU FA HA DH’ DH’’ DH SK 24

25 多媒體網路安全實驗室 5.Security analusis of the proposed scheme(3/3)  The proposed scheme meets the security requirement for perfect forward secrecy. (Diffie-Hellman)  Attacker cannot launch any attack to obtain the MU’s real identity ID MU and password PW MU. TK ∗ MU = H(N ‖ ID MU ) 25

26 多媒體網路安全實驗室 6.Functionality features and performance analysis of the proposed scheme(1/1) 26

27 多媒體網路安全實驗室  More recently, He et al. showed that Wu et al.,’s smart card based authentication scheme with user anonymity is vulnerable to several weaknesses and then proposed a secure and light-weight user authentication scheme. 27

28 多媒體網路安全實驗室

Download ppt "多媒體網路安全實驗室 A novel user authentication and privacy preserving scheme with smartcards for wireless communications 作者 :Chun-Ta Li,Cgeng-Chi Lee 出處 :Mathematical."

Similar presentations

1 9 4 5 1 8 8 6 E W H A W U New Nominative Proxy Signature Scheme for Mobile Communication April. 30. 2003 Seo, Seung-Hyun Dept. of Computer Science and.

E W H A W U New Nominative Proxy Signature Scheme for Mobile Communication April Seo, Seung-Hyun Dept. of Computer Science and.
1 東南技術學院九十二學年度第二學期 資工系第一次論文發表會 Analysis of an Improved Version of S/KEY One-Time Password Authentication Scheme Speaker: Maw-Jinn Tsaur 2004.05.12.

1 東南技術學院九十二學年度第二學期 資工系第一次論文發表會 Analysis of an Improved Version of S/KEY One-Time Password Authentication Scheme Speaker: Maw-Jinn Tsaur
Cryptanalysis of a Communication-Efficient Three-Party Password Authenticated Key Exchange Protocol Source: Information Sciences in review Presenter: Tsuei-Hung.

Cryptanalysis of a Communication-Efficient Three-Party Password Authenticated Key Exchange Protocol Source: Information Sciences in review Presenter: Tsuei-Hung.
多媒體網路安全實驗室 An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards 作者 :JongHyup LEE 出處.

多媒體網路安全實驗室 An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards 作者 :JongHyup LEE 出處.
Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,

Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,
多媒體網路安全實驗室 Improved Secure Anonymous Authentication Scheme for Roaming Service in Global Mobility Networks Date : 2012.10.24 Reporter : Hong Ji Wei Authors.

多媒體網路安全實驗室 Improved Secure Anonymous Authentication Scheme for Roaming Service in Global Mobility Networks Date : Reporter : Hong Ji Wei Authors.
多媒體網路安全實驗室 Towards Secure and Effective Utilization over Encrypted Cloud Data 報告人 : 葉瑞群 日期 :2012/05/09 出處 :IEEE Transactions on Knowledge and Data Engineering.

多媒體網路安全實驗室 Towards Secure and Effective Utilization over Encrypted Cloud Data 報告人 : 葉瑞群 日期 :2012/05/09 出處 :IEEE Transactions on Knowledge and Data Engineering.
A Secure Remote User Authentication Scheme with Smart Cards Manoj Kumar 報告者 : 許睿中 日期 :11.23 1.

A Secure Remote User Authentication Scheme with Smart Cards Manoj Kumar 報告者 : 許睿中 日期 :
Computer and Information Security 期末報告 學號 92321501 姓名 莊玉麟.

Computer and Information Security 期末報告 學號 姓名 莊玉麟.
1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.

1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.
1 Security analysis of an enhanced authentication key exchange protocol Authors : H.Y. Liu, G.B. Horng, F.Y. Hung Presented by F.Y. Hung Date : 2005/5/20.

1 Security analysis of an enhanced authentication key exchange protocol Authors : H.Y. Liu, G.B. Horng, F.Y. Hung Presented by F.Y. Hung Date : 2005/5/20.
A simple remote user authentication scheme 1. M. S. Hwang, C. C. Lee and Y. L. Tang, “A simple remote user authentication.

A simple remote user authentication scheme 1. M. S. Hwang, C. C. Lee and Y. L. Tang, “A simple remote user authentication.
電子商務與數位生活研討會 1 Further Security Enhancement for Optimal Strong-Password Authentication Protocol Tzung-Her Chen, Gwoboa Horng, Wei-Bin Lee,Kuang-Long Lin.

電子商務與數位生活研討會 1 Further Security Enhancement for Optimal Strong-Password Authentication Protocol Tzung-Her Chen, Gwoboa Horng, Wei-Bin Lee,Kuang-Long Lin.
1 Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment Authors : Han-Cheng Hsiang and Wei-Kuan Shih.

1 Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment Authors : Han-Cheng Hsiang and Wei-Kuan Shih.
Efficient Multi-server Password Authenticated Key Agreement Using Smart Cards Computer and Information Security 92321509 Ming-Hong Shih.

Efficient Multi-server Password Authenticated Key Agreement Using Smart Cards Computer and Information Security Ming-Hong Shih.
90321011 孫國偉 Efficient Password authenticated key agreement using smart cards Author : Wen-Shenq Juang* Date : 2003.11.26 in Computers & Security.

孫國偉 Efficient Password authenticated key agreement using smart cards Author : Wen-Shenq Juang* Date : in Computers & Security.
An Improved Smart Card Based Password Authentication Scheme with Provable Security Source:Computer Standards & Interfaces, Vol. 31, No. 4, pp. 723-728,

An Improved Smart Card Based Password Authentication Scheme with Provable Security Source:Computer Standards & Interfaces, Vol. 31, No. 4, pp ,
A more efficient and secure dynamic ID- based remote user authentication scheme Yan-yan Wang, Jia-yong Liu, Feng-xia Xiao, Jing Dan in Computer Communications.

A more efficient and secure dynamic ID- based remote user authentication scheme Yan-yan Wang, Jia-yong Liu, Feng-xia Xiao, Jing Dan in Computer Communications.
Improvement of Hwang-Lo-Lin scheme based on an ID-based cryptosystem No author given (Korea information security Agency) Presented by J.Liu.

Improvement of Hwang-Lo-Lin scheme based on an ID-based cryptosystem No author given (Korea information security Agency) Presented by J.Liu.
An Enhanced Two-factor User Authentication Scheme in Wireless Sensor Networks DAOJING HE, YI GAO, SAMMY CHAN, CHUN CHEN, JIAJUN BU Ad Hoc & Sensor Wireless.

An Enhanced Two-factor User Authentication Scheme in Wireless Sensor Networks DAOJING HE, YI GAO, SAMMY CHAN, CHUN CHEN, JIAJUN BU Ad Hoc & Sensor Wireless.

Similar presentations

Ads by Google