Presentation is loading. Please wait.

Presentation is loading. Please wait.

A Secure Identification and Key Agreement Protocol with User Anonymity (SIKA) Authors: Kumar Mangipudi and Rajendra Katti Source: Computers & Security,

Published byNicholas Perkins Modified over 8 years ago

Similar presentations

Presentation on theme: "A Secure Identification and Key Agreement Protocol with User Anonymity (SIKA) Authors: Kumar Mangipudi and Rajendra Katti Source: Computers & Security,"— Presentation transcript:

1 A Secure Identification and Key Agreement Protocol with User Anonymity (SIKA) Authors: Kumar Mangipudi and Rajendra Katti Source: Computers & Security, vol. 25, 2006, pp. 420-425 Presenter: Jung-wen Lo ( 駱榮問 ) Date: 2008/12/12

2 2 Outline Introduction Yang et al.’s scheme DoS Attack on Yang et al.’s scheme SIKA scheme Conclusions & Comment Improved SIKA scheme

3 3 Introduction Login Process  User ’ s private information leaking Review  WB Lee and CC Chang, “ User identification and key distribution maintaining anonymity for distributed computer network ” Computer Systems Science and Engineering, 15(4), 2000, pp.113 – 6 Impersonation attack  TS Wu and CL Hsu, “ Efficient user identification scheme with key distribution preserving anonymity for distributed computer networks, ” Computer & Security, 23(2), 2004, pp.120 – 125 Server obtains user ’ s token  Y Yang, S Wang, F Bao, J Wang and RH Deng, “ New efficient user identification and key distribution scheme providing enhanced security. ” Computer & Security, 23(8), 2004, pp. 697-704 User anonymity, User identification and Key agreement Vulnerable to a Denial-of-Service (DoS) attack

4 4 Notation (e,N),d: Public key & private key SCPC: Smart Card Producing Center P i : Secret token (P i =ID i d mod N) E k (.),D k (.): Symmetric-key cryptosystem H(.): Hash function ID i : Identity of user U i or server S i K ij : Session key T: Time stamp k,t: Random numbers

5 5 Yang et al.’s scheme UiUi SCPC Random t a=z e ID j mod N K ij =a t mod N x=g et mod N p=g t P i H(x,T) mod N y=E Kij (ID i ) Random k z=g k P j -1 mod N K ij =x k mod N ID ’ i =D Kij (y) xID ’ i H(x,T) ?=p e mod N M1(req.) M2(z) M3(x,y,p,T) Key Generation Phase Key Agreement Phase SjSj P i =ID i d mod N UiUi p e =(g t P i H(x,T) ) e = g et P i e H(x,T) =x (ID i d ) e H(x,T) =x (ID i ) H(x,T) {(e,N),d} a=z e ID j =(g k (ID j d ) -1 ) e ID j =g ke

6 6 DoS Attack on Yang et al.’s scheme UiUi SCPC Random t a ’ =z ’ e ID j mod N K ’ ij =a ’ t mod N x=g et mod N p=g t P i H(x,T) mod N y ’ =E K ’ ij (ID i ) Random k z=g k P j -1 mod N K ij =x k mod N ID ’ i =D Kij (y ’ ) xID ’ i H(x,T) ?=p e mod N M1(req.) M2 ’ (z ’ ) M3(x,y ’,p,T) Key Generation Phase Key Agreement Phase SjSj P i =ID i d mod N UiUi M2(z) {(e,N),d} Attacker

7 7 SIKA scheme UiUi SCPC Random t u=H(z,T,ID s ) w e s mod N s ?=g s u mod N s a=z e ID j mod N K ij =a t mod N x=g et mod N p=g t P i H(x,T) mod N y=E Kij (ID i ) Random k z=g k P j -1 mod N u=H(z,T,ID s ) v=ud s w=g s v mode N s K ij =x k mod N ID ’ i =D Kij (y) xID ’ i H(x,T) ?=p e mod N M1(req.) M2(z,T,w) M3(x,y,p,T) Key Generation Phase Key Agreement Phase SjSj P i =ID i d mod N UiUi {(e,N),d} {(e s,N s ),d s },g s w e s =(g s v ) e s =(g s ud s ) e s =g s u

8 8 Conclusions & Comment Conclusions  Inherited security  Enhanced security  No DoS attack Comments  Always has DoS attack Lots M1 makes server busy  Efficiency improvement Improved SIKA scheme

9 9 UiUi SCPC Random t w ’ =H(z,T) W ’ ?=w a=z e ID j mod N K ij =a t mod N x=g et mod N p=g t P i H(x,T) mod N y=E Kij (ID i ||z ) Random k z=g k P j -1 mod N w=H(z,T) K ij =x k mod N ID ’ i ||z =D Kij (y) xID ’ i H(x,T) ?=p e mod N M1(req.) M2(z,T,w) M3(x,y,p,T) Key Generation Phase Key Agreement Phase SjSj P i =ID i d mod N UiUi {(e,N),d} {(e s,N s ),d s },g s

Download ppt "A Secure Identification and Key Agreement Protocol with User Anonymity (SIKA) Authors: Kumar Mangipudi and Rajendra Katti Source: Computers & Security,"

Similar presentations

多媒體網路安全實驗室 An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards 作者 :JongHyup LEE 出處.

多媒體網路安全實驗室 An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards 作者 :JongHyup LEE 出處.
Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,

Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,
An Improvement on Authenticated Key Agreement Scheme Authors: Chin-Chen Chang and Shih-Yi Lin Source: 2007 International Conference on Intelligent Pervasive.

An Improvement on Authenticated Key Agreement Scheme Authors: Chin-Chen Chang and Shih-Yi Lin Source: 2007 International Conference on Intelligent Pervasive.
Mutual Authentication and Key Exchange Protocol (MAKEP) Reporter: Jung-Wen Lo ( 駱榮問 ) Date: 2008/4/18.

Mutual Authentication and Key Exchange Protocol (MAKEP) Reporter: Jung-Wen Lo ( 駱榮問 ) Date: 2008/4/18.
A Secure Remote User Authentication Scheme with Smart Cards Manoj Kumar 報告者 : 許睿中 日期 :11.23 1.

A Secure Remote User Authentication Scheme with Smart Cards Manoj Kumar 報告者 : 許睿中 日期 :
Computer and Information Security 期末報告 學號 92321501 姓名 莊玉麟.

Computer and Information Security 期末報告 學號 姓名 莊玉麟.
1 Security analysis of an enhanced authentication key exchange protocol Authors : H.Y. Liu, G.B. Horng, F.Y. Hung Presented by F.Y. Hung Date : 2005/5/20.

1 Security analysis of an enhanced authentication key exchange protocol Authors : H.Y. Liu, G.B. Horng, F.Y. Hung Presented by F.Y. Hung Date : 2005/5/20.
An Authentication Scheme for Mobil Satellite Communication Systems Advisor: Prof. Jen-Chang Liu Graduate Student: Yi-Ching Chen( 陳怡靜 92321527) Date: 2004/05/26.

An Authentication Scheme for Mobil Satellite Communication Systems Advisor: Prof. Jen-Chang Liu Graduate Student: Yi-Ching Chen( 陳怡靜 ) Date: 2004/05/26.
A simple remote user authentication scheme 1. M. S. Hwang, C. C. Lee and Y. L. Tang, “A simple remote user authentication.

A simple remote user authentication scheme 1. M. S. Hwang, C. C. Lee and Y. L. Tang, “A simple remote user authentication.
電子商務與數位生活研討會 1 Further Security Enhancement for Optimal Strong-Password Authentication Protocol Tzung-Her Chen, Gwoboa Horng, Wei-Bin Lee,Kuang-Long Lin.

電子商務與數位生活研討會 1 Further Security Enhancement for Optimal Strong-Password Authentication Protocol Tzung-Her Chen, Gwoboa Horng, Wei-Bin Lee,Kuang-Long Lin.
1 Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment Authors : Han-Cheng Hsiang and Wei-Kuan Shih.

1 Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment Authors : Han-Cheng Hsiang and Wei-Kuan Shih.
Efficient Multi-server Password Authenticated Key Agreement Using Smart Cards Computer and Information Security 92321509 Ming-Hong Shih.

Efficient Multi-server Password Authenticated Key Agreement Using Smart Cards Computer and Information Security Ming-Hong Shih.
90321011 孫國偉 Efficient Password authenticated key agreement using smart cards Author : Wen-Shenq Juang* Date : 2003.11.26 in Computers & Security.

孫國偉 Efficient Password authenticated key agreement using smart cards Author : Wen-Shenq Juang* Date : in Computers & Security.
1 An ID-based multisignature scheme without reblocking and predetermined signing order Chin-Chen Chang, Iuon-Chang Lin, and Kwok-Yan Lam Computer Standards.

1 An ID-based multisignature scheme without reblocking and predetermined signing order Chin-Chen Chang, Iuon-Chang Lin, and Kwok-Yan Lam Computer Standards.
An Improved Smart Card Based Password Authentication Scheme with Provable Security Source:Computer Standards & Interfaces, Vol. 31, No. 4, pp. 723-728,

An Improved Smart Card Based Password Authentication Scheme with Provable Security Source:Computer Standards & Interfaces, Vol. 31, No. 4, pp ,
A more efficient and secure dynamic ID- based remote user authentication scheme Yan-yan Wang, Jia-yong Liu, Feng-xia Xiao, Jing Dan in Computer Communications.

A more efficient and secure dynamic ID- based remote user authentication scheme Yan-yan Wang, Jia-yong Liu, Feng-xia Xiao, Jing Dan in Computer Communications.
Fuw-Yi Yang1 Public Key Cryptography 公開金鑰密碼 Department of Computer Science and Information Engineering, Chaoyang University of Technology 朝陽科技大學資工系 Speaker:

Fuw-Yi Yang1 Public Key Cryptography 公開金鑰密碼 Department of Computer Science and Information Engineering, Chaoyang University of Technology 朝陽科技大學資工系 Speaker:
Improvement of Hwang-Lo-Lin scheme based on an ID-based cryptosystem No author given (Korea information security Agency) Presented by J.Liu.

Improvement of Hwang-Lo-Lin scheme based on an ID-based cryptosystem No author given (Korea information security Agency) Presented by J.Liu.
An Enhanced Two-factor User Authentication Scheme in Wireless Sensor Networks DAOJING HE, YI GAO, SAMMY CHAN, CHUN CHEN, JIAJUN BU Ad Hoc & Sensor Wireless.

An Enhanced Two-factor User Authentication Scheme in Wireless Sensor Networks DAOJING HE, YI GAO, SAMMY CHAN, CHUN CHEN, JIAJUN BU Ad Hoc & Sensor Wireless.
多媒體網路安全實驗室 A novel user identification scheme with key distribution preserving user anonymity for distributed computer networks Date:2011/10/05 報告人:向峻霈.

多媒體網路安全實驗室 A novel user identification scheme with key distribution preserving user anonymity for distributed computer networks Date:2011/10/05 報告人:向峻霈.

Similar presentations

Ads by Google