Provable Identity Based User Authentication Scheme on ECC in Multi-server Environment

  • Toan-Thinh Truong
  • Minh-Triet Tran
  • Anh-Duc Duong
  • Isao Echizen
Article

DOI: 10.1007/s11277-017-3961-5

Cite this article as:
Truong, TT., Tran, MT., Duong, AD. et al. Wireless Pers Commun (2017). doi:10.1007/s11277-017-3961-5
  • 74 Downloads

Abstract

With non-stop development of e-commerce and different internet-based applications’ demands, service providers include many physical servers scattering all over the world. If some users would like to use various services, they have to repeatedly register. Therefore, they must remember all these information such as, user-names or passwords. To solve this problem, many authentication schemes in multi-server environment are proposed. Furthermore, to prevent the adversary from keeping track of another user when he or she logins, many schemes apply dynamic identity, but they have some limitations with popular kinds of attacks such as, replay attack, impersonation attack, or man-in-the-middle attack...  In 2014, Yeh (Department of Information Management, National Dong Hwa University) proposed multi-server scheme using Rivest–Shamir–Adleman (RSA). However, we discover this scheme cannot achieve two basic properties, mutual authentication and session-key agreement. In this paper, we concretely demonstrate that discovery and propose a different provable version using elliptic curve cryptosystem in multi-server environment which overcomes the limitation of Yeh’s scheme and satisfies security and efficiency.

Keywords

Authentication Multi-server Dynamic identity User anonymity 

Copyright information

© Springer Science+Business Media New York 2017

Authors and Affiliations

  • Toan-Thinh Truong
    • 1
  • Minh-Triet Tran
    • 1
  • Anh-Duc Duong
    • 2
  • Isao Echizen
    • 3
  1. 1.University of Science, VNU-HCMHo Chi Minh CityVietnam
  2. 2.University of Information Technology, VNU-HCMHo Chi Minh CityVietnam
  3. 3.National Institute of InformaticsTokyo CityJapan

Personalised recommendations