Analysis and Improvement of Andola et al.‘s Dynamic ID based User Authentication Scheme (Andola 등의 동적 ID에 기반한 사용자 인증 스킴에 대한 분석 및 개선)

Mi-Og Park (박미옥)

doi:10.9708/jksci.2023.28.07.067

Analysis and Improvement of Andola et al.‘s Dynamic ID based User Authentication Scheme

Journal of The Korea Society of Computer and Information
Abbr : JKSCI
2023, 28(7), pp.67-75
DOI : 10.9708/jksci.2023.28.07.067
Publisher : The Korean Society Of Computer And Information
Research Area : Engineering > Computer Science
Received : May 10, 2023
Accepted : July 17, 2023
Published : July 31, 2023

Mi-Og Park ¹

¹성결대학교

Accredited

ABSTRACT

In this paper, we analyze the problem of the user authentication scheme that provides dynamic ID in a multi-server environment proposed by Andola et al. and propose an improved authentication one to solve this problem. As a result of analyzing the authentication scheme of Andrea et al. in this paper, it is not safe for smart card loss attack, and this attack allows users to guess passwords, and eventually, the attacker was able to generate session key. This paper proposed an improved authentication scheme to solve these problems, and as a result of safety analysis, it was safe from various attacks such as smart card loss attack, password guess attack, and user impersonation attack. Also the improved authentication scheme not only provides a secure dynamic ID, but is also effective in terms of the computational complexity of the hash function. In addition, the improved authentication scheme does not significantly increase the amount of transmission, so it can be said to be an efficient authentication scheme in terms of transmission cost.

KEYWORDS

Multi-server, Authentication, Dynamic ID, Anonymity, Stolen Smart-card attack

Citation status

* References for papers published after 2023 are currently being built.

[journal] Leslie Lamport / 1981 / Password authentication with insecure communication / Communications of the ACM / Association for Computing Machinery (ACM) 24(11) : 770~772

[journal] Ya‐Fen Chang / 2013 / Untraceable dynamic‐identity‐based remote user authentication scheme with verifiable password update / International Journal of Communication Systems / Wiley 27(11) : 3430~3440

[journal] Y. Y. Wang / 2009 / A more efficient and secure dynamic ID-based remote user authentication scheme / Computer Communications 32(4) : 583~585

[journal] Saru Kumari / 2014 / An improved remote user authentication scheme with key agreement / Comput Electr Eng / Elsevier BV 40(6) : 1997~2012

[journal] Morteza Nikooghadam / 2017 / A lightweight authentication and key agreement protocol preserving user anonymity / Multimedia Tools and Applications / Springer Science and Business Media LLC 76(11) : 13401~13423

[journal] Shehzad Ashraf Chaudhry / 2015 / An enhanced privacy preserving remote user authentication scheme with provable security / Security and Communication Networks / Wiley 8(18) : 3782~3795

[journal] Yeongjae Cho / 2022 / A Secure and Anonymous User Authentication Scheme for IoT-Enabled Smart Home Environments Using PUF / IEEE Access / Institute of Electrical and Electronics Engineers (IEEE) 10 : 101330~101346

[journal] Moneer Fakroon / 2020 / Secure remote anonymous user authentication scheme for smart home environment / Internet of Things / Elsevier BV 9 : 100158~

[journal] Shuming Qiu / 2019 / An Improved Lightweight Two-Factor Authentication and Key Agreement Protocol with Dynamic Identity Based on Elliptic Curve Cryptography / KSII Transactions on Internet and Information Systems / 한국인터넷정보학회 13(2) : 978~1002

[journal] Nitish Andola / 2022 / An enhanced smart card and dynamic ID based remote multi-server user authentication scheme / Cluster Computing / Springer Science and Business Media LLC 25(5) : 3699~3717

[journal] D. He / 2014 / Enhanced three-factor security protocol for consumer usb mass storage devices / IEEE Transactions on Consumer Electronics 60(1) : 30~37

[journal] Hamed Arshad / 2016 / An efficient and secure authentication and key agreement scheme for session initiation protocol using ECC / Multimedia Tools and Applications / Springer Science and Business Media LLC 75(1) : 181~197

KJCKorea
Journal Central

Journal of The Korea Society of Computer and Information 2023 KCI Impact Factor : 0.65

Analysis and Improvement of Andola et al.‘s Dynamic ID based User Authentication Scheme

ABSTRACT

KEYWORDS

Citation status

* References for papers published after 2023 are currently being built.

Journal of The Korea Society of Computer and Information 2023 KCI Impact Factor : 0.65

Analysis and Improvement of Andola et al.‘s Dynamic ID based User Authentication Scheme

ABSTRACT

KEYWORDS

Statistics

Tools

Issue List

Citation status

KCI Citation Counts (0)

REFERENCES (12) * References for papers published after 2023 are currently being built.

Search PDF

Citation

* References for papers published after 2023 are currently being built.