ESEAP: ECC based secure and efficient mutual authentication protocol using smart card

Kumari, Adesh, Jangirala, Srinivas, Abbasi, M. Yahya, Kumar, Vinod and Alam, Mansaf (2020) ESEAP: ECC based secure and efficient mutual authentication protocol using smart card. Journal of Information Security and Applications, 51: 102443. ISSN 22142134

[thumbnail of JOISA 2020.pdf]
Preview
Text
JOISA 2020.pdf - Published Version

Download (1MB) | Preview

Abstract

Smart card based user server mutual authentication framework is famous for safe communication via unfavorable and insecure communication system. The authenticated user and server communicate to each other and share information via Internet. Recently, Wang et al. suggested a lightweight password-assisted two factor authentication framework using smart card. We reviewed their scheme and observed that it does maintain security and privacy off-line password guessing attack and also impersonation attack. We proposed enhance elliptic curve cryptography(ECC) based authentication framework for the same environment. The proposed scheme ESEAP is secure resilience of many attractive security attributes and features like off-line password guessing attack, no password verifier-table, smart card loss attack, anonymity, mutual authentication, replay attack, impersonation attack, server spooling attack, no clock-synchronization attack, forward secrecy, insider attack, message authentication, provision of key agreement, parallel attack, sound repairability, no password exposure, timely typo detection, resistance to know attacks, password friendly, user unlinkability and server unlinkability. Further, the paper shows formal security analysis of the ESEAP which based on random oracle model. We compared the presented protocol with other related protocols in the same environment, and show that ESEAP is more efficient in terms of computation and communication cost. As a result, the presented protocol can be utilized over public communication channel.

Item Type: Article
Keywords: Mutual Authentication | Elliptic Curve Cryptography | Smart Card | Random Oracle Model | Security and Privacy
Subjects: Physical, Life and Health Sciences > Engineering and Technology
JGU School/Centre: Jindal Global Business School
Depositing User: Amees Mohammad
Date Deposited: 24 Dec 2021 05:16
Last Modified: 06 Nov 2023 11:43
Official URL: https://doi.org/10.1016/j.jisa.2019.102443
URI: https://pure.jgu.edu.in/id/eprint/378

Downloads

Downloads per month over past year

Actions (login required)

View Item
View Item