A secure and effective anonymous authentication scheme for roaming service in global mobility networks

TL;DR

This paper introduces a new anonymous authentication scheme for global mobility networks that enhances security, user privacy, and efficiency, addressing vulnerabilities in previous schemes and suitable for resource-limited mobile devices.

Contribution

The paper presents a novel authentication scheme that improves security, user anonymity, and efficiency over existing methods for roaming services in global mobility networks.

Findings

Scheme is secure against impersonation, password guessing, and insider attacks.

It is suitable for low-power, resource-limited mobile devices.

Provides mutual authentication and user anonymity.

Abstract

Recently, Mun et al. analyzed Wu et al.'s authentication scheme and proposed a enhanced anonymous authentication scheme for roaming service in global mobility networks. However, through careful analysis, we find that Mun et al.'s scheme is vulnerable to impersonation attacks, off-line password guessing attacks and insider attacks, and cannot provide user friendliness, user's anonymity, proper mutual authentication and local verification. To remedy these weaknesses, in this paper we propose a novel anonymous authentication scheme for roaming service in global mobility networks. Security and performance analyses show the proposed scheme is more suitable for the low-power and resource-limited mobile devices, and is secure against various attacks and has many excellent features.