A Robust Biometric-Based Three-factor Remote User Authentication Scheme
Vorugunti Chandra Sekhar, Mrudula Sarvabhatla
TL;DR
This paper critiques an existing IoT remote user authentication scheme, demonstrating its vulnerabilities, and proposes an improved, more secure scheme resistant to major cryptographic attacks.
Contribution
It identifies vulnerabilities in Ankita et al.'s scheme and introduces a new, robust authentication scheme that overcomes these security flaws.
Findings
Ankita et al.'s scheme is vulnerable to session-specific temporary information attacks.
The proposed scheme resists all major cryptographic attacks.
The new scheme improves security over the previous model.
Abstract
The rapid development of Internet of Things (IoT) technology, which is an inter connection of networks through an insecure public channel i.e. Internet demands for authenticating the remote user trying to access the secure network resources. In 2013, Ankita et al. proposed an improved three factor remote user authentication scheme. In this poster we will show that Ankita et al scheme is vulnerable to known session specific temporary information attack, on successfully performing the attack, the adversary can perform all other major cryptographic attacks. As a part of our contribution, we will propose an improved scheme which is resistance to all major cryptographic attacks and overcomes the defects in Ankita et al. scheme.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsAdvanced Authentication Protocols Security · User Authentication and Security Systems · Biometric Identification and Security