Paper Info
Title
An Ameliorated Two-Factor Anonymous Key Exchange Authentication Protocol For Mobile Client-Server Environment
Abstract
Mobile communication is now an essential part of our day-to-day life due to expeditious progress in the industry of information technology. Prior to session key exchange with the corresponding server, a mobile user needs to be authenticated by that server in order to avail its services. Assorted authentication protocols are introduced so far, for authenticating the legitimate mobile users. Very recently, Lu et al introduced a two-factor scheme for key exchange in the mobile client-server environment. Lu et al declared that their introduced scheme is anonymous and robust for preventing potential attacks. However, we determined that the scheme of Lu et al is susceptible against server key reveal and smart card stolen attack. Moreover, it is also identified that their scheme is prone to traceability and anonymity violation attacks. Therefore, we proposed an improvement in order to increase the security and effectiveness. The immunity of the proposed protocol and correctness is tested, analyzed, and verified through formal proof of automated tool ProVerif and Burrows-Abadi-Needham logic, respectively. Moreover, the security and performance comparison also proved that the improved scheme is robust, efficient, and lightweight.
Year
DOI
Venue
2018
10.1002/dac.3814
INTERNATIONAL JOURNAL OF COMMUNICATION SYSTEMS
Keywords
DocType
Volume
anonymity, authentication protocol, cryptanalysis, impersonation attack, key exchange, smart card stolen attack, traceability
Journal
31
Issue
ISSN
Citations 
18
1074-5351
0
PageRank 
References 
Authors
0.34
0
6
Name
Order
Citations
PageRank
Khalid Mahmood127039.43
Husnain Naqvi227412.80
Bander A. Alzahrani35010.72
Zahid Mehmood400.34
Azeem Irshad55913.32
Shehzad Ashraf Chaudhry642028.94