Abstract | ||
---|---|---|
The demand for remote data storage and computation services is increasing exponentially in our data-driven society; thus, the need for secure access to such data and services. In this article, we design a new biometric-based authentication protocol to provide secure access to a remote (cloud) server. In the proposed approach, we consider biometric data of a user as a secret credential. We then derive a unique identity from the user's biometric data, which is further used to generate the user's private key. In addition, we propose an efficient approach to generate a session key between two communicating parties using two biometric templates for a secure message transmission. In other words, there is no need to store the user's private key anywhere and the session key is generated without sharing any prior information. A detailed Real-Or-Random (ROR) model based formal security analysis, informal (non-mathematical) security analysis and also formal security verification using the broadly-accepted Automated Validation of Internet Security Protocols and Applications (AVISPA) tool reveal that the proposed approach can resist several known attacks against (passive/active) adversary. Finally, extensive experiments and a comparative study demonstrate the efficiency and utility of the proposed approach. |
Year | DOI | Venue |
---|---|---|
2022 | 10.1109/TCC.2020.2987564 | IEEE Transactions on Cloud Computing |
Keywords | DocType | Volume |
Authentication,biometric-based security,cloud service access,session key | Journal | 10 |
Issue | ISSN | Citations |
2 | 2168-7161 | 0 |
PageRank | References | Authors |
0.34 | 8 | 5 |
Name | Order | Citations | PageRank |
---|---|---|---|
Gaurang Panchal | 1 | 3 | 1.45 |
Debasis Samanta | 2 | 227 | 37.98 |
Ashok Kumar Das | 3 | 2250 | 122.93 |
Neeraj Kumar | 4 | 2889 | 236.13 |
Kim-Kwang Raymond Choo | 5 | 4103 | 362.49 |