基于生物特征和混沌映射的多服务器身份认证方案

章坚武; 姚泽瑾; 吴震东

doi:10.11959/j.issn.1000-0801.2017045

您当前的位置：

首页 >

文章列表页 >

基于生物特征和混沌映射的多服务器身份认证方案

专题：智能终端与网络安全 | 更新时间：2024-06-05

- 基于生物特征和混沌映射的多服务器身份认证方案
- Multi-server identity authentication scheme based on biometric and chaotic maps
- 电信科学 2017年33卷第2期页码：22-31
- 作者机构：
- 作者简介：
- 基金信息：
  
  浙江省自然科学基金资助项目;Zhejiang Natural Science Foundation of China(LY16F020016);国家重点研发计划经费资助项目;National Key Research and Development Program of China(2016YFB0800201);浙江省重点科技创新团队项目;Zhejiang Province Science and Technology Innovation Program(2013TD03)
- DOI：10.11959/j.issn.1000-0801.2017045
  中图分类号： TP393
- 网络出版日期：2017-02，
  
  纸质出版日期：2017-02-20
- 稿件说明：
移动端阅览
章坚武, 姚泽瑾, 吴震东. 基于生物特征和混沌映射的多服务器身份认证方案[J]. 电信科学, 2017,33(2):22-31.

Jianwu ZHANG, Zejin YAO, Zhendong WU. Multi-server identity authentication scheme based on biometric and chaotic maps[J]. Telecommunications science, 2017, 33(2): 22-31.
章坚武, 姚泽瑾, 吴震东. 基于生物特征和混沌映射的多服务器身份认证方案[J]. 电信科学, 2017,33(2):22-31. DOI： 10.11959/j.issn.1000-0801.2017045.

Jianwu ZHANG, Zejin YAO, Zhendong WU. Multi-server identity authentication scheme based on biometric and chaotic maps[J]. Telecommunications science, 2017, 33(2): 22-31. DOI： 10.11959/j.issn.1000-0801.2017045.

摘要

基于密码的用户远程认证系统已被广泛应用，近年来的研究发现，单一口令系统容易遭受字典分析、暴力破解等攻击，安全性不高。生物特征与密码相结合的认证方式逐渐加入远程认证系统中，以提高认证系统的安全水平。但现有认证系统通常工作在单一服务器环境中，扩展到多服务器环境中时会遇到生物特征模板和密码容易被单点突破、交叉破解的问题。为了克服以上问题，提出了一种基于生物特征和混沌映射的多服务器密钥认证方案，该方案基于智能卡、密码和生物特征，可明显提高多服务器身份认证系统的安全性及抗密码猜解的能力。

Abstract

Password-based user remote authentication system has been widely used in recent years

the study found that a single password system is so vulnerable to dictionary analysis and brute force attack as well as other attacks that the security is not high.Biometric and password combination authentication method gradually added to the remote authentication system in order to improve the security level of authentication system.However

the existing authentication systems work in a single server environment

if extended to a multi-server environment

biometric templates and passwords will encounter single point breakthrough and cross-crack problem.In order to overcome the above problems

a multi-server key authentication scheme based on biometric and chaotic map was proposed.The scheme was based on smart cards

passwords and biometrics

which could significantly improve the security and the ability of anti-password guessing of multi-server authentication systems.

关键词

Keywords

references

J UANG W S , CHEN S T , LIAW H T . Robust and efficient password-authenticated key agreement using smart cards [J ] . IEEE Transactions on Industrial Electronics , 2008 , 55 ( 6 ): 2551 - 2556 .

SUN D Z , HUAI J P , SUN J Z , et al . Improvements of Juang's password-authenticated key agreement scheme using smart cards [J ] . IEEE Transactions on Industrial Electronics , 2009 , 56 ( 6 ): 2284 - 2291 .

FAN C I , LIN Y H . Provably secure remote truly three-factor authentication scheme with privacy protection on biometrics [J ] . IEEE Transactions on Information Forensics and Security , 2009 , 4 ( 4 ): 933 - 945 .

HE D , KUMAR N , LEE J H . Enhanced three-factor security protocol for USB consumer storage devices [J ] . IEEE Transactions on Consumer Electronics , 2014 , 60 ( 1 ): 30 - 37 .

KUMARI S , KHAN M K , LI X . An improved remote user authentication scheme with key agreement [J ] . Computers＆Electrical Engineering , 2014 , 40 ( 6 ): 1997 - 2012 .

LEE N Y , CHIU Y C . Improved remote authentication scheme with smart card [J ] . Computers Standards ＆ Interfaces , 2005 , 27 ( 2 ): 177 - 180 .

KUMARI S , KHAN M K . Cryptanalysis and improvement of ‘A robust smart-card-based remote user password authentication scheme' [J ] . International Journal of Communications Systems , 2014 , 27 ( 12 ): 3939 - 3955 .

CHANG C C , LE H D , CHANG C H . Novel untraceable authenticated key agreement protocol suitable for mobile communication [J ] . Wireless Personal Communications , 2013 , 71 ( 1 ): 425 - 437 .

KUMARI S , KHAN M K . Security and Communication Network [J ] . Security and Communication Network , 2014 , 7 ( 11 ): 2039 - 2053 .

LI X , NIU J , MA J , et al . Cryptanalysis and improvement of a biometrics-based remote user authentication scheme using smart cards [J ] . Journal of Network＆Computer Applications , 2011 , 34 ( 1 ): 73 - 79 .

KUMARI S , CHAUDHRU S A , WU F , et al . An improved smart card based authentication scheme for session initiation protocol [J ] . Peer-to-Peer Networking Applications , 2015 : 1 - 14 .

WU F , XU L , KUMARI S , et al . A novel and provably secure biometrics-based three-factor remote authentication scheme for mobile client-server networks [J ] . Computers＆ Electrical Engineering , 2015 , 45 : 274 - 285 .

YOON E , YOO K . Robust biometrics-based multi-server authentication with key agreement scheme for smart cards on elliptic curve cryptosystem [J ] . The Journal of Supercomputer , 2013 , 63 ( 1 ): 235 - 255 .

HE D , WANG D . Robust biometrics-based authentication scheme for multiserver environment [J ] . IEEE Syst J , 2015 , 9 ( 3 ): 816 - 823 .

ODELU V , DAS A K , GOSWAMI A . A secure biometrics-based multi-server authentication protocol using smart cards [J ] . IEEE Trans Inf Forensics Secur , 2015 , 10 ( 9 ): 1953 - 1966 .

MISHRA D , DAS A K , MUKHOPADHYAY S . A secure user anonymity-preserving biometric-based multi-server authenticated key agreement scheme using smart cards [J ] . Expert Systems with Applications , 2014 , 41 ( 18 ): 8129 - 8143 .

L IN H , WEN F , DU C . An improved anonymous multi-server authenticated key agreement scheme using smart cards and biometrics [J ] . Wireless Personal Communications , 2015 , 84 ( 4 ): 2351 - 2362 .

LU Y , LI L , PENG H , et al . A biometrics and smart cardsbased authentication scheme for multi-server environments [J ] . Security ＆ Communication Networks , 2015 , 8 ( 17 ): 3219 - 3228 .

SHEN H , GAO C Z , HE D D , et al . New biometrics-based authentication scheme for multi-server environment in critical systems [J ] . Journal of Ambient Intelligence and Humanized Computing , 2015 , 6 ( 6 ): 825 - 834 .

范九伦，张雪峰 . 分段Logistic 混沌映射及其性能分析 [J ] . 电子学报， 2009 , 37 ( 4 ): 720 - 725 .

FAN J L , ZHANG X F . Piecewise logistic chaotic map and its performance analysis [J ] . Acta Electronica Sinica , 2009 , 37 ( 4 ): 720 - 725 .

TSAI J L . Efficient multi-server authentication scheme based on one-wayhash function without verification table [J ] . Computers＆ Security , 2008 , 27 ( 3-4 ): 115 - 121 .

CHANG C C , LIN I C . Remarks on fingerprint-based remote user authentication scheme using smart cards [J ] . ACM SIGOPS Operating Systems Review , 2004 , 38 ( 4 ): 91 - 96 .

浏览量

661

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

基于BDH问题的支持多服务器连接关键词可搜索加密方案