Formal analysis and systematic construction of two-factor authentication scheme

Guomin Yang; Duncan S. Wong; Huaxiong Wang; Xiaotie Deng

doi:10.1007/11935308_7

Formal analysis and systematic construction of two-factor authentication scheme

Guomin Yang, Duncan S. Wong, Huaxiong Wang, Xiaotie Deng

Department of Computer Science

Research output: Chapters, Conference Papers, Creative and Literary Works › RGC 32 - Refereed conference paper (with host publication) › peer-review

11 Citations (Scopus)

Abstract

One of the most commonly used two-factor authentication mechanisms is based on smart card and user’s password. Throughout the years, there have been many schemes proposed, but most of them have already been found flawed due to the lack of formal security analysis. On the cryptanalysis of this type of schemes, in this paper, we further review two recently proposed schemes and show that their security claims are invalid. To address the current issue, we propose a new and simplified property set and a formal adversarial model for analyzing the security of this type of schemes. We believe that the property set and the adversarial model themselves are of independent interest. We then propose a new scheme and a generic construction framework. In particular, we show that a secure password based key exchange protocol can be transformed efficiently to a smartcard and password based two-factor authentication scheme provided that there exist pseudorandom functions and collision-resistant hash functions. © Springer-Verlag Berlin Heidelberg 2006.

Original language	English
Title of host publication	Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings
Publisher	Springer Verlag
Pages	82-91
Volume	4307 LNCS
ISBN (Print)	9783540494966
DOIs	https://doi.org/10.1007/11935308_7
Publication status	Published - 2006
Event	8th International Conference on Information and Communications Security, ICICS 2006 - Raleigh, United States Duration: 4 Dec 2006 → 7 Dec 2006

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	4307 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	8th International Conference on Information and Communications Security, ICICS 2006
Place	United States
City	Raleigh
Period	4/12/06 → 7/12/06

Bibliographical note

Publication details (e.g. title, author(s), publication statuses and dates) are captured on an “AS IS” and “AS AVAILABLE” basis at the time of record harvesting from the data source. Suggestions for further amendments or supplementary information can be sent to <a href="mailto:[email protected]">[email protected]</a>.

Funding

The author was supported by a grant from CityU (Project No. 7001959).

Access Output

10.1007/11935308_7

Other Access Options

Check CityUHK Library

Permanent Link

Right click to copy link

Cite this

Yang, G., Wong, D. S., Wang, H., & Deng, X. (2006). Formal analysis and systematic construction of two-factor authentication scheme. In Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings (Vol. 4307 LNCS, pp. 82-91). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4307 LNCS). Springer Verlag. https://doi.org/10.1007/11935308_7

Yang, Guomin ; Wong, Duncan S. ; Wang, Huaxiong et al. / Formal analysis and systematic construction of two-factor authentication scheme. Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings. Vol. 4307 LNCS Springer Verlag, 2006. pp. 82-91 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{16531405a8f341e6af5a758f17fa12c6,

title = "Formal analysis and systematic construction of two-factor authentication scheme",

abstract = "One of the most commonly used two-factor authentication mechanisms is based on smart card and user{\textquoteright}s password. Throughout the years, there have been many schemes proposed, but most of them have already been found flawed due to the lack of formal security analysis. On the cryptanalysis of this type of schemes, in this paper, we further review two recently proposed schemes and show that their security claims are invalid. To address the current issue, we propose a new and simplified property set and a formal adversarial model for analyzing the security of this type of schemes. We believe that the property set and the adversarial model themselves are of independent interest. We then propose a new scheme and a generic construction framework. In particular, we show that a secure password based key exchange protocol can be transformed efficiently to a smartcard and password based two-factor authentication scheme provided that there exist pseudorandom functions and collision-resistant hash functions. {\textcopyright} Springer-Verlag Berlin Heidelberg 2006.",

author = "Guomin Yang and Wong, {Duncan S.} and Huaxiong Wang and Xiaotie Deng",

note = "Publication details (e.g. title, author(s), publication statuses and dates) are captured on an “AS IS” and “AS AVAILABLE” basis at the time of record harvesting from the data source. Suggestions for further amendments or supplementary information can be sent to <a href={"}mailto:[email protected]{"}>[email protected]</a>.; 8th International Conference on Information and Communications Security, ICICS 2006 ; Conference date: 04-12-2006 Through 07-12-2006",

year = "2006",

doi = "10.1007/11935308_7",

language = "English",

isbn = "9783540494966",

volume = "4307 LNCS",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "82--91",

booktitle = "Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings",

address = "Germany",

}

Yang, G, Wong, DS, Wang, H & Deng, X 2006, Formal analysis and systematic construction of two-factor authentication scheme. in Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings. vol. 4307 LNCS, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 4307 LNCS, Springer Verlag, pp. 82-91, 8th International Conference on Information and Communications Security, ICICS 2006, Raleigh, United States, 4/12/06. https://doi.org/10.1007/11935308_7

Formal analysis and systematic construction of two-factor authentication scheme. / Yang, Guomin; Wong, Duncan S.; Wang, Huaxiong et al.
Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings. Vol. 4307 LNCS Springer Verlag, 2006. p. 82-91 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4307 LNCS).

Research output: Chapters, Conference Papers, Creative and Literary Works › RGC 32 - Refereed conference paper (with host publication) › peer-review

TY - GEN

T1 - Formal analysis and systematic construction of two-factor authentication scheme

AU - Yang, Guomin

AU - Wong, Duncan S.

AU - Wang, Huaxiong

AU - Deng, Xiaotie

N1 - Publication details (e.g. title, author(s), publication statuses and dates) are captured on an “AS IS” and “AS AVAILABLE” basis at the time of record harvesting from the data source. Suggestions for further amendments or supplementary information can be sent to <a href="mailto:[email protected]">[email protected]</a>.

PY - 2006

Y1 - 2006

N2 - One of the most commonly used two-factor authentication mechanisms is based on smart card and user’s password. Throughout the years, there have been many schemes proposed, but most of them have already been found flawed due to the lack of formal security analysis. On the cryptanalysis of this type of schemes, in this paper, we further review two recently proposed schemes and show that their security claims are invalid. To address the current issue, we propose a new and simplified property set and a formal adversarial model for analyzing the security of this type of schemes. We believe that the property set and the adversarial model themselves are of independent interest. We then propose a new scheme and a generic construction framework. In particular, we show that a secure password based key exchange protocol can be transformed efficiently to a smartcard and password based two-factor authentication scheme provided that there exist pseudorandom functions and collision-resistant hash functions. © Springer-Verlag Berlin Heidelberg 2006.

AB - One of the most commonly used two-factor authentication mechanisms is based on smart card and user’s password. Throughout the years, there have been many schemes proposed, but most of them have already been found flawed due to the lack of formal security analysis. On the cryptanalysis of this type of schemes, in this paper, we further review two recently proposed schemes and show that their security claims are invalid. To address the current issue, we propose a new and simplified property set and a formal adversarial model for analyzing the security of this type of schemes. We believe that the property set and the adversarial model themselves are of independent interest. We then propose a new scheme and a generic construction framework. In particular, we show that a secure password based key exchange protocol can be transformed efficiently to a smartcard and password based two-factor authentication scheme provided that there exist pseudorandom functions and collision-resistant hash functions. © Springer-Verlag Berlin Heidelberg 2006.

UR - http://www.scopus.com/inward/record.url?scp=82755194211&partnerID=8YFLogxK

UR - https://www.scopus.com/record/pubmetrics.uri?eid=2-s2.0-82755194211&origin=recordpage

U2 - 10.1007/11935308_7

DO - 10.1007/11935308_7

M3 - RGC 32 - Refereed conference paper (with host publication)

SN - 9783540494966

VL - 4307 LNCS

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 82

EP - 91

BT - Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings

PB - Springer Verlag

T2 - 8th International Conference on Information and Communications Security, ICICS 2006

Y2 - 4 December 2006 through 7 December 2006

ER -

Yang G, Wong DS, Wang H, Deng X. Formal analysis and systematic construction of two-factor authentication scheme. In Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings. Vol. 4307 LNCS. Springer Verlag. 2006. p. 82-91. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/11935308_7

Formal analysis and systematic construction of two-factor authentication scheme

Abstract

Publication series

Conference

Bibliographical note

Funding

Access Output

Other Access Options

Permanent Link

Other Files and Links

Fingerprint

Cite this