Lightweight and provably secure user authentication with anonymity for the global mobility network

Chun Chen, Daojing He, Sammy Chan, Jiajun Bu, Yi Gao, Rong Fan

Research output: Journal Publications and ReviewsRGC 21 - Publication in refereed journalpeer-review

119 Citations (Scopus)

Abstract

Seamless roaming in the global mobility network (GLOMONET) is highly desirable for mobile users, although their proper authentication is challenging. This is because not only are wireless networks susceptible to attacks, but also mobile terminals have limited computational power. Recently, some authentication schemes with anonymity for the GLOMONET have been proposed. This paper shows some security weaknesses in those schemes. Furthermore, a lightweight and provably secure user authentication scheme with anonymity for the GLOMONET is proposed. It uses only symmetric cryptographic and hash operation primitives for secure authentication. Besides, it takes only four message exchanges among the user, foreign agent and home agent. We also demonstrate that this protocol enjoys important security attributes including prevention of various attacks, single registration, user anonymity, user friendly, no password/verifier table, and use of one-time session key between mobile user and foreign agent. The security properties of the proposed protocol are formally validated by a model checking tool called AVISPA. Furthermore, as one of the new features in our protocol, it can defend smart card security breaches. © 2010 John Wiley & Sons, Ltd.
Original languageEnglish
Pages (from-to)347-362
JournalInternational Journal of Communication Systems
Volume24
Issue number3
DOIs
Publication statusPublished - Mar 2011

Research Keywords

  • anonymity
  • authentication
  • global mobility network
  • model checking
  • security
  • smart card

Fingerprint

Dive into the research topics of 'Lightweight and provably secure user authentication with anonymity for the global mobility network'. Together they form a unique fingerprint.

Cite this