Abstract
As much of the web information nowadays is published by roaming mobile users, and these mobile users may get services from various foreign agents, security, privacy and authentication are important for the roaming service in global mobility networks. In 2011, Chen et al. proposed a lightweight and provably secure user authentication scheme with anonymity for roaming service. We first show that their scheme is susceptible to off-line password attack once a user's smart card is compromised, we also show that it does not provide fair session key generation or user untraceability. The scheme also lacks of user friendliness and perfect forward secrecy. To remedy these weaknesses, we propose a new scheme which is suitable for using in the global mobility network. © 2013 IEEE.
| Original language | English |
|---|---|
| Title of host publication | Proceedings - 2013 International Symposium on Biometrics and Security Technologies, ISBAST 2013 |
| Pages | 124-129 |
| DOIs | |
| Publication status | Published - 2013 |
| Event | 2013 International Symposium on Biometrics and Security Technologies, ISBAST 2013 - Chengdu, Sichuan, China Duration: 2 Jul 2013 → 5 Jul 2013 |
Conference
| Conference | 2013 International Symposium on Biometrics and Security Technologies, ISBAST 2013 |
|---|---|
| Country/Territory | China |
| City | Chengdu, Sichuan |
| Period | 2/07/13 → 5/07/13 |
Research Keywords
- anonymity
- authentication
- global mobility network
- protocol