Several password and smart-card based two-factor security remote user authentication protocols for multi-server environment have been proposed for the last two decades. Due to tamper-resistant nature of smart cards, the security parameters are stored in it and it is also a secure place to perform authentication process. However, if the smart card is lost or stolen, it is possible to extract the information stored in smart card using power analysis attack. Hence, the two factor security protocols are at risk to various attacks such as password guessing attack, impersonation attack, replay attack and so on. Therefore, to enhance the level of security, researchers have focused on three-factor (Password, Smart Card, and Biometric) security authentication scheme for multi-server environment. In existing biometric based authentication protocols, keys are generated using fuzzy extractor in which keys cannot be renewed. This property of fuzzy extractor is undesirable for revocation of smart card and re-registration process when the smart card is lost or stolen. In addition, existing biometric based schemes involve public key cryptosystem for authentication process which leads to increased computation cost and communication cost. In this paper, we propose a new multi-server authentication protocol using smart card, hash function and fuzzy embedder based biometric. We use Burrows–Abadi–Needham logic to prove the correctness of the new scheme. The security features and efficiency of the proposed scheme is compared with recent schemes and comparison results show that this scheme provides strong security with a significant efficiency.
相似文献 |
|||||||
|
|||||||
|
共查询到20条相似文献,搜索用时 125 毫秒
1.
《电子科技文摘》2006,(9)
0625032 TCTS中IC卡动态密钥机制的设计[刊,中]/莫松海//信息安全与通信保密.—2006,(1).—74-76(L)本文分析了高速公路收费系统(ETCS)中非接触IC卡一卡一密的安全机制,提出了一种改进的动态密钥机制,实现非接触IC卡一次一密和卡内收费信息的验证。该机制较好地弥补了一卡一密制存在的不足。参5 0625033基于数字权限管理的指纹视频技术研究[刊,中]/朱玉玺//电视技术.—2006,(6).—89-92(L)在部分加密的基础上,说明了数字指纹嵌入和视频加扰编码算法结合的应用算法。提出了一种新的指纹嵌入和解密集成的一体化技术方案结构。参6 相似文献
2.
采用Philips的基于射频技术为核心的非接触IC卡Mifare ones50,加上AT89C52单片机为控制嚣的IC卡读写器,可以构成学校机房自动收费系统。IC卡读写器可以实现写卡,读卡等功能,具有安全、实用、方便,快捷、可靠性高的特点,解决了校园机房的收费管理问题,在类似场夸也有广逅的应用前景。 相似文献
4.
随着非接触IC卡控制系统的应用规模不断扩大,传统的以单片机为核心处理器的控制系统已经渐渐不能满足大容量非接触IC卡系统发展的要求。为了扩大非接触IC卡控制系统的存储容量、提高非接触式IC卡控制系统的处理速度,文中提出一种基于DSP芯片的快速控制系统设计思想,给出了系统的实行方案。实际应用结果表明,系统运行稳定、实时性好、成本较低、方案可行。 相似文献
5.
随着人口增长和社会发展,城市交通面临巨大的压力和挑战。公共交通系统在缓解交通压力以及环境污染方面起了具足轻重的作用。本文对现有的公交车收费方式进行了改进,设计了一种智能公交车收费系统。该系统通过应用车载预付费IC卡阅读器和找零IC卡阅读器,根据乘客的乘车距离计算所需乘车费用,实现智能化收费。 相似文献
6.
例1.故障现象:插入IC卡后液晶屏无显示。分析检修:该现象一般是由于用户将金属物或其它杂物落入IC卡槽,导致IC卡槽内金属簧片变形与IC卡上的铜箔无法正常接触。检修时将IC卡槽拆下,清除金属物及其它杂物并调整接触簧片至接触正常或直接更换IC卡槽即可。 相似文献
7.
上海市齐济电子有限公司 《电子工程师》2004,30(9):i002-i005,i008
采用PHILIPS公司的Mifare卡作IC卡,设计以射频技术为核心,以单片机为控制器的IC卡读写器在公交自动收费系统中的应用。制作的IC卡读写器可以实现制卡、售卡、自动收费等功能,具有安全、实用、方便、快捷、可靠性高的特点,解决了城市公共交通服务行业既频繁又琐碎的收费管理问题,有广泛的应用前景。 相似文献
8.
有线电视IC卡管理系统(以下简称收费系统)由IC卡智能用户分配器(以下简称用户分配器)和收费管理机组成(图1)。该系统集计算机技术、通讯技术于一体,与RF信号用户分配器有机结合,构成一种全新的星 相似文献
9.
10.
信息时代非接触IC卡技术有十分良好的应用前景。从应用角度介绍了基于E5550/U2270B器件构成的一种低频非接触IC卡系统,并对系统的通讯协议做了详尽分析和介绍。 相似文献
11.
IC卡预付费产品系统数据安全性的研究 总被引:2,自引:0,他引:2
该文简要介绍了IC卡预付费产品系统的基本构成,并就IC卡密码安全,卡上数据加密和数据校验三个方面进行讨论,提出了一个新的综合数据安全方案,有效防止系统数据遭受被动攻击和主动攻击。尤其是引进加密锁,运用多层密钥加密机制,为IC卡预付费产品系统数据安全提供了一个新思路。 相似文献
12.
数字签名是一种应用于网络安全的重要安全机制,智能卡或Token是用来实现数字签名验证的安全硬件载体,如何在硬件载体上实现数字签名是一个较为关键的问题.本文根据接触式智能卡系列标准及PKCS (Public Key Cryptographic Standard)系列相关标准,成功实现了智能卡操作系统上的RSA(一种非对称公钥密码算法)算法下的数字签名、身份认证、信息加解密、密钥分配,并着重解析了应用中智能卡RSA算法实现方面的关键问题,提出了若干解决方案. 相似文献
13.
14.
15.
16.
Shreeya Swagatika Sahoo Sujata Mohanty Banshidhar Majhi 《Wireless Personal Communications》2018,101(3):1307-1333
The smart card based password authentication scheme is one of the most important and efficient security mechanism, which is used for providing security to authorized users over an insecure network. In this paper, we analyzed major security flaws of Jangirala et al.’s scheme and proved that it is vulnerable to forgery attack, replay attack, user impersonation attack. Also, Jangirala et al.’s scheme fail to achieve mutual authentication as it claimed. We proposed an improved two factor based dynamic ID based authenticated key agreement protocol for the multiserver environment. The proposed scheme has been simulated using widely accepted AVISPA tool. Furthermore, mutual authentication is proved through BAN logic. The rigorous security and performance analysis depicts that the proposed scheme provides users anonymity, mutual authentication, session key agreement and secure against various active attacks. 相似文献
17.
18.
19.
随着数字信息的使用越来越广泛,信息遭受攻击的次数和种类也越来越多,现阶段的智能卡身份验证架构在安全性和性能上,依然有一定程度的提升空间。在基于智能卡安全性的前提下,增加智能卡进行身份认证时的计算性能,加入了NFC近距离无线通信技术,以目前个人式手持设备中使用率最高的手机为例,模拟NFC手机在ATM上进行用户身份认证的沟通流程,以期能为用户提供一个崭新、可靠、便利性高的安全通信机制。 相似文献
20.
In global mobility networks, anonymous user authentication is an essential task for enabling roaming service. In a recent paper, Jiang et al. proposed a smart card based anonymous user authentication scheme for roaming service in global mobility networks. This scheme can protect user privacy and is believed to have many abilities to resist a range of network attacks, even if the secret information stored in the smart card is compromised. In this paper, we analyze the security of Jiang et al.’s scheme, and show that the scheme is in fact insecure against the stolen-verifier attack and replay attack. Then, we also propose a new smart card based anonymous user authentication scheme for roaming service. Compared with the existing schemes, our protocol uses a different user authentication mechanism, which does not require the home agent to share a static secret key with the foreign agent, and hence, it is more practical and realistic. We show that our proposed scheme can provide stronger security than previous protocols. 相似文献
|
| 设为首页 | 免责声明 | 关于勤云 | 加入收藏 |
|
Copyright©北京勤云科技发展有限公司 京ICP备09084417号 |