首页> 外文会议>Web information systems and mining >Comments on an Advanced Dynamic ID-Based Authentication Scheme for Cloud Computing

【24h】

Comments on an Advanced Dynamic ID-Based Authentication Scheme for Cloud Computing

机译：评论基于云的高级基于动态ID的身份验证方案

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

The design of secure remote user authentication schemes for mobile devices in Cloud Computing is still an open and quite challenging problem, though many such schemes have been published lately. Recently, Chen et al. pointed out that Yang and Chang's ID-based authentication scheme based on elliptic curve cryptography (ECC) is vulnerable to various attacks, and then presented an improved password based authentication scheme using ECC to overcome the drawbacks. Based on heuristic security analysis, Chen et al. claimed that their scheme is more secure and can withstand all related attacks. In this paper, however, we show that Chen et al.'s scheme cannot achieve the claimed security goals and report its flaws: (1) It is vulnerable to offline password guessing attack; (2) It fails to preserve user anonymity; (3) It is prone to key compromise impersonation attack; (4) It suffers from the clock synchronization problem. The cryptanalysis demonstrates that the scheme under study is unfit for practical use in Cloud Computing environment.

机译：尽管最近已经发布了许多此类方案，但针对云计算中的移动设备的安全远程用户身份验证方案的设计仍然是一个开放且颇具挑战性的问题。最近，Chen等。指出，Yang and Chang基于椭圆曲线密码学（ECC）的基于ID的身份验证方案容易受到各种攻击，然后提出了一种改进的基于ECC的基于密码的身份验证方案，以克服这些缺点。基于启发式安全分析，Chen等。声称他们的方案更安全，可以抵御所有相关攻击。然而，在本文中，我们证明了Chen等人的方案无法实现声称的安全目标并报告了其缺陷：（1）容易受到离线密码猜测攻击的攻击；（2）无法保持用户匿名；（3）容易发生密钥泄露假冒攻击；（4）遭受时钟同步问题。密码分析表明，所研究的方案不适合在云计算环境中实际使用。

著录项

来源
《Web information systems and mining》|2012年|246-253|共8页
会议地点 Chengdu(CN)
作者
Ding Wang; Ying Mei; Chun-guang Ma; Zhen-shan Cui;
展开▼
作者单位

Department of Training, Automobile Sergeant Institute of PLA, Bengbu, China,Harbin Engineering University, Harbin City 150001, China;

Department of Training, Automobile Sergeant Institute of PLA, Bengbu, China;

Harbin Engineering University, Harbin City 150001, China;

Harbin Engineering University, Harbin City 150001, China;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
Dynamic ID; Authentication protocol; Elliptic curve cryptography; Cryptanalysis; Cloud Computing;

机译：动态ID；认证协议；椭圆曲线密码学；密码分析云计算;

相似文献

外文文献
中文文献
专利

1. ID-Based User Authentication Scheme for Cloud Computing [J] . Ping-Liang Chen, Jen-Ho Yang, Ching-I Lin 电子科技学刊：英文版 . 2013,第002期

机译：基于身份的云计算用户认证方案
2. A provably secure dynamic ID-based authenticated key agreement framework for mobile edge computing without a trusted party [J] . Mishra Dheerendra, Dharminder Dharminder, Yadav Preeti, Information Security Technical Report . 2020,第Deca期

机译：一种可提供的基于安全的动态ID身份验证的Moversion Edit验证的密钥协议框架，用于移动边缘计算，没有可信政党
3. Efficient and secure two-factor dynamic ID-based password authentication scheme with provable security [J] . Mishra Dheerendra Cryptologia . 2018,第2期

机译：高效且安全的两因素基于动态ID的密码身份验证方案，具有可证明的安全性
4. Comments on an Advanced Dynamic ID-Based Authentication Scheme for Cloud Computing [C] . Ding Wang, Ying Mei, Chun-guang Ma, International Conference on Web Information Systems and Mining . 2012

机译：关于云计算的高级动态ID身份验证方案的评论
5. Application of Blockchain for Authentication, Verification of Identity and Cloud Computing [D] . Kuebler, Raymond G. 2018

机译：区块链在身份验证，身份验证和云计算中的应用
6. An efficient dynamic ID-based remote user authentication scheme using self-certified public keys for multi-server environments [O] . Shudong Li, Xiaobo Wu, Dawei Zhao, 2012

机译：一种有效的基于动态ID的远程用户身份验证方案，该方案使用了用于多个服务器环境的自认证公钥
7. An enhanced dynamic ID-based authentication scheme for telecare medical information systems [O] . Chaturvedi Ankita, Mishra Dheerendra, Mukhopadhyay Sourav 2017

机译：远程医疗信息系统的基于动态ID的增强型身份验证方案

Comments on an Advanced Dynamic ID-Based Authentication Scheme for Cloud Computing

摘要

著录项

相似文献

相关主题

期刊订阅