Hash Based Multi-server Key Exchange Protocol Using Smart Card

摘要

With the aim to use numerous network based services through one time user/client registration, lots of works have been done. Most of the work uses password based login mechanism, out of which biometric information based login mechanism, is considered to be the most secured. But all of the previous work for establishing multi-server mutual authentication between client and server are based on single registration center, where all servers and clients are registered at common registration center. In this paper, we are propose a novel biometric password based key exchange authentication protocol using smart card for multi-registration centers in distributed multiple client-server architecture. Proposed protocol equipped with many security feature like user's identity protection and its traceability and resistance to attacks such as password guessing, known password, stolen smart card, smart card forgery, inside, message spoofing and replay. This protocol also has user friendly and efficient user's login password update.