A lightweight dynamic pseudonym identity based authentication and key agreement protocol without verification tables for multi-server architecture

摘要

Traditional password based authentication schemes are mostly considered insingle server environments. They are unfitted for the multi-server environmentsfrom two aspects. On the one hand, users need to register in each server and tostore large sets of data, including identities and passwords. On the otherhand, servers are required to store a verification table containing useridentities and passwords. Recently, On the base on Sood et al.'sprotocol(2011), Li et al. proposed an improved dynamic identity basedauthentication and key agreement protocol for multi-server architecture(2012).Li et al. claims that the proposed scheme can make up the security weaknessesof Sood et al.'s protocol. Unfortunately, our further research shows that Li etal.'s protocol contains several drawbacks and can not resist some types ofknown attacks, such as replay attack, Deny-of-Service attack, internal attack,eavesdropping attack, masquerade attack, and so on. In this paper, we furtherpropose a light dynamic pseudonym identity based authentication and keyagreement protocol for multi-server architecture. In our scheme, serviceproviding servers don't need to maintain verification tables for users. Theproposed protocol provides not only the declared security features in Li etal.'s paper, but also some other security features, such as traceability andidentity protection.