Abstract: In secure instantiation generic framework, password authentication is the most common authentication system. Passwords provide a convenient and inexpensive methodology. However, remembering multiple passwords and changing them frequently lead to the usage of lower entropy passwords which are susceptible to adversaries’ guessing attacks. In this paper, a new multi-factor authenticated key exchange scheme, which combines with biometrics, image recogonization, password and the smart card, is proposed. Compared with the previous schemes, this scheme has higher security in remote authentication and preserves privacy of biometrics, and most of the previous schemes rely on the smart card to verify biometrics. The advantage of these approaches is that the user’s biometrics is not shared with the remote server, which can resist insider’s attack and preserve the privacy of the biometrics. The disadvantage is that the remote server must trust the smart card to perform authentication, which leads to various vulnerabilities. To achieve multifactor authentication, a new function called one-way function with distance-keeping, which is used to preserve privacy of user’s biometrics, is introduced. This scheme has advantages as multi-factor authentication, privacy preserving and lower communication complexity etc. It is proven secure under the random oracle and is suitable to the environment which lacked communication resource and needed higher security.
Keywords: Authentication, security, privacy, password, smart card, image recogonization biometrics.
Title: A Novel Multi-factor Authenticated Key Exchange Scheme with Provably Secure Instantiation
Author: Gowthami M, R.Ramesh
International Journal of Computer Science and Information Technology Research
ISSN 2348-1196 (print), ISSN 2348-120X (online)
Research Publish Journals
