DeepAI AI Chat
Log In Sign Up

A Secure and Improved Multi Server Authentication Protocol Using Fuzzy Commitment

by   Hafeez Ur Rehman, et al.

Very recently, Barman et al. proposed a multi-server authentication protocol using fuzzy commitment. The authors claimed that their protocol provides anonymity while resisting all known attacks. In this paper, we analyze that Barman et al.'s protocol is still vulnerable to anonymity violation attack and impersonation based on the stolen smart attack; moreover, it has scalability issues. We then propose an improved and enhanced protocol to overcome the security weaknesses of Barman et al.'s scheme. The security of the proposed protocol is verified using BAN logic and widely accepted automated AVISPA tool. The BAN logic and automated AVISPA along with the informal analysis ensures the robustness of the scheme against all known attacks


page 1

page 2

page 3

page 4


Comment on "Provably secure biometric-based client-server secure communication over unreliable networks"

In key agreement protocols, the user will send a request to the server a...

On the Security of A Remote Cloud Storage Integrity Checking Protocol

Data security and privacy is an important but challenging problem in clo...

Cryptanalysis of Khatoon et al.'s ECC-based Authentication Protocol for Healthcare Systems

Telecare medical information systems are gaining rapid popularity in ter...

Enhanced Session Initiation Protocols for Emergency Healthcare Applications

In medical emergencies, an instant and secure messaging is an important ...

A New Look at the Refund Mechanism in the Bitcoin Payment Protocol

BIP70 is the Bitcoin payment protocol for communication between a mercha...