- 期刊
- OpenAccess
Improvement on a Chaotic Map-based Mutual Anonymous Authentication Protocol
摘要
Designing a secure anonymous authentication protocol is never an easy task where anonymity and authenticity are sometime conflicting to each other. Zhou et al. addressed the privacy requirement in their proposed three-party password-based authenticated key exchange (3PAKE) protocols using chaotic maps. Unfortunately, in this paper, we show that their protocol is vulnerable to a man-in-the-middle attack, an off-line password guessing attack, and a replay attack. To enhance the security, we propose a secure chaotic map-based 3PAKE protocol with mutual anonymity. Moreover, the security of our protocol is proved in the random oracle model. Also, analysis shows that the proposed scheme is more secure with similar performance.
延伸閱讀
- Zhou, Y., Zhou, J., Wang, F., & Guo, F. (2016). An Efficient Chaotic Map-Based Authentication Scheme with Mutual Anonymity. Applied Computational Intelligence and Soft Computing, 2016(), 129-138. https://doi.org/10.1155/2016/3916942
- Zhu, H., & Liu, J. (2018). Provably Secure and Repeatable Authenticated Privacy-Protection Scheme Using Chaotic Maps with Distributed Architecture. International Journal of Network Security, 20(3), 463-471. https://doi.org/10.6633/IJNS.201805.20(3).08
- Lin, W. C. (2007). A Secure Post-Authentication with Provisional Data Channel [master's thesis, National Tsing Hua University]. Airiti Library. https://doi.org/10.6843/NTHU.2007.00319
- Chang, I. P. (2018). ENHANCED CHAOTIC MAP-BASED AUTHENTICATED KEY AGREEMENT WITH PRIVACY PROTECTION FOR MULTI-RECEIVER ENVIRONMENT. Journal of Data Analysis, 13(5), 31-43. https://doi.org/10.6338/JDA.201810_13(5).0003
- Feng, T., Zou, C., Liu, C., & Hao, Z. (2013). Mutual-Anonymity and Authentication Key Agreement Protocol. Research Journal of Information Technology, 5(3), 81-86. https://www.airitilibrary.com/Article/Detail?DocID=20413114-201309-201502140031-201502140031-81-86