A pairing-based user authentication scheme for wireless clients with smart cards

Yuh-Min Tseng, Tsu Yang Wu, Jui Di Wu

Research output: Contribution to journalArticle

69 Citations (Scopus)

Abstract

With rapid growth of mobile wireless networks, handheld devices are popularly used by people and many mobile applications have been rapidly developed. Considering the limited computing capability of smart cards or mobile devices, the security scheme design suitable for these mobile devices is a nontrivial challenge. A user authentication scheme is a mechanism to authenticate a remote user over an open network. In 2006, Das et al. proposed an identity (ID)-based remote user authentication scheme with smart cards using bilinear pairings. Unfortunately, their scheme is insecure against forgery attack. Recently, Giri and Srivastava proposed an improved scheme to overcome the forgery attack. The computational cost required by the Giri-Srivastava scheme is expensive, especially for smart cards with limited computing capability. In addition, the Giri-Srivastava scheme is unable to be used for a multi-server environment. This paper presents an efficient and secure ID-based remote user authentication scheme using bilinear pairings. Based on the computational Diffie-Hellman assumption, we show that the proposed scheme is secure against existential forgery on adaptively chosen-message and ID attack in the random oracle model. As compared with the recently proposed pairing-based authentication schemes, our scheme has better performance in term of the computational cost and it is suitable for a multi-server environment in distributed networks. Performance analysis and experimental data of related pairing operations on smartcards are given to demonstrate that our scheme is well suited for mobile devices with limited computing capability.

Original languageEnglish
Pages (from-to)285-302
Number of pages18
JournalInformatica
Volume19
Issue number2
Publication statusPublished - 2008 Jan 1

Fingerprint

User Authentication
Smart cards
Smart Card
Pairing
Authentication
Mobile devices
Wireless networks
Servers
Mobile Devices
Bilinear Pairings
Costs
Multi-server
Identity-based
Attack
Computational Cost
Computing
Handheld Devices
Random Oracle Model
Distributed Networks
Diffie-Hellman

All Science Journal Classification (ASJC) codes

  • Information Systems
  • Applied Mathematics

Cite this

Tseng, Yuh-Min ; Wu, Tsu Yang ; Wu, Jui Di. / A pairing-based user authentication scheme for wireless clients with smart cards. In: Informatica. 2008 ; Vol. 19, No. 2. pp. 285-302.
@article{afc213cb75fa4be8acfd803aaf468eab,
title = "A pairing-based user authentication scheme for wireless clients with smart cards",
abstract = "With rapid growth of mobile wireless networks, handheld devices are popularly used by people and many mobile applications have been rapidly developed. Considering the limited computing capability of smart cards or mobile devices, the security scheme design suitable for these mobile devices is a nontrivial challenge. A user authentication scheme is a mechanism to authenticate a remote user over an open network. In 2006, Das et al. proposed an identity (ID)-based remote user authentication scheme with smart cards using bilinear pairings. Unfortunately, their scheme is insecure against forgery attack. Recently, Giri and Srivastava proposed an improved scheme to overcome the forgery attack. The computational cost required by the Giri-Srivastava scheme is expensive, especially for smart cards with limited computing capability. In addition, the Giri-Srivastava scheme is unable to be used for a multi-server environment. This paper presents an efficient and secure ID-based remote user authentication scheme using bilinear pairings. Based on the computational Diffie-Hellman assumption, we show that the proposed scheme is secure against existential forgery on adaptively chosen-message and ID attack in the random oracle model. As compared with the recently proposed pairing-based authentication schemes, our scheme has better performance in term of the computational cost and it is suitable for a multi-server environment in distributed networks. Performance analysis and experimental data of related pairing operations on smartcards are given to demonstrate that our scheme is well suited for mobile devices with limited computing capability.",
author = "Yuh-Min Tseng and Wu, {Tsu Yang} and Wu, {Jui Di}",
year = "2008",
month = "1",
day = "1",
language = "English",
volume = "19",
pages = "285--302",
journal = "Informatica",
issn = "0868-4952",
publisher = "IOS Press",
number = "2",

}

A pairing-based user authentication scheme for wireless clients with smart cards. / Tseng, Yuh-Min; Wu, Tsu Yang; Wu, Jui Di.

In: Informatica, Vol. 19, No. 2, 01.01.2008, p. 285-302.

Research output: Contribution to journalArticle

TY - JOUR

T1 - A pairing-based user authentication scheme for wireless clients with smart cards

AU - Tseng, Yuh-Min

AU - Wu, Tsu Yang

AU - Wu, Jui Di

PY - 2008/1/1

Y1 - 2008/1/1

N2 - With rapid growth of mobile wireless networks, handheld devices are popularly used by people and many mobile applications have been rapidly developed. Considering the limited computing capability of smart cards or mobile devices, the security scheme design suitable for these mobile devices is a nontrivial challenge. A user authentication scheme is a mechanism to authenticate a remote user over an open network. In 2006, Das et al. proposed an identity (ID)-based remote user authentication scheme with smart cards using bilinear pairings. Unfortunately, their scheme is insecure against forgery attack. Recently, Giri and Srivastava proposed an improved scheme to overcome the forgery attack. The computational cost required by the Giri-Srivastava scheme is expensive, especially for smart cards with limited computing capability. In addition, the Giri-Srivastava scheme is unable to be used for a multi-server environment. This paper presents an efficient and secure ID-based remote user authentication scheme using bilinear pairings. Based on the computational Diffie-Hellman assumption, we show that the proposed scheme is secure against existential forgery on adaptively chosen-message and ID attack in the random oracle model. As compared with the recently proposed pairing-based authentication schemes, our scheme has better performance in term of the computational cost and it is suitable for a multi-server environment in distributed networks. Performance analysis and experimental data of related pairing operations on smartcards are given to demonstrate that our scheme is well suited for mobile devices with limited computing capability.

AB - With rapid growth of mobile wireless networks, handheld devices are popularly used by people and many mobile applications have been rapidly developed. Considering the limited computing capability of smart cards or mobile devices, the security scheme design suitable for these mobile devices is a nontrivial challenge. A user authentication scheme is a mechanism to authenticate a remote user over an open network. In 2006, Das et al. proposed an identity (ID)-based remote user authentication scheme with smart cards using bilinear pairings. Unfortunately, their scheme is insecure against forgery attack. Recently, Giri and Srivastava proposed an improved scheme to overcome the forgery attack. The computational cost required by the Giri-Srivastava scheme is expensive, especially for smart cards with limited computing capability. In addition, the Giri-Srivastava scheme is unable to be used for a multi-server environment. This paper presents an efficient and secure ID-based remote user authentication scheme using bilinear pairings. Based on the computational Diffie-Hellman assumption, we show that the proposed scheme is secure against existential forgery on adaptively chosen-message and ID attack in the random oracle model. As compared with the recently proposed pairing-based authentication schemes, our scheme has better performance in term of the computational cost and it is suitable for a multi-server environment in distributed networks. Performance analysis and experimental data of related pairing operations on smartcards are given to demonstrate that our scheme is well suited for mobile devices with limited computing capability.

UR - http://www.scopus.com/inward/record.url?scp=47949104161&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=47949104161&partnerID=8YFLogxK

M3 - Article

VL - 19

SP - 285

EP - 302

JO - Informatica

JF - Informatica

SN - 0868-4952

IS - 2

ER -