List-Free ID-Based Mutual Authentication and Key Agreement Protocol for Multiserver Architectures

Yuh-Min Tseng, Sen-Shan Huang, Tung Tso Tsai, Jia Hua Ke

Research output: Contribution to journalArticle

19 Citations (Scopus)

Abstract

A multiserver architecture consisting of multiple servers provides resources and services for clients by way of open channels. Thus, a cryptographic protocol should be offered to ensure the legitimacy of both clients and servers, and to provide communication confidentiality. In the past, a large number of ID-based mutual authentication and key agreement (ID-MAKA) protocols have been proposed regarding this issue. Several circumstances require a revocation mechanism to revoke misbehaving/compromised clients and servers before their intended expiration dates. To do so, the existing ID-MAKA protocols generally adopt a black/white list to revoke/permit clients for access authorization. So far, no work addresses the revocation problem on servers in the sense that clients should be notified to avoid malicious services or applications provided by revoked servers. In this letter, we propose the first list-free ID-MAKA protocol with an efficient revocation mechanism for multiserver architectures. Compared with previously proposed protocols, our protocol possesses three main merits. First, it provides a simple revocation mechanism to solve the management problem of both compromised clients and servers. Second, neither clients nor servers need to keep any black/white list. Finally, it is well suitable for mobile clients by performance analysis and experimental data.

Original languageEnglish
Article number7017498
Pages (from-to)102-112
Number of pages11
JournalIEEE Transactions on Emerging Topics in Computing
Volume4
Issue number1
DOIs
Publication statusPublished - 2016 Jan 1

Fingerprint

Authentication
Servers
Network protocols
Communication

All Science Journal Classification (ASJC) codes

  • Computer Science (miscellaneous)
  • Information Systems
  • Human-Computer Interaction
  • Computer Science Applications

Cite this

@article{f9bddc50f96c409eb46dbc1b37be70bf,
title = "List-Free ID-Based Mutual Authentication and Key Agreement Protocol for Multiserver Architectures",
abstract = "A multiserver architecture consisting of multiple servers provides resources and services for clients by way of open channels. Thus, a cryptographic protocol should be offered to ensure the legitimacy of both clients and servers, and to provide communication confidentiality. In the past, a large number of ID-based mutual authentication and key agreement (ID-MAKA) protocols have been proposed regarding this issue. Several circumstances require a revocation mechanism to revoke misbehaving/compromised clients and servers before their intended expiration dates. To do so, the existing ID-MAKA protocols generally adopt a black/white list to revoke/permit clients for access authorization. So far, no work addresses the revocation problem on servers in the sense that clients should be notified to avoid malicious services or applications provided by revoked servers. In this letter, we propose the first list-free ID-MAKA protocol with an efficient revocation mechanism for multiserver architectures. Compared with previously proposed protocols, our protocol possesses three main merits. First, it provides a simple revocation mechanism to solve the management problem of both compromised clients and servers. Second, neither clients nor servers need to keep any black/white list. Finally, it is well suitable for mobile clients by performance analysis and experimental data.",
author = "Yuh-Min Tseng and Sen-Shan Huang and Tsai, {Tung Tso} and Ke, {Jia Hua}",
year = "2016",
month = "1",
day = "1",
doi = "10.1109/TETC.2015.2392380",
language = "English",
volume = "4",
pages = "102--112",
journal = "IEEE Transactions on Emerging Topics in Computing",
issn = "2168-6750",
publisher = "IEEE Computer Society",
number = "1",

}

List-Free ID-Based Mutual Authentication and Key Agreement Protocol for Multiserver Architectures. / Tseng, Yuh-Min; Huang, Sen-Shan; Tsai, Tung Tso; Ke, Jia Hua.

In: IEEE Transactions on Emerging Topics in Computing, Vol. 4, No. 1, 7017498, 01.01.2016, p. 102-112.

Research output: Contribution to journalArticle

TY - JOUR

T1 - List-Free ID-Based Mutual Authentication and Key Agreement Protocol for Multiserver Architectures

AU - Tseng, Yuh-Min

AU - Huang, Sen-Shan

AU - Tsai, Tung Tso

AU - Ke, Jia Hua

PY - 2016/1/1

Y1 - 2016/1/1

N2 - A multiserver architecture consisting of multiple servers provides resources and services for clients by way of open channels. Thus, a cryptographic protocol should be offered to ensure the legitimacy of both clients and servers, and to provide communication confidentiality. In the past, a large number of ID-based mutual authentication and key agreement (ID-MAKA) protocols have been proposed regarding this issue. Several circumstances require a revocation mechanism to revoke misbehaving/compromised clients and servers before their intended expiration dates. To do so, the existing ID-MAKA protocols generally adopt a black/white list to revoke/permit clients for access authorization. So far, no work addresses the revocation problem on servers in the sense that clients should be notified to avoid malicious services or applications provided by revoked servers. In this letter, we propose the first list-free ID-MAKA protocol with an efficient revocation mechanism for multiserver architectures. Compared with previously proposed protocols, our protocol possesses three main merits. First, it provides a simple revocation mechanism to solve the management problem of both compromised clients and servers. Second, neither clients nor servers need to keep any black/white list. Finally, it is well suitable for mobile clients by performance analysis and experimental data.

AB - A multiserver architecture consisting of multiple servers provides resources and services for clients by way of open channels. Thus, a cryptographic protocol should be offered to ensure the legitimacy of both clients and servers, and to provide communication confidentiality. In the past, a large number of ID-based mutual authentication and key agreement (ID-MAKA) protocols have been proposed regarding this issue. Several circumstances require a revocation mechanism to revoke misbehaving/compromised clients and servers before their intended expiration dates. To do so, the existing ID-MAKA protocols generally adopt a black/white list to revoke/permit clients for access authorization. So far, no work addresses the revocation problem on servers in the sense that clients should be notified to avoid malicious services or applications provided by revoked servers. In this letter, we propose the first list-free ID-MAKA protocol with an efficient revocation mechanism for multiserver architectures. Compared with previously proposed protocols, our protocol possesses three main merits. First, it provides a simple revocation mechanism to solve the management problem of both compromised clients and servers. Second, neither clients nor servers need to keep any black/white list. Finally, it is well suitable for mobile clients by performance analysis and experimental data.

UR - http://www.scopus.com/inward/record.url?scp=84963760581&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84963760581&partnerID=8YFLogxK

U2 - 10.1109/TETC.2015.2392380

DO - 10.1109/TETC.2015.2392380

M3 - Article

AN - SCOPUS:84963760581

VL - 4

SP - 102

EP - 112

JO - IEEE Transactions on Emerging Topics in Computing

JF - IEEE Transactions on Emerging Topics in Computing

SN - 2168-6750

IS - 1

M1 - 7017498

ER -