Abstract
Lwamo et al. recently proposed a robust and efficient remote single and multi-server biometric authentication scheme using smart card and RSA. The scheme is vulnerable to the smart card lost attacks; therefore, the scheme cannot resist offline guessing attacks and user impersonation attacks, and cannot provide forward security and user anonymity. To address these issues, we propose a new privacy-preserving ring learning with errors (RLWE)-based remote biometric authentication scheme (RRBAS) for single and multi-server environments. RRBAS is the first lattice-based remote biometric authentication scheme for multi-server environments. Security analysis show that RRBAS can satisfy the authenticated key exchange (AKE) security in the random oracle model, resist known security attacks, and provide post-quantum security. The experimental evaluation and comparative analysis show that RRBAS's computational efficiency is better than that of Lwamo et al., while the communication efficiency is slightly lower than traditional schemes because of the large-size ciphertext of the lattice-based cryptosystem, but it is fully capable of session key agreement in single and multi-server environments.
Highlights
As the information society becomes more developed, the higher the reliance on information, and the higher the security requirements for sensitive information during the processes of information storage, exchange, and use.The associate editor coordinating the review of this manuscript and approving it for publication was Zahid Akhtar.The development of modern communication technologies facilitates information exchanges that are almost free of time and space constraints
We propose a privacy-preserving ring learning with errors (RLWE)-based remote biometric authentication scheme for single and multi-server environments (RRBAS), which is a distributed remote authentication system using hash functions to mask user IDs and passwords, protects the biometric information using fuzzy extractor [10], [23], and uses an efficient RLWE-based public key encryption scheme to achieve the security of this information during transmission
In this work we propose the first RLWE-based threefactor remote biometric authentication scheme for single and multi-server environments
Summary
As the information society becomes more developed, the higher the reliance on information, and the higher the security requirements for sensitive information during the processes of information storage, exchange, and use. A. OUR CONTRIBUTIONS To overcome the above challenges, this work proposes a privacy-preserving post-quantum security remote authentication scheme for single and multi-server environments. We summarized our main contributions as follows: Our scheme can provide authenticated key exchange (AKE) security in the random oracle model (ROM ) and resist known security attacks Both computational and communication overheads are achieved at a practical level. We propose a privacy-preserving ring learning with errors (RLWE)-based remote biometric authentication scheme for single and multi-server environments (RRBAS), which is a distributed remote authentication system using hash functions to mask user IDs and passwords, protects the biometric information using fuzzy extractor [10], [23], and uses an efficient RLWE-based public key encryption scheme to achieve the security of this information during transmission.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
