Anonymous two factor authentication protocol for roaming service in global mobility network with security beyond traditional limit

Abstract

In a globalized world, the mobile user roams frequently from one place to other. Global mobility network provides roaming services to a mobile user when the mobile user is away from his home network and wants to avail the services of the foreign network. Roaming authentication protocol supports authentication between the mobile user and the foreign server in global mobility network so that the malicious user can not get access the roaming services in the foreign network. Moreover, privacy-preserving authentication between the mobile user and the foreign server is an essential technology for the secure access of global mobility network because mobile user’s privacy protection has become a major issue due to increasingly misuse of consumer’s private data by various organizations and individuals. Many privacy-preserving two-factor authentication protocols have been proposed to provide secure roaming services in global mobility network but they failed to support privacy and security while ensuring efficient typo detection by the smart card. We propose a privacy-preserving secure two-factor authentication protocol for roaming service in global mobility network which not only ensures the privacy of the mobile user but also provides efficient typo detection using fuzzy verifier and honeyword technique. Moreover, the proposed protocol overcomes the problem of desynchronization attack using public key encryption technique based on quadratic residue assumption with low computational load at the mobile user.