Enhanced and secured random number generation for eUASBP

Abstract

Authentication is needed for vital applications around the world. Applications that deal with sensitive information need to be kept secret through anyone type of authentication mode. Password-based smart card authentication is a generic model of authentication. Many password-based smart card authentication protocols have been proposed by Sangeetha et al., Giri et al., Jia et al. , Das et al. and so on. Those protocols provide protection against many type of attacks such as offline password guessing attack, server masquerading attack, user impersonation attack, privileged insider attack, but they are open to Crypt analytic attack, Cloning attack, and Reverse engineering attack. This paper proposes an authentication protocol that is termed as hrngRO- hybrid RNG by RO-PUF and SHA-256 for eUASBP simulated using AVISPA tool. It provides Ring Oscillator PUF based random number generator using the SHA-256 hash function. This hybrid combination of RNG makes hrngRO more secure against Crypt analytic attack, Cloning attack, Reverse engineering attack and makes the system even faster. Pre Early Wrong Password Detection is supported by hrngRO using bloom filters. hrngRO provides protection against many types of attacks like other authentication protocols and it also provides additional security by avoiding the above-mentioned attacks. Security of hrngRO is tested using AVISPA tool.