Providing impersonation resistance for biometric-based authentication scheme in mobile cloud computing service

Abstract

Mobile cloud computing (MCC) is an emerging computing model with the growing demands of mobile devices by services diversity using mobile cloud technology. Authentication plays a fundamental role between the smart portable devices located in different places and the mobile cloud computing service providers in MCC. Several authors presented many authentication schemes using different cryptographic approaches for MCC in the past years. However, those schemes have not solved the impersonation attack well. To conquer this suffering and support more security functionalities, we propose an impersonation resistance for a biometric-based authentication scheme using hashing and symmetric parameter function in an MCC environment. The proposed scheme can provide mutual authentication and anonymity using the software AVISPA. The security of the proposed scheme is formally proved in the random oracle model. Regarding functionality and performance analysis, the comparative studies demonstrate that the design has a trade-off between resource consumption and security strengthens for MCC services. Therefore, the proposed scheme is more practical in MCC application.