Abstract
The concept of “sharing economy” has become even more popular rapidly among people around the world nowadays, based on which, a new thing of “car-sharing” shows up in front the people. Though the problems related to security have been well studied, the protection of user data privacy in such type of protocols is still pending. In order to effectively improve the security performance of remote authentication protocol, the standard challenge/response mechanism is introduced in this study to propose a novel identity authentication key-exchange protocol, which is designed based on password and biologic features by two times of modular exponentiation operations and some certain lightweight symmetric operation, as well as biological feature authentication achieved by smart phones. In fact, the security performance of the above-mentioned protocol relies on Hash function unidirectionality and biological features. Meanwhile, the protocol protects users' anonymity to the maximum extent. Even if the smart phone is compromised by malicious code or gets lost, the protocol can also protect user's privacy data. The security proof and performance analysis under the security model show that the proposed protocol can resist dictionary attack, man-in-the-middle attack, replay attack, impersonation attack, insider attack, etc.
Published Version
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call