How to design a secure anonymous authentication and key agreement protocol for multi-server environments and prove its security

Yun Hsin Chuang, Chin Laung Lei, Hung Jr Shiu

Research output: Contribution to journalArticlepeer-review

4 Citations (Scopus)

Abstract

An anonymous authentication and key agreement (AAKA) protocol provides anonymous members symmetric authentication and establishes a symmetric session key for secure communication in public networks. Today, numerous popular remote services are based on multi-server architecture, such as the internet of things (IoT), smart cities, cloud services, vehicular ad hoc networks (VANET), and telecare medicine information systems (TMIS). Many researchers have attempted to design AAKA protocols in multi-server environments for various applications. However, many of these have security defects, even if they have so-called “formal” security proofs. In this paper, we analyze related AAKA protocols to identify the common design defects, expound the process of designing secure AAKA protocols, and explain why the present AAKA protocols still suffer attacks, despite having security proofs. We instruct readers on how to design a secure AAKA protocol and how to prove the security. This paper will therefore be helpful for the design of new AAKA protocols, and for ensuring their security.

Original languageEnglish
Article number1629
JournalSymmetry
Volume13
Issue number9
DOIs
Publication statusPublished - 2021 Sept

All Science Journal Classification (ASJC) codes

  • Computer Science (miscellaneous)
  • Chemistry (miscellaneous)
  • General Mathematics
  • Physics and Astronomy (miscellaneous)

Fingerprint

Dive into the research topics of 'How to design a secure anonymous authentication and key agreement protocol for multi-server environments and prove its security'. Together they form a unique fingerprint.

Cite this