مرکز منطقه ای اطلاع رساني علوم و فناوري - Comments on "An Anonymous and Self-Verified Mobile Authentication with Authenticated Key Agreement for Large-Scale Wireless Networks"

DocumentCode :

1248309

Title :

Comments on "An Anonymous and Self-Verified Mobile Authentication with Authenticated Key Agreement for Large-Scale Wireless Networks"

Author :

Guomin Yang

Author_Institution :

Temasek Labs., Nat. Univ. of Singapore, Singapore, Singapore

Volume :

Issue :

fYear :

2011

fDate :

6/1/2011 12:00:00 AM

Firstpage :

2015

Lastpage :

2016

Abstract :

In a recent paper (IEEE Trans. Wireless Commun., vol. 9, no. 11, 2010), Chang and Tsai presented a self-verified mobile authentication scheme for large-scale wireless networks. In this letter, we show that there is a serious security flaw in the key delegation phase of the scheme: two colluding mobile users can retrieve the long-term secret key of their home server without performing any active attacks. We then present a suggestion to fix the problem without losing any features (such as high efficiency and scalability) of the original scheme.

Keywords :

authorisation; cryptography; mobile radio; radio networks; telecommunication security; anonymous mobile authentication; authenticated key agreement; home server; key delegation phase; large-scale wireless networks; long-term secret key retrieval; mobile user; security flaw; self-verified mobile authentication; Authentication; Communication system security; Mathematical model; Mobile communication; Servers; Wireless communication; Mobile authentication; large-scale wireless network;

fLanguage :

English

Journal_Title :

Wireless Communications, IEEE Transactions on

Publisher :

ieee

ISSN :

1536-1276

Type :

jour

DOI :

10.1109/TWC.2011.052611.110074

Filename :

5896024

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=1248309