Author_Institution :
Coll. of Comput. Sci., Zhejiang Univ., Hangzhou, China
Abstract :
Existing mechanisms for handover authentication mainly focus on designing a secure authentication module, little attention has been paid to protect users´ privacy when they are authenticated by the access points for data access. Further, most existing approaches do not support user revocation. In this paper, we present a secure and efficient authentication protocol named Handauth. Similar to the mechanisms of this field, Handauth provides user authentication and session key establishment. However, compared to other well-known approaches, Handauth not only enjoys both computation and communication efficiency, but also achieves strong user anonymity and untraceablility, forward secure user revocation, conditional privacy-preservation, AAA server anonymity, access service expiration management, access point authentication, easily scheduled revocation, dynamic user revocation and attack resistance. Experimental results show that the proposed approach is feasible for real applications.
Keywords :
communication complexity; cryptographic protocols; mobility management (mobile radio); radio networks; scheduling; telecommunication security; AAA server anonymity; Handauth; access point authentication; access points; access service expiration management; attack resistance; authentication protocol; communication efficiency; computation efficiency; conditional privacy-preservation; data access; dynamic user revocation; forward secure user revocation; handover authentication; scheduled revocation; secure authentication module; session key establishment; user anonymity; user untraceablility; users privacy; wireless networks; Authentication; Cryptography; Mobile communication; Privacy; Protocols; Servers; Handover authentication; privacy; revocation; wireless networks;
