원문정보
초록
영어
Recently, many biometrics-based user authentication schemes for telecare medicine information systems (TMIS) have been proposed to improve the security problems in user authentication system. In 2014, Mishra et al. proposed an improvement of Awasthi-Srivastava’s biometric based authentication for TMIS which is secure against the various attacks and provide mutual authentication, efficient password change. In this paper, we discuss the security of Mishra et al.’s authentication scheme, and we have shown that Mishra et al.’s authentication scheme is still insecure against the various attacks. Also, we proposed the improved scheme to remove these security problems of Mishra et al.’s authentication scheme, even if the secret information stored in the smart card is revealed. As a result, we can see that the improved biometric based authentication scheme is secure against the insider attack, the password guessing attack, the user impersonation attack, the server masquerading attack and provides mutual authentication between the user and the telecare system.
목차
1. Introduction
2. Reviews of Mishra et al.’ Scheme
2.1 Registration Phase
2.2 Login Phase
2.3 Authentication Phase
3. Security Analysis of Mishra et al.’ Scheme
3.1 Insider Attack
3.2 Off-line Password Guessing Attack
3.3 User Impersonation Attack
3.4 Server Masquerading Attack
3.5 Mutual Authentication
4. The Improved Scheme
4.1 Registration Phase
4.2 Login Phase
4.3 Authentication Phase
5. Security Analysis of the Improved Scheme
5.1 Insider Attack
5.2 Off-line Password Guessing Attack
5.3 Off-line Password Guessing Attack
5.4 Server Masquerading Attack
5.5 Mutual Authentication
5.6 Functionality Comparisons between the Related Scheme and the Improved Scheme
6. Conclusions
Acknowledgement
References