Remote user authentication scheme with hardware-based attestation

Communications in Computer and Information Science

Volumn 180 CCIS, Issue PART 2, 2011, Pages 437-447

  Mat Nor, Fazli Bin ^a   Abd Jalil, Kamarularifin ^a   Ab Manan, Jamalul Lail ^b  

^a UNIVERSITI TEKNOLOGI MARA   (Malaysia)

^b Technology Park Malaysia   (Malaysia)

Author keywords

privacy; pseudonym; remote attestation; remote user authentication; trusted platform module

Indexed keywords

KEY EXCHANGE PROTOCOLS; MALICIOUS SOFTWARE; ON-LINE BANKING; PSEUDONYM; REMOTE ATTESTATION; REMOTE AUTHENTICATION; REMOTE SERVICES; REMOTE USER AUTHENTICATION; REMOTE USER AUTHENTICATION SCHEMES; SECRET KEY; SESSION KEY; SHARED SECRETS; TRUSTED PLATFORM MODULE; USER IDENTITY;

COMPUTER CRIME; COMPUTER HARDWARE; COMPUTER SOFTWARE; NETWORK SECURITY; ONLINE SYSTEMS;

AUTHENTICATION;

EID: 79960376768     PISSN: 18650929     EISSN: None     Source Type: Book Series    
DOI: 10.1007/978-3-642-22191-0_38     Document Type: Conference Paper

References (18)

1. Lamport, L.: Password authentication with insecure communication. Communications of the ACM 24(11), 770-772 (1981)
2. Wu, T.: The Secure Remote Password protocol. In: Internet Society Network and Distributed Systems Security Symposium (NDSS), San Diego, pp. 97-111 (1998)
3. Juang, W.S., Wu, J.L.: Efficient user authentication and key agreement with user privacy protection. International Journal of Network Security 7, 120-129 (2008)
4. Zhou, L., Zhang, Z.: Trusted channels with password-based authentication and TPM-based attestation. In: International Conference on Communications and Mobile Computing, pp. 223-227 (2010)
5. Zhang, M.: Analysis of the SPEKE password-authenticated key exchange protocol. IEEE Communications Letters 8(1), 63-65 (2004)
6. Ali, T.: Incorporating remote attestation for end-to-end protection in web communication paradigm. In: International Conference on Internet Technologies and Applications, Wales, UK (2009)
7. Cheng, S., Bing, L., Yang, X., Yixian, Y., Zhongxian, L., Han, Y.: A security-enhanced remote platform integrity attestation scheme. In: Wireless Communications, Networking and Mobile Computing (WiCom 2009), vol. 4, pp. 24-26 (2009)
8. Stumpf, F., Tafreschi, O., Röder, P., Eckert, C.: A robust integrity reporting protocol for remote attestation. In: Proceedings of the Workshop on Advances in Trusted Computing, WATC (2006)
9. Jablon, D.: Strong password-only authenticated key exchange. SIGCOMM Computing Communication 26(5) (1996)
10. Hu, L., Yang, Y., Niu, X.: Improved remote user authentication scheme preserving user anonymity. In: Communication Networks and Services Research (CNSR 2007), pp. 323-328 (2007)
11. Liao, Y.P., Wang, S.-S.: A secure dynamic ID based remote user authentication scheme for multi-server environment. Computer Standards & Interfaces 31(1), 24-29 (2009)
12. Chien, H.-Y., Chen, C.-H.: A remote authentication scheme preserving user anonymity. In: Proceedings of the 19th International Conference on Advanced Information Networking and Applications (AINA 2005), Washington, USA, vol. 2, pp. 245-248 (2005)
13. Chai, Z., Cao, Z.-F., Lu, R.: Efficient password-based authentication and key exchange scheme preserving user privacy. In: Cheng, X., Li, W., Znati, T. (eds.) WASA 2006. LNCS, vol. 4138, pp. 467-477. Springer, Heidelberg (2006)
14. Trusted Computing Group: TCG specification architecture overview, specification revision 1.4 (2007)
15. TrustedGrub, http://www.sirrix.com/content/pages/trustedgrub.htm
16. Kinney, S.: Trusted Platform Module Basics: Using TPM in Embedded System. NEWNES (2006)
17. Challener, D., Yoder, K., Catherman, R., Safford, D., Doorn, L.V.: A Practical Guide to Trusted Computing. IBM Press (2008)
18. Sadeghi, A.-R.: Trusted Computing - Special Aspects and Challenges. In: Geffert, V., Karhumäki, J., Bertoni, A., Preneel, B., Návrat, P., Bieliková, M. (eds.) SOFSEM 2008. LNCS, vol. 4910, pp. 98-117. Springer, Heidelberg (2008)