A Robust Authentication Scheme for Multiple Servers Architecture

Abstract

Multiple servers collaboration technology furnishes an effective storage management platform to the service providers. The massive data, which belong to disparate providers, possesses distinct access policies for each user. Authentication applied to multiple servers architecture is recognized as a remarkable mechanism for access control and authorization of users. In 2017, Jangirala et al. explored problems existing in the current research of authentication for multiple servers environment and presented a new solution. Nevertheless, we find that it is defenseless in impersonation attack, server spoofing attack, and fails to maintain users' anonymity. In this paper, we detail the aforementioned faults and propose a remedy with a tripartite certification strategy. Correspondingly, the validation of BAN-logic focused on tripartite authentication protocol is put forward to demonstrate the security reliability. Comparative evaluation of other related solutions for the multiple servers architecture observes that our proposal has advantages over security attributes meanwhile provides a reliable guarantee of efficiency.