Recently, Xue et al. proposed a lightweight dynamic pseudonym identity based authentication and key agreement protocol for multi-server architecture (2014). They claimed that their scheme overcomes security flaws of related schemes. In this paper, we reanalyze the security of Xue et al.’s scheme and show that their scheme cannot resist password guessing attacks. In addition, their scheme cannot achieve user anonymity and untraceability. To conquer these defects, we propose an improved and lightweight pseudonym identity-based authentication scheme for multi-server environment. Compared with Xue et al.’s scheme, our protocol not only maintains the merits, but also overcomes the security flaws.
CITATION STYLE
Lin, H., Wen, F., & Du, C. (2016). An improved lightweight pseudonym identity-based authentication scheme on multi-server environment. In Lecture Notes in Electrical Engineering (Vol. 348, pp. 1115–1126). Springer Verlag. https://doi.org/10.1007/978-81-322-2580-5_102
Mendeley helps you to discover research relevant for your work.