A robust mutual authentication scheme for session initiation protocol with key establishment

被引:0
作者
Venkatasamy Sureshkumar
Ruhul Amin
R. Anitha
机构
[1] PSG College of Technology,Department of Applied Mathematics and Computational Sciences
[2] Thapar University,Department of Computer Science and Engineering
来源
Peer-to-Peer Networking and Applications | 2018年 / 11卷
关键词
Authentication; Key agreement; Elliptic curve cryptography; Session initiation protocol; BAN logic;
D O I
暂无
中图分类号
学科分类号
摘要
The Session Initiation Protocol (SIP) is a communication protocol that controls multimedia communication sessions. As the Internet users widely use SIP services, mutual authentication between the user and SIP server becomes an important issue. Several authentication protocols for SIP have been proposed for enhancing security and better complexities. Very recently, Lu et al. proposes an authenticated key agreement protocol for SIP and claims that it withstands various attacks and efficient. This paper points out that their protocol does not provide one of the most important features user anonymity. In addition, the same protocol is not able to resist user impersonation attack, server impersonation attack and fails to provide mutual authentication. The paper also presents an improved mutual authentication and key establishment protocol that conquers the security weaknesses in Lu et al.’s protocol. Informal security analysis is also carried out for several security properties. The formal proof for the correctness of mutual authentication and session key agreement is provided using BAN logic. It is shown that the proposed protocol is provably secure against identity and password guessing attacks in the random oracle model. The performance of the proposed scheme is compared with that of the existing related Elliptic Curve Cryptography (ECC) based schemes for SIP and shown that our scheme outperforms the others.
引用
收藏
页码:900 / 916
页数:16
相关论文
共 105 条
[1]  
Amin R(2015)Cryptanalysis and design of a three-party authenticated key exchange protocol using smart card Arab J Sci Eng 40 3135-3149
[2]  
Biswas G(2015)A novel user authentication and key agreement protocol for accessing multi-medical server usable in tmis J Med Syst 39 1-17
[3]  
Amin R(2015)A secure three-factor user authentication and key agreement protocol for tmis with user anonymity J Med Syst 39 1-19
[4]  
Biswas G(2016)A secure light weight scheme for user authentication and key agreement in multi-gateway based wireless sensor networks Ad Hoc Netw 36 58-80
[5]  
Amin R(2015)An efficient and practical smart card based anonymity preserving user authentication scheme for tmis using elliptic curve cryptography J Med Syst 39 1-18
[6]  
Biswas G(2015)Design and analysis of an enhanced patient-server mutual authentication protocol for telecare medical information system J Med Syst 39 1-20
[7]  
Amin R(2016)An efficient and secure authentication and key agreement scheme for session initiation protocol using ecc Multimed Tools Appl 75 181-197
[8]  
Biswas G(2013)Elliptic curve cryptography based mutual authentication scheme for session initiation protocol Multimed Tools Appl 66 165-178
[9]  
Amin R(2012)Cryptanalysis and improvement of an access control in user hierarchy based on elliptic curve cryptosystem Inform Sci 209 80-92
[10]  
Islam SH(2016)Security analysis and enhancements of an improved authentication for session initiation protocol with provable security Peer-to-Peer Network Appl 9 82-91