Robust two-factor smart card authentication

Candan, Ömer Mert and Levi, Albert (2017) Robust two-factor smart card authentication. In: IEEE International Black Sea Conference on Communications and Networking (IEEE BlackSeaCom 2017), Istanbul, Turkey

PDF - Requires a PDF viewer such as GSview, Xpdf or Adobe Acrobat Reader

Official URL: http://dx.doi.org/10.1109/BlackSeaCom.2017.8277693


Being very resilient devices, smart cards have been commonly used for two-factor authentication schemes. However, the possibility of side-channel attacks renders private data stored in the cards vulnerable to compromise. With this in mind, we propose an authentication protocol that incorporates a second factor, which is as a password, in addition to the smart card. The scheme is aimed to withstand most common security breaches as well as compromised smart card scenarios and offline dictionary attacks on the passwords. Details of a reference implementation are also given along with performance evaluation of the proposed protocol comparing to the literature. Performance analyses show that the proposed protocol outperforms existing solutions in the literature. Moreover, the computational cost of the proposed protocol is less than 2 seconds on our reference implementation that uses commercially available smart cards.

Item Type:Papers in Conference Proceedings
Uncontrolled Keywords:Two-factor Authentication; Remote Login; Smart Card; Offline Dictionary Attack; Elliptic Curve Cryptography
ID Code:33487
Deposited By:Albert Levi
Deposited On:14 Sep 2017 10:23
Last Modified:01 Aug 2019 15:44

Repository Staff Only: item control page