Research On Authentication And Session Key Agreement Protocol For Multiple Servers Architecture

Authentication and session key agreement protocols are the a common method applied in the filed of network communications,which shall guarantee security service of confidentiality,integrity and authentication for the transmitted data over networks,and it plays a vital role in devising a secure information system.Authentication and session key agreement protocols are developed from the conventional client-server(two parties)authentication protocols,which enables users to access network services belonging to distributed servers with a single registration and solves the tautological registration problem,which improves user experience and friendliness.It would realize the uniform management,authentication and authorization for users.In this paper,we research the authentication and key agreement protocol for multiple servers architecture thoroughly,the findings of our research are presented in the following.Firstly,we design an elliptic curve cryptosystems based authentication and session key agreement protocol,namely ECBMSA.In terms of the user impersonation attack,server masquerade attack and privacy disclosure in the previous schemes,our protocol achieves the mutual authentication between users and servers through a trusted registration center and solves the aforementioned issues without increasing the storage overhead in the user smart terminal.Subsequently,we demonstrate that our scheme is provable secure with BAN-logic.Compared with the related protocols,our proposal is more secure with lower storage consumption.The trusted third party carries out plenty of calculation and certification task,the users’portable devices with limited processing power are very efficient.Secondly,we propose a two-party authentication and key agreement protocol for multiple servers architecture,namely EGBMSA。In terms of issues in the previous schemes which is vulnerable to user impersonation attack and server masquerade attack and identity theft attack,we employ the ElGamal cryptosystems to present a new authentication and key agreement protocol.The biological verification technology is imported into the protocol to realize the three-factor authentication-password,smart card and biological information,which enhances the security of the protocol very much.The computation overhead and communication round are superior to authentication schemes with three party certification strategy.Then,we demonstrate that our proposal achieves credibility validation by BAN-logic.Finally,we construct an authentication and key agreement protocol for multiple servers architecture based on chaotic maps,namely CMBMSA,in which we replace the value x of the original public parameters with an alterable secret value and solves the above security risk of session key recovery in the session key negotiation based on Chebyshev chaotic map cryptosystem.Then,we employ three party certification strategy and construct an authentication protocol for multiple servers architecture,which possesses superior computation efficiency and storage consumption.Besides,we show our construction is secure with the formal security analysis method of BAN-logic.