A Novel Multi-factor Authenticated Key Exchange Scheme
with Privacy Preserving
Dexin Yang1 and Bo Yang2,*
1Guangzhou City
Polytechnic
Guangzhou,China,510405
yangdexin@21cn.com
2South China
Agricultural University
Guangzhou,China,510642
byang@scau.edu.cn
Abstract
In this paper, a new multi-factor authenticated key
exchange scheme, which combines with biometrics,
password and the smart card, is proposed. Compared with
the previous schemes, this scheme
has higher security in remote authentication and
preserves privacy of biometrics , and most of the
previous schemes rely on the smart card to verify
biometrics. The advantage of these approaches
is that the user¡¯s biometrics is not shared with the
remote server, which can resist insider¡¯s attack
and preserve the privacy of the biometrics. The
disadvantage is that the remote server must trust
the smart card to perform authentication, which leads to
various vulnerabilities. To achieve multifactor
authentication, a new function called one-way function
with distance-keeping, which is used
to preserve privacy of user¡¯s biometrics, is introduced.
This scheme has advantages as multi-factor
authentication, privacy preserving and lower communication
complexity etc. It is proven secure under
the random oracle and is suitable to the environment
which lacked communication resource and
needed higher security.
Keywords: Multi-factor authentication Biometrics Passwords Smart
cards Privacy Preserving
*Corresponding author
Journal of Internet
Services and Information Security (JISIS), 1(2/3):
44-56, August 2011 [pdf]