A Novel Multi-factor Authenticated Key Exchange Scheme

with Privacy Preserving

 

Dexin Yang1 and Bo Yang2,*

 

1Guangzhou City Polytechnic

Guangzhou,China,510405

yangdexin@21cn.com

 

2South China Agricultural University

Guangzhou,China,510642

byang@scau.edu.cn

 

Abstract

In this paper, a new multi-factor authenticated key exchange scheme, which combines with biometrics,

password and the smart card, is proposed. Compared with the previous schemes, this scheme

has higher security in remote authentication and preserves privacy of biometrics , and most of the

previous schemes rely on the smart card to verify biometrics. The advantage of these approaches

is that the user¡¯s biometrics is not shared with the remote server, which can resist insider¡¯s attack

and preserve the privacy of the biometrics. The disadvantage is that the remote server must trust

the smart card to perform authentication, which leads to various vulnerabilities. To achieve multifactor

authentication, a new function called one-way function with distance-keeping, which is used

to preserve privacy of user¡¯s biometrics, is introduced. This scheme has advantages as multi-factor

authentication, privacy preserving and lower communication complexity etc. It is proven secure under

the random oracle and is suitable to the environment which lacked communication resource and

needed higher security.

 

Keywords: Multi-factor authentication Biometrics Passwords Smart cards Privacy Preserving

 

*Corresponding author

 

Journal of Internet Services and Information Security (JISIS), 1(2/3): 44-56, August 2011 [pdf]