A Secure Chaotic Hash-Based Biometric Remote User Authentication Scheme Using Mobile Devices

Yoon, Eun-Jun; Yoo, Kee-Young

doi:10.1007/978-3-540-72909-9_68

A Secure Chaotic Hash-Based Biometric Remote User Authentication Scheme Using Mobile Devices

Eun-Jun Yoon¹ &
Kee-Young Yoo²

Conference paper

2951 Accesses
6 Citations

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 4537))

Abstract

Traditional remote user authentication methods mainly employ the possession of a token (magnetic cards, cell phones, personal digital assistant (PDA), and notebook computers, etc.) and/or the knowledge of a secret (password, etc.) in order to establish the identity of an individual. In 2006, Khan et al. proposed an efficient and practical chaotic hash-based fingerprint biometric remote user authentication scheme on mobile devices. The current paper, however, demonstrates that Khan et al.’s scheme is vulnerable to a privileged insider’s attacks and impersonation attacks by using lost or stolen mobile devices. Also, we present an improvement to their scheme in order to isolate such problems.

This is a preview of subscription content, log in via an institution.

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 84.99; Price excludes VAT (USA)

Softcover Book: USD 109.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Rila, L., Mitchell, C.J.: Security protocols for biometrics-based cardholder authentication in smartcards, 2846th edn. LNCS, vol. 2846, pp. 254–264. Springer-Verlag Heidelberg, Heidelberg (2003)
Google Scholar
Khan, M.K., Jiashu, Z., Wang, X.M.: Chaotic hash-based fingerprint biometric remote user authentication scheme on mobile devices. Chaos, Solitons & Fractals, Elsevier Science, doi:10.1016/j.chaos.2006.05.061 (in press)
Google Scholar
Wang, X.M., Jiashu, Z., Wenfang, Z.: Keyed hash function based on composite nonlinear autoregressive filter. Acta Phys Sinica;54:5566-73 (in Chinese) (2005)
Google Scholar
Ku, W.C., Chuang, H.M., Tsaur, M.J.: Vulnerabilities of Wu-Chieus improved password authentication scheme using smart cards. IEICE Trans. Fundamentals E88–A(11), 3241–3243 (2005)
Article Google Scholar
Menezes, A.J, Oorschot, P.C, Vanstone, S.A: Handbook of applied cryptograph. CRC Press, Boca Raton, FL (1997)
Google Scholar
Yoon, E.J, Ryu, E.K, Yoo, K.Y.: An improvement of Hwang.Lee.Tang’s simple remote user authentication scheme. Comput. Secur. 24, 50–56 (2005)
Article Google Scholar

Download references

Author information

Authors and Affiliations

Faculty of Computer Information, Daegu Polytechnic College, San 395 3-Manchon-Dong, Susung-Gu, Daegu 706-711, South Korea
Eun-Jun Yoon
Department of Computer Engineering, Kyungpook National University, 1370 Sankyuk-Dong, Buk-Gu, Daegu 702-701, South Korea
Kee-Young Yoo

Authors

Eun-Jun Yoon
View author publications
You can also search for this author in PubMed Google Scholar
Kee-Young Yoo
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Kevin Chen-Chuan Chang Wei Wang Lei Chen Clarence A. Ellis Ching-Hsien Hsu Ah Chung Tsoi Haixun Wang

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Yoon, EJ., Yoo, KY. (2007). A Secure Chaotic Hash-Based Biometric Remote User Authentication Scheme Using Mobile Devices. In: Chang, K.CC., et al. Advances in Web and Network Technologies, and Information Management. APWeb WAIM 2007 2007. Lecture Notes in Computer Science, vol 4537. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-72909-9_68

Download citation

DOI: https://doi.org/10.1007/978-3-540-72909-9_68
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-72908-2
Online ISBN: 978-3-540-72909-9
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics