Abstract:
In 2015, Odelu et al. proposed an efficient biometrics-based authentication protocol for multi-server environment. They claimed that their scheme is secure against differ...View moreMetadata
Abstract:
In 2015, Odelu et al. proposed an efficient biometrics-based authentication protocol for multi-server environment. They claimed that their scheme is secure against different possible known attacks and satisfies attractive security properties. However, in this paper, we prove that Odelu et al.'s scheme is vulnerable to offline password guessing attack and fails to provide three-factor security. To overcome these weakness, we propose an enhanced scheme by applying fuzzy verifier to local password verification in login phase. Security analysis shows that our proposed scheme not only maintains the advantages of the Odelu et al.'s scheme but also withstand the offline password guessing attack. Therefore, our improved scheme can provide three-factor security.
Date of Conference: 05-08 March 2018
Date Added to IEEE Xplore: 21 June 2018
ISBN Information: