Multiserver authentication complies with the up-to-date requirements of Internet services and latest applications. The multiserver architecture enables the expedient authentication of subscribers on an insecure channel for the delivery of services. The users rely on a single registration of a trusted third party for the procurement of services from various servers. Recently, Chen and Lee, Moon et al, and Wang et al presented multiserver key agreement schemes that are found to be vulnerable to many attacks according to our analysis. The Chen and Lee scheme was found susceptible to impersonation attack, trace attack, stolen smart card attack exposing session key, key-compromise impersonation attack, and inefficient password modification. The Moon et al is susceptible to stolen card attack leading to further attacks, ie, identity guessing, key-compromise impersonation attack, user impersonation attack, and session keys disclosure, while Wang et al is also found to be prone to trace attack, session-specific temporary information attack, key-compromise information attack, and privileged insider attack leading to session key disclosure and user impersonation attacks. We propose an improved protocol countering the indicated weaknesses of these schemes in an equivalent cost. Our scheme demonstrates automated and security analysis on the basis of Burrows-Abadi-Needham logic and also presents the performance evaluation for related schemes. We have proposed an authentication scheme for multiserver environment resistant to various security threats exhibited in the previous related literature. The computational/communication cost of the proposed scheme is equivalent to that of some previous schemes susceptible to threats. We demonstrate the security of our scheme using ProVerif automated tool and Burrows-Abadi-Needham logic. The performance evaluation with related schemes shows the robustness of our scheme.

+More

protocol and security analysis automated tool subscribers attacks ie identity guessing keycompromise impersonation inefficient password burrowsabadineedham logic expedient authentication multiserver key agreement schemes attack sessionspecific temporary information attack keycompromise information attack computationalcommunication cost insecure multiserver architecture

Muhammad Usman,Azeem Irshad, Saru Kumari, Muhammad Shahzad Faisal, Shehzad Ashraf Chaudhry, Khalid Mahmood,.An improved lightweight multiserver authentication scheme. 30 (14),.

Muhammad Usman, et al."An improved lightweight multiserver authentication scheme" 30

Muhammad Usman,Azeem Irshad, Saru Kumari, Muhammad Shahzad Faisal, Shehzad Ashraf Chaudhry, Khalid Mahmood,"An improved lightweight multiserver authentication scheme"