An improved authentication protocol for session initiation protocol using smart card and elliptic curve cryptography

Kan Wu; Peng Gong; Jiantao Wang; Xiaopeng Yan; Ping Li

An improved authentication protocol for session initiation protocol using smart card and elliptic curve cryptography

Kan Wu, Peng Gong, Jiantao Wang, Xiaopeng Yan, Ping Li

Beijing Institute of Technology

Research output: Contribution to journal › Article › peer-review

9 Citations (Scopus)

Abstract

The authenticated key agreement protocol is an important security protocol for the session initiation protocol, which allows the and the server to authenticate each other and generate a shared session key for privacy, integrity, and non-repudiation in their communications. Recently, Zhang et al. proposed a new authenticated key agreement protocol for the session initiation protocol using smart card and claimed their protocol was secure against various attacks. However, we found that Zhang et al.'s protocol cannot withstand the user impersonation attack, i. e., a malicious user could impersonate any other user to the server. We also propose a new authenticated key agreement protocol using smart card for SIP which is immune to the presented attack. Besides, the proposed protocol also has better performance than Zhang et al.'s protocol.

Original language	English
Pages (from-to)	324-335
Number of pages	12
Journal	Romanian Journal of Information Science and Technology
Volume	16
Issue number	4
Publication status	Published - 2013

Keywords

Authenticated key agreement
Elliptic curve
Session initiation protocol

Cite this

@article{373b6aa25319481d9ba35631d49d432f,

title = "An improved authentication protocol for session initiation protocol using smart card and elliptic curve cryptography",

abstract = "The authenticated key agreement protocol is an important security protocol for the session initiation protocol, which allows the and the server to authenticate each other and generate a shared session key for privacy, integrity, and non-repudiation in their communications. Recently, Zhang et al. proposed a new authenticated key agreement protocol for the session initiation protocol using smart card and claimed their protocol was secure against various attacks. However, we found that Zhang et al.'s protocol cannot withstand the user impersonation attack, i. e., a malicious user could impersonate any other user to the server. We also propose a new authenticated key agreement protocol using smart card for SIP which is immune to the presented attack. Besides, the proposed protocol also has better performance than Zhang et al.'s protocol.",

keywords = "Authenticated key agreement, Elliptic curve, Session initiation protocol",

author = "Kan Wu and Peng Gong and Jiantao Wang and Xiaopeng Yan and Ping Li",

year = "2013",

language = "English",

volume = "16",

pages = "324--335",

journal = "Romanian Journal of Information Science and Technology",

issn = "1453-8245",

publisher = "Publishing House of the Romanian Academy",

number = "4",

}

TY - JOUR

T1 - An improved authentication protocol for session initiation protocol using smart card and elliptic curve cryptography

AU - Wu, Kan

AU - Gong, Peng

AU - Wang, Jiantao

AU - Yan, Xiaopeng

AU - Li, Ping

PY - 2013

Y1 - 2013

N2 - The authenticated key agreement protocol is an important security protocol for the session initiation protocol, which allows the and the server to authenticate each other and generate a shared session key for privacy, integrity, and non-repudiation in their communications. Recently, Zhang et al. proposed a new authenticated key agreement protocol for the session initiation protocol using smart card and claimed their protocol was secure against various attacks. However, we found that Zhang et al.'s protocol cannot withstand the user impersonation attack, i. e., a malicious user could impersonate any other user to the server. We also propose a new authenticated key agreement protocol using smart card for SIP which is immune to the presented attack. Besides, the proposed protocol also has better performance than Zhang et al.'s protocol.

AB - The authenticated key agreement protocol is an important security protocol for the session initiation protocol, which allows the and the server to authenticate each other and generate a shared session key for privacy, integrity, and non-repudiation in their communications. Recently, Zhang et al. proposed a new authenticated key agreement protocol for the session initiation protocol using smart card and claimed their protocol was secure against various attacks. However, we found that Zhang et al.'s protocol cannot withstand the user impersonation attack, i. e., a malicious user could impersonate any other user to the server. We also propose a new authenticated key agreement protocol using smart card for SIP which is immune to the presented attack. Besides, the proposed protocol also has better performance than Zhang et al.'s protocol.

KW - Authenticated key agreement

KW - Elliptic curve

KW - Session initiation protocol

UR - https://www.scopus.com/pages/publications/84901331673

M3 - Article

AN - SCOPUS:84901331673

SN - 1453-8245

VL - 16

SP - 324

EP - 335

JO - Romanian Journal of Information Science and Technology

JF - Romanian Journal of Information Science and Technology

IS - 4

ER -

An improved authentication protocol for session initiation protocol using smart card and elliptic curve cryptography

Abstract

Keywords

Other files and links

Fingerprint

Cite this