A New Enhanced Authentication Mechanism Using Session Key Agreement Protocol

Abstract Cryptographic protocols are the backbone of information security. Unfortunately the security of several important components of these protocols can be neglected. This causes violation of personal privacy and threats to democracy. Integration of biometrics with cryptography can overcome this problem. In this paper an enhanced session key agreement protocol which uses the data derived from iris signature is suggested to improve the security of biometric based applications like e-Passport, e-Driving license, etc. The authenticity and security properties of the proposed protocol are analyzed using ProVerif tool and demonstrate it satisfies the intended properties.

[1]  David A. Wagner,et al.  Security and Privacy Issues in E-passports , 2005, First International Conference on Security and Privacy for Emerging Areas in Communications Networks (SECURECOMM'05).

[2]  P.E. Abi-Char,et al.  A Fast and Secure Elliptic Curve Based Authenticated Key Agreement Protocol For Low Power Mobile Communications , 2007, The 2007 International Conference on Next Generation Mobile Applications, Services and Technologies (NGMAST 2007).

[3]  Shyi-Tsong Wu,et al.  ID-based remote authentication with smart cards on open distributed system from elliptic curve cryptography , 2005, 2005 IEEE International Conference on Electro Information Technology.

[4]  Rui Zhang,et al.  A More Secure Authentication Scheme for Telecare Medicine Information Systems , 2012, Journal of Medical Systems.

[5]  Qi Xie,et al.  An improved authenticated key agreement protocol for telecare medicine information system , 2016, SpringerPlus.

[6]  Kam-Pui Chow,et al.  Elliptic curve cryptography based authenticated key agreement with pre-shared password , 2005 .

[7]  Usha Subramaniam,et al.  A biometric based secure session key agreement using modified elliptic curve cryptography , 2015, Int. Arab J. Inf. Technol..

[8]  Duncan S. Wong,et al.  Analysis and improvement of an authenticated key exchange protocol for sensor networks , 2005, IEEE Communications Letters.

[9]  Devesh C. Jinwala,et al.  A Comparative Analysis of Tools for Verification of Security Protocols , 2010, Int. J. Commun. Netw. Syst. Sci..

[10]  Jianhua Chen,et al.  A secure mutual authentication scheme for session initiation protocol using elliptic curve cryptography , 2012, Secur. Commun. Networks.

[11]  Bernadette Dorizzi,et al.  Generating and sharing biometrics based session keys for secure cryptographic applications , 2010, 2010 Fourth IEEE International Conference on Biometrics: Theory, Applications and Systems (BTAS).

[12]  Bernadette Dorizzi,et al.  Iris based authentication mechanism for e-Passports , 2010, 2010 2nd International Workshop on Security and Communication Networks (IWSCN).