For Queries/Clarification

alameenpublications@gmail.com

e-ISSN 2455-9288

Why publish with

ijaser

IJASER publishes high-quality, original research papers, brief reports, and critical reviews in all theoretical, technological, and interdisciplinary studies that make up the fields of advanced science and engineering and its applications.

An Integrated Multi Server User Authentication and Key Exchange Framework

Abstract

Authenticated encryption key is shared to ensure the secure communication between two parties. Password Authenticated Key Exchange  ( PAKE )  protocols are employed for the key exchange process. Single server and multiple server PAKE models are employed in the network services. In single server PAKE model all the password information are maintained and verified by the single server only. The client password information is distributed in to N servers under the multi server PAKE model. The multi server PAKE is divided into two categories such as Threshold PAKE and Two server PAKE schemes. The threshold based PAKE scheme uses N servers to cooperatively share and authenticate the client passwords. Two servers are adapted for the client authentication under the Two server PAKE scheme.
The client splits its password and stores two shares of its password in the two servers respectively. The two server PAKE scheme handles the password verification and key distribution process. The Identity based 2 Server Password Authenticated Key Exchange  ( ID2SPAKE )  protocol is constructed with identity based security schemes. Two compilers are used in the ID2SPAKE protocol. The first compiler is built on identity-based signature  ( IBS )  scheme. Diffie-Hellman key exchange protocol is used for the authentication in Identity Based Signature model. The second compiler is constructed based on identity-based encryption  ( IBE ) . The one-time public key encryption scheme is used to protect the messages from the servers to the client.
Identity based Multi Server PAKE  ( IDMSPAKE )  scheme is build to authenticate users with N servers. Dynamic authentication server selection scheme is integrated with the IDMSPAKE scheme. Digital signature based data verification process is supported for the message communication process. The Advanced Encryption Standard  ( AES ) , RSA and Secure Hash Algorithm  ( SHA )  methods are used in the system.

Author

K.Mubarak Ali
Download