多媒體網路安全實驗室 A Strong User Authentication Framework for Cloud Computing Date ： 2012.08.10 Reporter : Hong Ji Wei Authors : Amlan Jyoti Choudhury, Mangal.

Slides:

Advertisements

Similar presentations

Trusted Data Sharing over Untrusted Cloud Storage Provider Gansen Zhao, Chunming Rong, Jin Li, Feng Zhang, and Yong Tang Cloud Computing Technology and.

Advertisements

Cryptanalysis of a Communication-Efficient Three-Party Password Authenticated Key Exchange Protocol Source: Information Sciences in review Presenter: Tsuei-Hung.

A key agreement protocol using mutual Authentication for Ad-Hoc Networks IEEE 2005 Authors : Chichun Lo, Chunchieh Huang, Yongxin Huang Date : 2005_11_29.

多媒體網路安全實驗室 An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards 作者 :JongHyup LEE 出處.

Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,

1 Secure Credit Card Transactions on an Untrusted Channel Source: Information Sciences in review Presenter: Tsuei-Hung Sun ( 孫翠鴻 ) Date: 2010/9/24.

多媒體網路安全實驗室 Improved Secure Anonymous Authentication Scheme for Roaming Service in Global Mobility Networks Date ： Reporter : Hong Ji Wei Authors.

多媒體網路安全實驗室 Source:International Conference on Intelligent Information Hiding and Multimedia Signal Processing (IIH- MSP),2010 Sixth. Authors:Hsiang-Cheh.

多媒體網路安全實驗室 Towards Secure and Effective Utilization over Encrypted Cloud Data 報告人 : 葉瑞群日期 :2012/05/09 出處 :IEEE Transactions on Knowledge and Data Engineering.

A Secure Remote User Authentication Scheme with Smart Cards Manoj Kumar 報告者 : 許睿中日期 :

1 Authenticated key agreement without using one-way hash functions Harn, L.; Lin, H.-Y. Electronics Letters, Volume: 37 Issue: 10, 10 May 2001 Presented.

A simple remote user authentication scheme 1. M. S. Hwang, C. C. Lee and Y. L. Tang, “A simple remote user authentication.

電子商務與數位生活研討會 1 Further Security Enhancement for Optimal Strong-Password Authentication Protocol Tzung-Her Chen, Gwoboa Horng, Wei-Bin Lee,Kuang-Long Lin.

Performance Analysis of the IEEE Wireless Metropolitan Area Network nmgmt.cs.nchu.edu.tw 系統暨網路管理實驗室 Systems & Network Management Lab Reporter ：黃文帥.

1 Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment Authors ： Han-Cheng Hsiang and Wei-Kuan Shih.

孫國偉 Efficient Password authenticated key agreement using smart cards Author : Wen-Shenq Juang* Date : in Computers & Security.

An Improved Smart Card Based Password Authentication Scheme with Provable Security Source:Computer Standards & Interfaces, Vol. 31, No. 4, pp ,

A more efficient and secure dynamic ID- based remote user authentication scheme Yan-yan Wang, Jia-yong Liu, Feng-xia Xiao, Jing Dan in Computer Communications.

A New Two-Server Approach for Authentication with Short Secrets John Brainard, Ari Juels,Burt Kaliski and Michael Szydlo RSA Laboratories To appear in.

An Enhanced Two-factor User Authentication Scheme in Wireless Sensor Networks DAOJING HE, YI GAO, SAMMY CHAN, CHUN CHEN, JIAJUN BU Ad Hoc & Sensor Wireless.

多媒體網路安全實驗室 A Security Framework of Group Location-Based Mobile Applications in Cloud Computing Date ： Reporter : Hong Ji Wei Authors : Yu-Jia.

多媒體網路安全實驗室 A novel user identification scheme with key distribution preserving user anonymity for distributed computer networks Date:2011/10/05 報告人：向峻霈.

Cryptanalysis of Two Dynamic ID-based Authentication

1 Anonymous Roaming Authentication Protocol with ID-based Signatures Lih-Chyau Wuu Chi-Hsiang Hung Department of Electronic Engineering National Yunlin.

多媒體網路安全實驗室 An Efficient RFID Authentication Protocol for Low-cost Tags Date ： Reporter : Hong Ji Wei Authors : Yanfei Liu From : 2008 IEEE/IFIP.

Cryptography on Non-Trusted Machines Stefan Dziembowski.

Authors: Jiann-Liang Chenz, Szu-Lin Wuy,Yang-Fang Li, Pei-Jia Yang,Yanuarius Teofilus Larosa th International Wireless Communications and Mobile.

多媒體網路安全實驗室 A novel user authentication and privacy preserving scheme with smartcards for wireless communications 作者 :Chun-Ta Li,Cgeng-Chi Lee 出處 :Mathematical.

Secure Authentication Scheme with Anonymity for Wireless Communications Speaker : Hong-Ji Wei Date :

多媒體網路安全實驗室 Protecting the Privacy of Users in e-Commerce Environment Date： Reporter:Chien-Wen Huang Author: Chun-Hua Chen and Gwoboa Horng 出處:

1 Robust and Efficient Password-Authenticated Key Agreement Using Smart Cards 使用在 smart cards 的強韌及高效率密碼驗證金鑰協定 IEEE Transactions on Industrial Electronics,

Enhanced secure anonymous authentication scheme for roaming service in global mobility networks Hyeran Mun, Kyusuk Han, Yan Sun Lee, Chan Yeob Yeun, Hyo.

Authentication of Signaling in VoIP Applications Authors: Srinivasan et al. (MIT Campus of Anna University, India) Source: IJNS review paper Reporter:

SDN AND OPENFLOW SPECIFICATION SPEAKER: HSUAN-LING WENG DATE: 2014/11/18.

Department of Computer Engineering, Kyungpook National University Author : Eun-Jun Yoon, Wan-Soo Lee, Kee-Young Yoo Speaker : Wan-Soo Lee

多媒體網路安全實驗室 Ontological recommendation multi-agent for Tainan City travel Date ： Speaker : Hong Ji Wei Authors : Chang-Shing, Lee,Young-Chung.

多媒體網路安全實驗室 Robust authentication and key agreement scheme preserving Date:2011/11/05 報告人：向峻霈出處 : Ren-Chiun Wang Wen-Shenq Juang Chin-Laung Lei Computer.

Secure Communication between Set-top Box and Smart Card in DTV Broadcasting Authors: T. Jiang, Y. Hou and S. Zheng Source: IEEE Transactions on Consumer.

SPEAKER: HONG-JI WEI DATE: Secure Anonymous Authentication Scheme with Roaming for Mobile Networks.

多媒體網路安全實驗室 Mobility Assisted Secret Key Generation Using Wireless Link Signatures Date： Reporter : Hong Ji Wei Auther : Junxing Zhang Kasera,

多媒體網路安全實驗室 Anonymous ID Signature Scheme with Provable Identity Date： Reporter :Chien-Wen Huang 出處： 2008 Second International Conference on Future.

多媒體網路安全實驗室 Routing Through the Mist: Privacy Preserving Communication in Ubiquitous Computing Environments Date:2011/05/05 報告人：向峻霈出處 : Jalal Al-Muhtadi,

A flexible biometrics remote user authentication scheme Authors: Chu-Hsing Lin and Yi-Yi Lai Sources: Computer Standards & Interfaces, 27(1), pp.19-23,

User authentication schemes with pseudonymity for ubiquitous sensor network in NGN Authors: Binod Vaidya, Joel J. Rodrigues and Jong Hyuk Park Source:

多媒體網路安全實驗室 Practical Searching Over Encrypted Data By Private Information Retrieval Date： Reporter: Chien-Wen Huang 出處: GLOBECOM 2010, 2010 IEEE.

Password-based user authentication and key distribution protocols for client-server applications Authors: Her-Tyan Yeh and Hung-Min Sun Sources: The Journal.

Robust and Efficient Password- Authenticated Key Agreement Using Smart Cards Authors: Wen-Shenq Juang, Sian-Teng Chen and Horng-Twu Liaw Src: IEEE Transaction.

多媒體網路安全實驗室 Anonymous Authentication Systems Based on Private Information Retrieval Date： Reporter: Chien-Wen Huang 出處: Networked Digital Technologies,

SPEAKER: HONG-JI WEI DATE: Efficient and Secure Anonymous Authentication Scheme with Roaming Used in Mobile Networks.

多媒體網路安全實驗室 Source: IEICE Trans. Fundamentals, Vol. E90-A, No. 4, April 2007, pp Authors:Hong Lin Jin, Masaaki Fujiyoshi, Hitoshi Kiya Speaker:Cheng.

Threshold password authentication against guessing attacks in Ad hoc networks ► Chai, Zhenchuan; Cao, Zhenfu; Lu, Rongxing ► Ad Hoc Networks Volume: 5,

多媒體網路安全實驗室 An efficient and security dynamic identity based authentication protocol for multi-server architecture using smart cards 作者 : Xiong Li, Yongping.

多媒體網路安全實驗室 Private Information Retrieval Scheme Combined with E- Payment in Querying Valuable Information Date： Reporter: Chien-Wen Huang 出處:

多媒體網路安全實驗室 An ID-based client authentication with key agreement protocol for mobile client–server environment on ECC with provable security Date:2012/02/16.

Threshold password authentication against guessing attacks in Ad hoc networks Authors: Zhenchuan Chai, Zhenfu Cao, Rongxing Lu Sources: Ad Hoc Networks,

A Secure and Efficient Application Download Architecture in 3G Mobile Environment Speaker: Kuo-Zhe Chiou Laboratory of Cryptography and Information Security.

What is Cloud Computing 1. Cloud computing is a service that helps you to perform the tasks over the Internet. The users can access resources as they.

A Secure Authentication Scheme with Anonymity for Wireless Communications IEEE COMMUNICATIONS LETTERS, VOL. 12, NO. 10, OCTOBER 2008 Chia-Chun Wu, Wei-Bin.

多媒體網路安全實驗室 A novel user identification scheme with key distribution preserving user anonymity for distributed computer networks Date:2011/10/12 報告人：向峻霈.

A Dynamic ID-Based Generic Framework for Anonymous Authentication Scheme for Roaming Service in Global Mobility Networks Source: Wireless Personal Communications,

網路環境中通訊安全技術之研究 Secure Communication Schemes in Network Environments

Source : Future Generation Computer Systems, Vol. 68, pp , 2017

Efficient password authenticated key agreement using smart cards

A robust and anonymous patient monitoring system using wireless medical sensor networks Source: Future Generation Computer Systems, Available online 8.

Cloud Computing Kelley Raines.

Authors: Wei-Chi KU, Hao-Chuan TSAI, Maw-Jinn TSAUR

Cloud Testing Shilpi Chugh.

Authors：Debiao He, Sherali Zeadally, Neeraj Kumar and Wei Wu

Source: Sensors, Volume 19, Issue 9 (May )

Biometrics-based RSA Cryptosystem for Securing Real-Time Communication

Presentation transcript:

多媒體網路安全實驗室 A Strong User Authentication Framework for Cloud Computing Date ： Reporter : Hong Ji Wei Authors : Amlan Jyoti Choudhury, Mangal Sain, Pardeep Kumar Hoon Jae-Lee, Hyotaek Lim From : 2011 IEEE Asia -Pacific Services Computing Conference

多媒體網路安全實驗室 OUTLINE INTRODUCTION AND MOTIVATION 1 LITERATURE REVIEW 2 CLOUD SECURITY ARCHITECTURE 33 CONCLUSION PROPOSED SCHEME 44 SECURITY ANALYSIS

多媒體網路安全實驗室 INTRODUCTION AND MOTIVATION  Cloud computing has evolved through a number of different services.  The basic goal of cloud computing is to provide great flexibility to users.  Users do not need to concern with the processing details.  Cloud systems are divided into three categories public cloud, private cloud and hybrid cloud. 2

多媒體網路安全實驗室  The new cloud computing technology offers many advantages: 1. Information shared in virtual environment 2. Dynamic scalability 3. Storage utility 4. Software utilization 5. Platform and infrastructure utilization 6. Managed distributed computing power INTRODUCTION AND MOTIVATION 3

多媒體網路安全實驗室 LITERATURE REVIEW TT 4

多媒體網路安全實驗室 CLOUD SECURITY ARCHITECTURE ID,PW Login Request One –time password Successful Authentication

多媒體網路安全實驗室 PROPOSED SCHEME 6  The notations used in this paper are mentioned below in table.

多媒體網路安全實驗室 PROPOSED SCHEME  The proposed scheme consists of three phases: 1. Registration 2. Login 3. Authentication  In addition, It also consists one activity called Password change. 7

多媒體網路安全實驗室 PROPOSED SCHEME  Registration 8 ClientServer Secure Channel Enter x into smartcard

多媒體網路安全實驗室 PROPOSED SCHEME  Login 9 ClientServer

多媒體網路安全實驗室 PROPOSED SCHEME  Authentication 10 ClientServer

多媒體網路安全實驗室 PROPOSED SCHEME  Password change ClientSmartcard 11

多媒體網路安全實驗室 SECURITY ANALYSIS  Session key agreement: This key is different in every login session and cannot be replayed after the session expires.  Replay attack The onetime key is valid for one login session, and the key is delivered to the user via mobile out of band channel.  Password guessing attack The scheme uses complex password term (J=h(ID h(PW x))) using one way hash function. 12

多媒體網路安全實驗室 SECURITY ANALYSIS  Stolen verifier attack and data modification attack Smartcard contain {I,J,B,p,g,h(.),x}, but without the knowledge of ID,PW and K it is very difficult to find B', L, R.  Insider attack The password is never used openly, instead, it is digest with (J=h(ID h(PW x))), which is very difficult to invert. 13

多媒體網路安全實驗室 SECURITY ANALYSIS  Mutual authentication 14 ClientServer

多媒體網路安全實驗室 SECURITY ANALYSIS  Man in the middle attack 15 ClientServer

多媒體網路安全實驗室 CONCLUSION  This paper proposes a strong user authentication framework for cloud computing with many security features.  The proposed protocol can resist many popular attacks.  There are two strong factor signifies in this scheme 1. Something you know 2. Something you have 16

多媒體網路安全實驗室