Open Access Open Access  Restricted Access Subscription Access

A Chaotic Maps Based Key Agreement and User Anonymity Protocol without Using Smart Cards and Symmetric Key En/Decryptions

Chun-Ta Li,
Cheng-Chi Lee,
Chi-Yao Weng,

Abstract


Password authenticated key agreement protocol allows users to use an easy-to-remember password and establish a secure session key with the help of a trusted server. Recently, Farash and Attari proposed an improved key agreement protocol based on chaotic maps and they pointed out that Gong et al.'s protocol is vulnerable to stolen-verifier attack and password change pitfalls. However, in this paper, we analyze the security of Farash and Attari's protocol and show that it fails to resist known-key attack if the previous session key shared between two parties is compromised. In addition, their protocol is insecure against many logged-in users' attack and the server is not aware of having caused problem. To fill the security gaps, we further design an improved protocol for password authenticated key agreement with user anonymity. To the best of our knowledge, none of the recently proposed password authenticated key agreement protocols can ensure anonymous interactions between the login user and the remote server and this work is the first attempt to provide a secure user anonymity protocol without using smart cards and symmetric key en/decryptions in remote login environments.

Keywords


Chaotic maps; Key agreement; Password authentication; Non-smart card; User anonymity

Citation Format:
Chun-Ta Li, Cheng-Chi Lee, Chi-Yao Weng, "A Chaotic Maps Based Key Agreement and User Anonymity Protocol without Using Smart Cards and Symmetric Key En/Decryptions," Journal of Internet Technology, vol. 18, no. 5 , pp. 975-984, Sep. 2017.

Full Text:

PDF

Refbacks

  • There are currently no refbacks.





Published by Executive Committee, Taiwan Academic Network, Ministry of Education, Taipei, Taiwan, R.O.C
JIT Editorial Office, Library and Information Center, National Dong Hwa University
No. 1, Sec. 2, Da Hsueh Rd. Shoufeng, Hualien 97401, Taiwan, R.O.C.
Tel: +886-3-931-7017  E-mail: jit.editorial@gmail.com