JISE

[1] [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14] [15]

Journal of Information Science and Engineering, Vol. 33 No. 4, pp. 907-921

A Privacy-Preserving Multi-Factor Authenticated Key Exchange Protocol with Provable Security for Cloud Computing

FU-SHAN WEI^1,2, QI JIANG³, RUI-JIE ZHANG¹ AND CHUAN-GUI MA⁴
¹State Key Laboratory of Mathematical Engineering and Advanced Computing
Zhengzhou, 450001 P.R. China
²State Key Laboratory of Cryptology
P. O. Box 5159, Beijing, 100878 P.R. China
³School of Cyber Engineering
Xidian University
Xi'an, 710071 P.R. China
⁴Department of Basic, Army Aviation Institution
Beijing, 101123 P.R. China
E-mail: {weifs831020; rjz_wonder}@163.com; jiangqixdu@xidian.edu.cn; chuanguima@sina.com

In the past decade, cloud computing has grown from being a promising business concept to one of the fast growing segments of the information technology's industry. More and more information of individuals and companies are stored in the cloud. However, security and privacy issues pose as the key roadblock to its fast adoption. In order to address these issues, we present an efficient MFAKE protocol based on fuzzy extractors in this paper. The novel protocol can be proven secure in the random oracle model and achieves truly multi-factor security. Compared with other related MFAKE protocols, our protocol not only enjoys stronger security, but also has greater efficiency both in terms of computation and communication. The proposed MFAKE protocol provides high-level security and protects user's privacy, so it is particular suitable for cloud computing environments.

Keywords: multi-factor key exchange, password, cloud computing, biometrics, fuzzy extractors

Retrieve PDF document (JISE_201704_03.pdf)