Weaknesses in an anonymous authentication scheme for roaming service in global mobility networks

Taek Young Youn; Young Ho Park; Jongin Lim

doi:10.1109/LCOMM.2009.090488

Weaknesses in an anonymous authentication scheme for roaming service in global mobility networks

Taek Young Youn, Young Ho Park, Jongin Lim

School of Cybersecurity

Research output: Contribution to journal › Article › peer-review

72 Citations (Scopus)

Abstract

Recently, Chang, Lee, and Chiu proposed an enhanced anonymous authentication scheme which permits mobile users to anonymously enjoy roaming service in global mobile networks. In this letter, we show that their scheme fails to achieve the anonymity by providing four attack strategies. Moreover, we show that anyone can recover a mobile user's session keys by using the identity of the mobile user. Hence, Chang et al.'s scheme cannot provide secure key establishing service since an adversary can recover the identity of a mobile user by performing one of our attacks.

Original language	English
Pages (from-to)	471-473
Number of pages	3
Journal	IEEE Communications Letters
Volume	13
Issue number	7
DOIs	https://doi.org/10.1109/LCOMM.2009.090488
Publication status	Published - 2009

Keywords

Anonymous authentication
Mobile
Security

ASJC Scopus subject areas

Modelling and Simulation
Computer Science Applications
Electrical and Electronic Engineering

Access to Document

10.1109/LCOMM.2009.090488

Cite this

@article{8d8936236f704996a0ebd8806bb09d3e,

title = "Weaknesses in an anonymous authentication scheme for roaming service in global mobility networks",

abstract = "Recently, Chang, Lee, and Chiu proposed an enhanced anonymous authentication scheme which permits mobile users to anonymously enjoy roaming service in global mobile networks. In this letter, we show that their scheme fails to achieve the anonymity by providing four attack strategies. Moreover, we show that anyone can recover a mobile user's session keys by using the identity of the mobile user. Hence, Chang et al.'s scheme cannot provide secure key establishing service since an adversary can recover the identity of a mobile user by performing one of our attacks.",

keywords = "Anonymous authentication, Mobile, Security",

author = "Youn, {Taek Young} and Park, {Young Ho} and Jongin Lim",

year = "2009",

doi = "10.1109/LCOMM.2009.090488",

language = "English",

volume = "13",

pages = "471--473",

journal = "IEEE Communications Letters",

issn = "1089-7798",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "7",

}

TY - JOUR

T1 - Weaknesses in an anonymous authentication scheme for roaming service in global mobility networks

AU - Youn, Taek Young

AU - Park, Young Ho

AU - Lim, Jongin

PY - 2009

Y1 - 2009

N2 - Recently, Chang, Lee, and Chiu proposed an enhanced anonymous authentication scheme which permits mobile users to anonymously enjoy roaming service in global mobile networks. In this letter, we show that their scheme fails to achieve the anonymity by providing four attack strategies. Moreover, we show that anyone can recover a mobile user's session keys by using the identity of the mobile user. Hence, Chang et al.'s scheme cannot provide secure key establishing service since an adversary can recover the identity of a mobile user by performing one of our attacks.

AB - Recently, Chang, Lee, and Chiu proposed an enhanced anonymous authentication scheme which permits mobile users to anonymously enjoy roaming service in global mobile networks. In this letter, we show that their scheme fails to achieve the anonymity by providing four attack strategies. Moreover, we show that anyone can recover a mobile user's session keys by using the identity of the mobile user. Hence, Chang et al.'s scheme cannot provide secure key establishing service since an adversary can recover the identity of a mobile user by performing one of our attacks.

KW - Anonymous authentication

KW - Mobile

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=68349157387&partnerID=8YFLogxK

U2 - 10.1109/LCOMM.2009.090488

DO - 10.1109/LCOMM.2009.090488

M3 - Article

AN - SCOPUS:68349157387

SN - 1089-7798

VL - 13

SP - 471

EP - 473

JO - IEEE Communications Letters

JF - IEEE Communications Letters

IS - 7

ER -

Weaknesses in an anonymous authentication scheme for roaming service in global mobility networks

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this