Abstract:Authenticated key agreement protocols, aiming at solving the problems to set up a secure channel over public Internet, can achieve authentication of the corresponding participants and confidentiality of data transmission. Nowadays, most of the authenticated key agreement protocols focus on security, efficiency, and user experience at the same time. One‐time password authenticated algorithm, which is that a hash chain can update by itself smoothly and securely through capturing the secure bit of the tip, has the feature of high‐efficient. In addition, biometrics‐based algorithm can make the scheme more secure and more amiable for users. The combination of aforementioned algorithms can lead to a high practical scheme in the universal client/server architecture. Based on these motivations, the paper firstly proposed the new concept of one‐time identity–password (OTIP), which means the identity and the password can be used only once. Then, a new robust biometrics‐based OTIP authenticated key agreement protocol is given based on the OTIP. Security of the protocol is based on the biometric authentication, a secure symmetric encryption and a secure one‐way hash function with the hash chain. At the same time, the proposed protocol can not only refrain from many consuming algorithms but also robust to many kinds of attacks and owns much excellent features. Finally, we provide the secure proof and the efficiency analysis about our proposed scheme. Copyright © 2015 John Wiley & Sons, Ltd. The paper firstly proposed a new concept of one‐time identity–password, which means identity and password can be used only once. Then, we present a provably secure and flexible one‐time identity–password authenticated key agreement scheme based on biometrics. The core ideas of our scheme are features of security and efficiency in the mobile device and server's side and feature of user friendly for the user's side. Through comparing with recently related work, our scheme has satisfactory security, efficiency, and functionality.

One-time identity-password authenticated key agreement scheme based on biometrics

A PRIVACY-PRESERVING AUTHENTICATION SCHEME USING BIOMETRICS FOR PERVASIVE COMPUTING ENVIRONMENTS

Authentication scheme based on biometric encryption for pervasive computing environments

A Lightweight Three-Factor User Authentication Protocol for the Information Perception of IoT

Authentication Scheme Based on Biometric Encryption

An Identity-Based One-Time Password Scheme with Anonymous Authentication

A novel OTP based tripartite authentication scheme

oBAKE: an Online Biometric-Authenticated Key Exchange Protocol

Lightweight One-Time Password Authentication Scheme Based on Radio-Frequency Fingerprinting

Research on the Network Security and Identity Authentication Technology

An Efficient Mutual Authentication and Key Agreement Scheme Without Password for Wireless Sensor Networks

A Biometrics-Based Mutual Authentication and Key Agreement Protocol for TMIS Using Elliptic Curve Cryptography

A Provably Secure Biometrics-Based Authenticated Key Agreement Scheme for Multi-Server Environments

A new One-time Password Method

ID-based One Round Authenticated Group Key Agreement Protocol with Bilinear Pairings

Research and Implementation of One-Time Password Authentication in Computer Networks

Authentication And Secure Key Management In E-Health Services: A Robust And Efficient Protocol Using Biometrics

Efficient Id-Based One Round Authenticated Group Key Agreement Protocol

An enhanced Kerberos protocol based on one-time password

Applying Biometrics to Design Three-Factor Remote User Authentication Scheme with Key Agreement.

Anonymous authentication key agreement scheme with pairing-based cryptography for home-based multi-sensor Internet of Things