Browse > Article
http://dx.doi.org/10.5762/KAIS.2017.18.1.32

A Design of User Authentication Protocol using Biometric in Mobile-cloud Environments  

Kim, Hyung-Uk (Department of Computer Science and Engineering, Soongsil University)
Kim, Bumryong (Department of Computer Science and Engineering, Soongsil University)
Jun, Moon-Seog (Department of Computer Science and Engineering, Soongsil University)
Publication Information
Journal of the Korea Academia-Industrial cooperation Society / v.18, no.1, 2017 , pp. 32-39 More about this Journal
Abstract
Recently, usage of mobile cloud services has been increasing. In particular, beyond the constraints of a single cloud computing service, studies on the multi-cloud have been actively pursued. A user must authenticate multiple cloud service providers to use additional cloud services in a multi-cloud. In previous studies, an authentication method using single sign-on (SSO) was not available in all cloud services. Cloud services will not be available when the SSO server is not available due to malicious attacks, because all authentication is done via the SSO server. Additionally, using a broker, there is a vulnerability that can expose authentication information for the service provider to a user who did not sign up. In this paper, we propose a secure user authentication protocol using biometric authentication that does not expose user information when using additional cloud services. The proposed protocol can use a single biometric authentication for multi-cloud services without storing authentication information in each cloud service. In terms of key stability (to ensure stability through the key agreement process and the key area), by disabling various attack methods, such as man-in-the-middle attacks and replay attacks, we provide secure mobile cloud services.
Keywords
Authentication; Biometric; Cloud Broker; Mobile-cloud; Multi-cloud;
Citations & Related Records
Times Cited By KSCI : 2  (Citation Analysis)
연도 인용수 순위
1 Wanpeng Li, Chris J. Mitchell, "Security issues in OAuth 2.0 SSO implementations.", International Conference on Information Security. Springer International Publishing, pp. 529-541, Oct. 2014. DOI: http://dx.doi.org/10.1007/978-3-319-13257-0_34
2 Alessandro Armando, Roberto Carbone, Luca Compagna, Jorge Cuellar, Llanos Tobarra, "Formal analysis of SAML 2.0 web browser single sign-on: breaking the SAML-based single sign-on for google apps.", Proceedings of the 6th ACM workshop on Formal methods in security engineering. ACM, pp. 1-10, Oct. 2008. DOI: http://dx.doi.org/10.1145/1456396.1456397
3 Eunhye Kim, "Cloud Service Brokerage.", Internet&Security Issue, pp. 27-32, Korea Internet&Security Agency, 2011.
4 Mohammed A. AlZain,Eric Pardede, Ben Soh, James A. Thom, "Cloud Computing Security: From Single to Multi-clouds.", 2012 45th Hawaii International Conference on System Sciences. IEEE, pp. 5490-5499, Jan, 2012. DOI: http://dx.doi.org/10.1109/HICSS.2012.153
5 Jaekyung Lee, Junggab Son, Hunmin Kim, Heekuck Oh, "An Authentication Scheme for Providing to User Service Transparency in Multicloud Environment.", Journal of The Korea Institute of Information Security & Cryptology, vol. 23, no. 6, pp. 1131-1141, Dec, 2013. DOI: http://dx.doi.org/10.13089/JKIISC.2013.23.6.1131   DOI
6 Dan Boneh, "The decision diffie-hellman problem.", International Algorithmic Number Theory Symposium. Springer Berlin Heidelberg, vol. 1423, pp. 48-63, June, 1998. DOI: http://dx.doi.org/10.1007/bfb0054851
7 Yukyeong Wi, Jun Kwak, "OpenID based User Authentication Scheme for Multi-clouds Environment.", The Journal of Digital Policy&Management, vol. 11, no. 7, pp. 215-223, Jul, 2013.
8 Emiliano Casalicchio, Monica Palmirani, "A Cloud Service Broker with Legal-Rule Compliance Checking and Quality Assurance Capabilities.", Procedia Computer Science, vol. 68, pp. 136-150, Sept. 2015. DOI: http://dx.doi.org/10.1016/j.procs.2015.09.230   DOI
9 Jeong-Hyo Park, " A Non-Password Secure Biometric Digital Signature Method for Mobile Device", Soongsil University Graduate School, 2016.
10 Rolf Lindemann, Davit Baghdasaryan, Eric Tiffany, "FIDO UAF Protocol Specification v1.0", FIDO Alliance Proposed Standard, 2014.
11 Sampath Srinivas, Dirk Balfanz, Eric Tiffany, "Universal 2nd factor (U2F) overview", FIDO Alliance Proposed Standard, 2015.
12 Pratap Murukutla, K. C. Shet, "Single Sign on for Cloud.", 2012 International Conference on Computing Sciences. IEEE, pp. 176-179, Sept. 2012. DOI: http://dx.doi.org/10.1109/ICCS.2012.66