Back to Search
Start Over
Cryptanalysis and security improvements of 'two-factor user authentication in wireless sensor networks'.
- Source :
-
Sensors (Basel, Switzerland) [Sensors (Basel)] 2010; Vol. 10 (3), pp. 2450-9. Date of Electronic Publication: 2010 Mar 23. - Publication Year :
- 2010
-
Abstract
- User authentication in wireless sensor networks (WSN) is a critical security issue due to their unattended and hostile deployment in the field. Since sensor nodes are equipped with limited computing power, storage, and communication modules; authenticating remote users in such resource-constrained environments is a paramount security concern. Recently, M.L. Das proposed a two-factor user authentication scheme in WSNs and claimed that his scheme is secure against different kinds of attack. However, in this paper, we show that the M.L. Das-scheme has some critical security pitfalls and cannot be recommended for real applications. We point out that in his scheme: users cannot change/update their passwords, it does not provide mutual authentication between gateway node and sensor node, and is vulnerable to gateway node bypassing attack and privileged-insider attack. To overcome the inherent security weaknesses of the M.L. Das-scheme, we propose improvements and security patches that attempt to fix the susceptibilities of his scheme. The proposed security improvements can be incorporated in the M.L. Das-scheme for achieving a more secure and robust two-factor user authentication in WSNs.
Details
- Language :
- English
- ISSN :
- 1424-8220
- Volume :
- 10
- Issue :
- 3
- Database :
- MEDLINE
- Journal :
- Sensors (Basel, Switzerland)
- Publication Type :
- Academic Journal
- Accession number :
- 22294935
- Full Text :
- https://doi.org/10.3390/s100302450