A mobile based remote user authentication scheme without verifier table for cloud based services
- Title
- A mobile based remote user authentication scheme without verifier table for cloud based services
- Creator
- Binu S.; Misbahuddin M.; Raj P.
- Description
- The emerging Cloud computing technology, offering computing resources as a service is gaining increasing attention of both the public and private sector. For the whole hearted adoption of Cloud, the service providers need to ensure that only valid users gain access to the services and data residing within the provider's premises. Ensuring secure access to sensitive resources within the Cloud requires a strong user authentication mechanism using multiple authentication factors. The mechanisms should also consider the increasing needs of Internet access through smart phones and other mobile devices and facilitate access through a variety of devices. Traditionally, a user needs to maintain separate user accounts for each Service Provider whose service he/she desires to use and this may cause inconvenience to users. Single Sign on (SSO) addresses this issue by permitting users to create one login credential and access multiple services hosted in different domains. In this scenario, a compromise of the single credential can result in account take over at many other sites. This points out to the requirement of strengthening the authentication mechanism by using more than one factor. This paper proposes a SSO based remote user authentication scheme for a Cloud environment. The proposed protocol uses password and mobile token and does not require the server to maintain a verifier table. The protocol is verified using automated security Protocol verification tool, Scyther and the results prove that the protocol provides protection against man-in-the-middle attack, replay attack and secrecy of the user's credentials. 2015 ACM.
- Source
- ACM International Conference Proceeding Series, Vol-10-13-August-2015, pp. 502-509.
- Date
- 2015-01-01
- Publisher
- Association for Computing Machinery
- Subject
- Cloud; Mobile token; No-verifier-table; SAML; Single sign-on; Two-factor authentication
- Coverage
- Binu S., Christ University, Bangalore, India; Misbahuddin M., C-DAC, Electronic City, Bangalore, India; Raj P., IBM India Pvt. Ltd., India
- Rights
- Restricted Access
- Relation
- ISBN: 978-145033361-0
- Format
- Online
- Language
- English
- Type
- Conference paper
Collection
Citation
Binu S.; Misbahuddin M.; Raj P., “A mobile based remote user authentication scheme without verifier table for cloud based services,” CHRIST (Deemed To Be University) Institutional Repository, accessed February 23, 2025, https://archives.christuniversity.in/items/show/21007.