Title: An efficient and novel three-factor user authentication scheme for large-scale heterogeneous wireless sensor networks
Authors: Ashok Kumar Das
Addresses: Center for Security, Theory and Algorithmic Research, International Institute of Information Technology, Hyderabad 500 032, India
Abstract: In this paper, we propose a new three-factor user authentication mechanism in heterogeneous wireless sensor networks, which is a biometric-based scheme that makes use of smart card along with the user's password. The proposed protocol provides strong authentication as compared to traditional related password-based schemes and achieves good properties such as it works without synchronised clock, it freely changes password, and it provides low computation, communication and sensor's energy costs, and mutual authentication. Our scheme establishes a symmetric secret session key shared between a legal user and a sensor node so that the secret session key can be used later for secure future communications between them. Moreover, the proposed scheme provides unconditional security against node capture attack and it is also resilient against different attacks. Furthermore, the simulation results of our scheme using the automated validation of internet security protocols and applications (AVISPA) tool ensure that our scheme is secure.
Keywords: wireless sensor networks; WSNs; user authentication; network security; biometrics; passwords; smart cards; hash function; mutual authentication; secret session key; secure communications; node capture attacks; simulation.
International Journal of Communication Networks and Distributed Systems, 2015 Vol.15 No.1, pp.22 - 60
Received: 26 Jun 2014
Accepted: 07 Mar 2015
Published online: 20 Jun 2015 *