Title: Security analysis and enhancements of a multi-factor biometric authentication scheme

Authors: Min Wu; Jianhua Chen; Wenxia Zhu; Zhenyang Yuan

Addresses: School of Mathematics and Statistics, Wuhan University, Wuhan, 430072, China ' School of Mathematics and Statistics, Wuhan University, Wuhan, 430072, China ' School of Mathematics and Statistics, Wuhan University, Wuhan, 430072, China ' School of Mathematics and Statistics, Wuhan University, Wuhan, 430072, China

Abstract: The security of authentication scheme, especially multi-factor biometric authentication scheme based on password, smart card, and biometric in wireless communication is an important and significant issue that researchers have been focusing on lately. Most recently, Liling Cao et al. improved a multi-factor biometric authentication scheme which demonstrated that their scheme can resist masquerading attack, user masquerading attack, replay attack, and provide mutual authentication, and so on. In this paper, it is indicated that their scheme is vulnerable to stolen smart card attack, user impersonation attack, server impersonation attack and man-in-the-middle-attack. Then, in order to avoid these attacks, a revised scheme with slight high computation costs but more security than other related schemes is presented.

Keywords: multi-factor authentication; biometrics; mutual authentication; passwords; smart cards; security analysis; biometric authentication; stolen smart card attacks; user impersonation attacks; server impersonation attacks; man-in-the-middle-attacks.

DOI: 10.1504/IJESDF.2016.079447

International Journal of Electronic Security and Digital Forensics, 2016 Vol.8 No.4, pp.352 - 365

Received: 07 Nov 2015
Accepted: 06 Apr 2016
Published online: 28 Sep 2016 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article