BTh-UAP:Biometric-Based Three-Factor User Authentication Protocol for Wireless Sensor Network

FANG Wei-dong; ZHANG Wu-xiong; YANG Yang; ZHANG Chuan-lei; CHEN Wei

doi:10.3969/j.issn.0372-2112.2018.03.028

您当前的位置：

首页 >

文章列表页 >

BTh-UAP:Biometric-Based Three-Factor User Authentication Protocol for Wireless Sensor Network

更新时间：2025-07-16

- BTh-UAP:Biometric-Based Three-Factor User Authentication Protocol for Wireless Sensor Network
- Acta Electronica Sinica Vol. 46, Issue 3, Pages: 702-713(2018)
- 作者机构：
  
  1. 中国科学院上海微系统与信息技术研究所无线传感网与通信重点实验室,上海,200051
  2. 上海无线通信研究中心,上海,201210
  3. 天津科技大学计算机科学与信息工程学院,天津,300222
  7. 中国矿业大学计算机科学与技术学院,江苏,徐州,221116
- 作者简介：
- 基金信息：
- DOI：10.3969/j.issn.0372-2112.2018.03.028
  CLC： TP393
- Published Online：25 March 2018，
  
  Published：2018
- 稿件说明：
移动端阅览
FANG Wei-dong, ZHANG Wu-xiong, YANG Yang, et al. BTh-UAP:Biometric-Based Three-Factor User Authentication Protocol for Wireless Sensor Network[J]. Acta Electronica Sinica, 2018, 46(3): 702-713.
DOI：

FANG Wei-dong, ZHANG Wu-xiong, YANG Yang, et al. BTh-UAP:Biometric-Based Three-Factor User Authentication Protocol for Wireless Sensor Network[J]. Acta Electronica Sinica, 2018, 46(3): 702-713. DOI： 10.3969/j.issn.0372-2112.2018.03.028.

摘要

为满足高安全级别场景（如军事、国家安全、银行等）的应用需求，进一步提高无线传感器网络用户认证协议的安全性，提出了基于生物特征识别的三因素用户认证协议.针对Althobaiti协议无法防御节点妥协攻击、模拟攻击、中间人攻击和内部特权攻击的安全缺陷，增加智能卡和密码作为协议基本安全因素，并利用生物特征标识信息生成函数与回复函数处理的生物特征标识作为附加安全因素；在密钥管理中，为每个节点配置了与网关节点共享唯一密钥，保证认证过程的独立性与安全性；实现用户自主选择与网关节点的共享密钥，提高公共信道通信的安全性；在网关节点不参与的情况下，设计密码和生物特征标识更新机制，保证二者的新鲜性.通过Dolev-Yao拓展威胁模型的分析与AVISPA的OFMC分析终端的仿真，结果证明该认证协议克服了Althobaiti协议安全缺陷，且对计算能力的需求小于公钥加密.权衡安全性与计算成本，该协议适用于资源受限且安全需求高的无线传感器网络应用.

Abstract

To meet the application requirements in high-level security scenarios (i. e.

military

national security and banks)

and further enhance the security for user authentication protocol in wireless sensor network (WSN)

the biometric-based three-factor user authentication protocol (BTh-UAP) is proposed. For defending against the node compromise attack

the simulated attack

the man-in-the-middle attack and the privileged-insider attack in Althobaiti protocol

the smart card and password are taken as its basic secure factors

and the biometric identification that is operated by the biometric identification information generation and reply function is introduced as additional secure factor. In key management

a unique shared key for each node combined with gateway node is delivered to guarantee the independence and security in authentication phase. The shared key between user and gateway node is autonomously chosen to improve the security of the common communication channel. Furthermore

in the circumstance for non-participation of node

the updating scheme for password and biometric identification is designed to achieve the freshness. The results demonstrate that BTh-UAP not only overcomes Althobaiti's security flaws

but also its requirements for computing capability are less than the public-key encryption via using the Dolev-Yao threat model analysis and AVISPA's OFMC simulation. The tradeoff between security and computing costs indicates that BTh-UAP can be applied in high-level security scenarios for resource-constrained wireless sensor network.

关键词

Keywords

references

Views

275

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Robust Resource Allocation Algorithm for Secure Communication in LEO-Based Satellite Communication Systems

Anti-Attack Color Image Encryption Scheme Based on Hopfield Network “Pseudo Attractor” and Alternating Quantum Random Walk

Energy-Efficient Algorithm in Sensor Networks with Non-Uniform Data Generating Rate

A Cutting Based Detector Generating and Matching Algorithm

Related Author

XU Yong-jun

LU Cheng-zhuang

DONG Yi-heng

ZHAO Tao

ZHOU Ji-hua

FU Xiao-jian

SONG Zhao-yang

WANG Yi-nuo

Related Institution

State Key Laboratory of Millimeter Waves, Southeast University

Aerospace New Generation Communications Co., Ltd.

School of Communications and Information Engineering, Chongqing University of Posts and Telecommunications

School of Information and Control Engineering， Qingdao University of Technology

School of Science， Qingdao University of Technology

⁰