Comment on ‘ElGamal cryptosystem‐based secure authentication system for cloud‐based IoT applications’

Azeem Irshad; Shehzad Ashraf Chaudhry

doi:10.1049/ntw2.12014

IET Networks (Sep 2021)

Comment on ‘ElGamal cryptosystem‐based secure authentication system for cloud‐based IoT applications’

Azeem Irshad,
Shehzad Ashraf Chaudhry

Affiliations

Azeem Irshad: Department of Computer and Software Engineering International Islamic University Islamabad Pakistan
Shehzad Ashraf Chaudhry: Department of Computer Engineering Istanbul Gelisim University Istanbul Turkey

DOI: https://doi.org/10.1049/ntw2.12014
Journal volume & issue: Vol. 10, no. 5
pp. 244 – 245

Abstract

Read online

Abstract This comment is presented to identify the drawbacks in a recently demonstrated scheme by Maitra et al., SAS‐Cloud: doi:10.1049/iet-net.2019.0004, which adopted an ElGamal cryptosystem‐based technique for biometric authentication in cloud‐based IoT applications. In this protocol, the authors claim that their scheme provides mutual authentication. However, it is demonstrated in this article that the protocol merely supports unilateral authentication, which may result in clogging attack on the server's end. This is because the latter is unable to verify the authentication request in absolute terms, which might lead to resource clogging as well as denial of service attack affecting its Quality of Service (QoS).

Published in IET Networks

ISSN: 2047-4954 (Print); 2047-4962 (Online)
Publisher: Wiley
Country of publisher: United Kingdom
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication
Website: https://ietresearch.onlinelibrary.wiley.com/journal/20474962

About the journal

Abstract

Keywords