A Secure User Authentication Protocol for Heterogeneous Mobile Environments

Alzubair Hassan; Rafik Hamza; Fagen Li; Awad Ali; Mohammed Bakri Bashir; Samar M. Alqhtani; Tawfeeg Mohmmed Tawfeeg; Adil Yousif

doi:10.1109/ACCESS.2022.3186683

IEEE Access (Jan 2022)

A Secure User Authentication Protocol for Heterogeneous Mobile Environments

Alzubair Hassan,
Rafik Hamza,
Fagen Li,
Awad Ali,
Mohammed Bakri Bashir,
Samar M. Alqhtani,
Tawfeeg Mohmmed Tawfeeg,
Adil Yousif

Affiliations

Alzubair Hassan: ORCiD; Department of Computer Science, School of Computer Science and Informatics, University College Dublin, Dublin, Ireland
Rafik Hamza: ORCiD; Institute for International Strategy, Tokyo International University, Saitama, Japan
Fagen Li: ORCiD; School of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China
Awad Ali: Department of Computer Science, College of Science and Arts-Sharourah, Najran University, Sharourah, Saudi Arabia
Mohammed Bakri Bashir: Department of Math, Turubah University College, Taif University, Taif, Saudi Arabia
Samar M. Alqhtani: ORCiD; Department of Information Systems, College of Computer Science and Information Systems, Najran University, Najran, Saudi Arabia
Tawfeeg Mohmmed Tawfeeg: Department of Computer Science, Faculty of Computer Science and Information Technology, University of Science and Technology, Khartoum, Sudan
Adil Yousif: ORCiD; Department of Computer Science, College of Science and Arts-Sharourah, Najran University, Sharourah, Saudi Arabia

DOI: https://doi.org/10.1109/ACCESS.2022.3186683
Journal volume & issue: Vol. 10
pp. 69757 – 69770

Abstract

Read online

Mobile devices have become very important for our daily needs. The user authentication protocols with the key agreement are required to deal with the security issues that arise from the use of mobile devices through Internet applications. However, existing user authentication protocols are only suitable if the client and the server use a similar cryptographic approach. Therefore, it is important to develop an authentication protocol for mobile environments with heterogeneous cryptographic approaches. In this paper, an efficient user authentication and key agreement protocol is proposed for a heterogeneous client-server mobile environment. The security of the proposed scheme is formally proved under the ${q}$ -strong Diffie-Hellman problem ( ${q}$ -SDH), the ${q}$ -bilinear Diffie-Hellman inversion problem ( ${q}$ -BDHI), and the modified bilinear Diffie-Hellman inversion problem (mBDHI), respectively. Our scheme has reasonable processing costs and communication costs on the client and server sides. Moreover, our scheme is suitable for applications that use different cryptographic approaches. In particular, the proposed protocol can work when the client applies the identity-based cryptosystem and the server applies the certificateless cryptosystem.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords