Lightweight Privacy-Preserving Authentication Protocols Secure against Active Attack in an Asymmetric Way

2008 IEICE transactions on information and systems  
As pervasive computing technologies develop fast, the privacy ppprotection becomes a crucial issue and needs to be coped with very carefully. Typically, it is difficult to efficiently identify and manage plenty of the low-cost pervasive devices like Radio Frequency Identification Devices (RFID), without leaking any privacy information. In particular, the attacker may not only eavesdrop the communication in a passive way, but also mount an active attack to ask queries adaptively, which is
more » ... ly more dangerous. Towards settling this problem, in this paper, we propose two lightweight authentication protocols which are privacy-preservi against active attack, in an asymmetric way. That asymmetric style with privacy-oriented simplification succeeds to reduce the load of low-cost devices and drastically decrease the computation cost for the management of server. This is because that, unlike the usual management of the identities, our approach does not require any synchronization nor exhaustive search in the database, which enjoys great convenience in case of a large-scale system. The protocols are based on a fast asymmetric encryption with specialized simplification and only one cryptographic hash function, which consequently assigns an easy work to pervasive devices. Besides, our results do not require the strong assumption of the random oracle. key words: lightweight protocol, asymmetric authentication, privacypreserving, active attack
doi:10.1093/ietisy/e91-d.5.1457 fatcat:tt5opyt5pjf6nmp5kroykctfzi