loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Sigurd Eskeland and Ahmed Fraz Baig

Affiliation: Norwegian Computing Center, Postboks 114 Blindern, 0314 Oslo, Norway

Keyword(s): Privacy-preserving Protocols, Cryptographic Protocols, Cryptanalysis, Homomorphic Encryption, Continuous Authentication.

Abstract: Continuous authentication has been proposed as a complementary security mechanism to password-based authentication for computer devices that are handled directly by humans, such as smart phones. Continuous authentication has some privacy issues as certain user features and actions are revealed to the authentication server, which is not assumed to be trusted. Wei et al. proposed in 2021 a privacy-preserving protocol for behavioral authentication that utilizes homomorphic encryption. The encryption prevents the server from obtaining sampled user features. In this paper, we show that the Wei et al. scheme is insecure regarding both an honest-but-curious server and an active eavesdropper. We present two attacks: The first attack enables the authentication server to obtain the secret user key, plaintext behavior template and plaintext authentication behavior data from encrypted data. The second attack enables an active eavesdropper to restore the plaintext authentication behavior data fro m the transmitted encrypted data. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 98.80.143.34

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Eskeland, S. and Baig, A. (2022). Cryptanalysis of a Privacy-preserving Behavior-oriented Authentication Scheme. In Proceedings of the 19th International Conference on Security and Cryptography - SECRYPT; ISBN 978-989-758-590-6; ISSN 2184-7711, SciTePress, pages 299-304. DOI: 10.5220/0011140300003283

@conference{secrypt22,
author={Sigurd Eskeland. and Ahmed Fraz Baig.},
title={Cryptanalysis of a Privacy-preserving Behavior-oriented Authentication Scheme},
booktitle={Proceedings of the 19th International Conference on Security and Cryptography - SECRYPT},
year={2022},
pages={299-304},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011140300003283},
isbn={978-989-758-590-6},
issn={2184-7711},
}

TY - CONF

JO - Proceedings of the 19th International Conference on Security and Cryptography - SECRYPT
TI - Cryptanalysis of a Privacy-preserving Behavior-oriented Authentication Scheme
SN - 978-989-758-590-6
IS - 2184-7711
AU - Eskeland, S.
AU - Baig, A.
PY - 2022
SP - 299
EP - 304
DO - 10.5220/0011140300003283
PB - SciTePress