Multi-Server Authentication and Key Agreement Protocol with Distributed Storage Utility
摘要
The majority of services are now delivered to end users, clients, or citizens through Information and Communication Technology (ICT), as internet access has expanded beyond urban centers to reach rural and remote areas. This widespread connectivity makes systems and services—whether offered by government, businesses, or other organizations—easily accessible via ICT-based platforms. In order to serve their clients, these services use distributed computing, shared resources, and networked services in both central and multi-server-based architectures and the biggest challenge for these systems are security which is a must for deployment because of the system’s openness. According to the stan- dard ISO security model, one of the most important security services required for every ICT-based system—and the same is true for systems based on multi-server architecture—is authentication. This work develops an authentication protocol for a system based on a multi-server architecture that does not rely on a central verification table and has the ability to store authentication data in distributed manner. The suggested protocol offers the ability to share parameters across all communication tiers in order to determine the session key for subsequent communication, in addition to this authentication service. The proposed protocol’s goal is to combine key agreement and authentication into a single protocol with distributed storage functionality. The proposed protocol integrates authentication and session key agreement in a unified framework, facilitating seamless access to services through a single registration process. It is designed with applicability to systems like Indian e-governance, it address security challenges arising from system openness. It is rigorously evaluated against 21 security goals. The cost of computing for any of the security protocols is in general based on used hashing, and this protocol costs 22Thash and the total 496 bytes for computation and communication respectively.