Author: Khan Muhammad Khurram Alghathbar Khaled
Publisher: MDPI
E-ISSN: 1424-8220|10|3|2450-2459
ISSN: 1424-8220
Source: Sensors, Vol.10, Iss.3, 2010-03, pp. : 2450-2459
Disclaimer: Any content in publications that violate the sovereignty, the constitution or regulations of the PRC is not accepted or approved by CNPIEC.
Abstract
User authentication in wireless sensor networks (WSN) is a critical security issue due to their unattended and hostile deployment in the field. Since sensor nodes are equipped with limited computing power, storage, and communication modules; authenticating remote users in such resource-constrained environments is a paramount security concern. Recently, M.L. Das proposed a two-factor user authentication scheme in WSNs and claimed that his scheme is secure against different kinds of attack. However, in this paper, we show that the M.L. Das-scheme has some critical security pitfalls and cannot be recommended for real applications. We point out that in his scheme: users cannot change/update their passwords, it does not provide mutual authentication between gateway node and sensor node, and is vulnerable to gateway node bypassing attack and privileged-insider attack. To overcome the inherent security weaknesses of the M.L. Das-scheme, we propose improvements and security patches that attempt to fix the susceptibilities of his scheme. The proposed security improvements can be incorporated in the M.L. Das-scheme for achieving a more secure and robust two-factor user authentication in WSNs.
Related content
Access to resources
Recommend
RUASN: A Robust User Authentication Framework for Wireless Sensor Networks
By Kumar Pardeep Choudhury Amlan Jyoti Sain Mangal Lee Sang-Gon Lee Hoon-Jae
Sensors, Vol. 11, Iss. issue, 2011-05 ,pp. :