Affiliations: [a] State Key Laboratory of Mathematical Engineering and Advanced Computing, Zhengzhou, China. weifs831020@163.com | [b] Department of Basic Courses, Army Aviation Institute, Beijing, China
Correspondence:
[†]
Address for correspondence: Science Road No. 62, High technic district, Zhengzhou, Henan province, China
Note: [*] A preliminary version of this paper appears in The 2nd International Conference on Cloud Computing and Security (ICCCS 2016). This work is supported by the National Natural Science Foundation of China (Nos. 61772548, 61501515, 61309016, 61379150), Postdoctoral Science Foundation of Shanxi Province, and Key Scientific Technological Project of Henan Province (Grant Nos. 122102210126, 092101210502).
Abstract: Two-factor authenticated key exchange (TFAKE) protocols are critical tools for ensuring identity authentication and secure data transmission for cloud computing. Until now, numerous TFAKE protocols based on smart cards and passwords are proposed under this circumstance. Unfortunately, most of them are found insecure against various attacks. Researchers focus on cryptanalysis of these protocols and then fixing the loopholes. Little attention has been paid to design rationales and formal security models of these protocols. In this paper, we summarize the security requirements and put forward a formal security model for TFAKE protocols for cloud computing. We then present an efficient TFAKE protocol without using expensive asymmetric cryptology mechanisms to achieve high efficiency. Our protocol can be proven secure in the random oracle model and achieves user anonymity. Compared with other TFAKE protocols, our protocol is more efficient and enjoys provable security.
