Beginning Cryptography in Java
Beginning Cryptography in Java
Cryptography & Network Security
Cryptography & Network Security
| Hi-index | 0.00 |
Mobile devices are seeing an increase in usage in recent years and mobile security becomes important in part due to the shift of computing landscape towards mobile devices. Security and assurance of mobile computing is vital to the normal functioning in people's lives and our social, economic and political systems. In this paper, we propose and implement a novel system that authenticates users, devices, and a remote server in a mobile computing environment based on fuzzy vault, digital signature and zero-knowledge authentication. Our protocol is robust against the following attacks: 1) sniffing attack; 2) man-in-the-middle; 3) data modification; 4) impersonation; and 5) loss of device. Additionally, our protocol provides usability by using a fuzzy picture password. The strength of our protocol security is enhanced by using sensor data from the mobile device in the process of key generation. Our protocol was implemented and evaluated using Android and Amazon EC2.