Accessibility navigation

Efficient biometric and password based mutual authentication for consumer USB mass storage devices

Giri, D., Sherratt, R. S. ORCID:, Maitra, T. and Amin, R. (2015) Efficient biometric and password based mutual authentication for consumer USB mass storage devices. IEEE Transactions on Consumer Electronics, 61 (4). pp. 491-499. ISSN 0098-3063

Text - Accepted Version
· Please see our End User Agreement before downloading.


It is advisable to refer to the publisher's version if you intend to cite from this work. See Guidance on citing.

To link to this item DOI: 10.1109/TCE.2015.7389804


A Universal Serial Bus (USB) Mass Storage Device (MSD), often termed a USB flash drive, is ubiquitously used to store important information in unencrypted binary format. This low cost consumer device is incredibly popular due to its size, large storage capacity and relatively high transfer speed. However, if the device is lost or stolen an unauthorized person can easily retrieve all the information. Therefore, it is advantageous in many applications to provide security protection so that only authorized users can access the stored information. In order to provide security protection for a USB MSD, this paper proposes a session key agreement protocol after secure user authentication. The main aim of this protocol is to establish session key negotiation through which all the information retrieved, stored and transferred to the USB MSD is encrypted. This paper not only contributes an efficient protocol, but also does not suffer from the forgery attack and the password guessing attack as compared to other protocols in the literature. This paper analyses the security of the proposed protocol through a formal analysis which proves that the information is stored confidentially and is protected offering strong resilience to relevant security attacks. The computational cost and communication cost of the proposed scheme is analyzed and compared to related work to show that the proposed scheme has an improved tradeoff for computational cost, communication cost and security.

Item Type:Article
Divisions:Life Sciences > School of Biological Sciences > Department of Bio-Engineering
ID Code:54675
Uncontrolled Keywords:Authentication, Security, Biometric, Consumer Storage, Password, MSD, USB.


Downloads per month over past year

University Staff: Request a correction | Centaur Editors: Update this record

Page navigation