Document Type : Primary Research paper


Assistant Professor, CSE Department, Nehru Institute of Technology


Authenticated key exchange (AKE) is one of the most important
applications in applied cryptography, where a user interacts with a server to set up a
session key where pre-registered information (aka. authentication factor), such as a
password or biometrics, of the user is stored. While single-factor AKE is widely used
in practice, higher security concerns call for multi-factor AKE (MFAKE) schemes,
e.g. combining both passwords and biometrics and device simultaneously. However,
in some casually designed schemes, security is even weakened in the sense that
leakage of one authentication factor will defeat the whole MFAKE protocol.
Furthermore, an inevitable by-product arises that the usability of the protocol often
drops greatly. To summarize, the existing multi-factor protocols did not provide
enough security and efficiency simultaneously. Here, we make one step ahead by
proposing a very efficient MFAKE protocol. We define the security model and give
the according security analysis. We also implement our proposed method as textual,
graphical, biometric and device password to access the user accounts. The theoretic
comparisons and the experimental results show that our scheme achieves both
security and usability.


Volume 12, Issue 1
International virtual conference on Newer Trends and Innovation in Nanotechnology Materials Science . Science and Technology
March 2021
Pages 606-613