Skip to main content

BVPSMS: A Batch Verification Protocol for End-to-End Secure SMS for Mobile Users.

Saxena, N., Shen, H., Komninos, N., Choo, K.K.R and Chaudhari, N.S., 2020. BVPSMS: A Batch Verification Protocol for End-to-End Secure SMS for Mobile Users. IEEE Transactions on Dependable and Secure Computing, 17 (3), 550-565.

Full text available as:

[img]
Preview
PDF (© 2018 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses)
BVPSMS-15 R1-3.pdf - Accepted Version
Available under License Creative Commons Attribution Non-commercial No Derivatives.

537kB

DOI: 10.1109/TDSC.2018.2799223

Abstract

—Short Message Service (SMS) is a widely used communication medium for mobile applications, such as banking, social networking, and e-commerce. Applications of SMS services also include real-time broadcasting messages, such as notification of natural disasters (e.g., bushfires and hurricane) and terrorist attacks, and sharing the current whereabouts to other users, such as notifying urgent business meeting information, transmitting quick information in the battlefield to multiple users, notifying current location to our friends and sharing market information. However, traditional SMS is not designed with security in mind (e.g., messages are not securely sent). It is also possible to extract international mobile subscriber identity of the mobile user. In the literature, there is no known protocol that could enable secure transmission of SMS from one user to multiple users simultaneously. In this paper, we introduce a batch verification authentication and key agreement protocol, BVPSMS, which provides end-to-end message security over an insecure communication channel between different mobile subscribers. Specifically, the proposed protocol securely transmits SMS from one mobile user to multiple users simultaneously. The reliability of the protocol is discussed along with an algorithm to detect malicious user request in a batch. We then evaluate the performance of the proposed protocol in terms of communication and computation overheads, protocol execution time, and batch and re-batch verification times. The impacts of the user mobility, and the time, space and cost complexity analysis are also discussed. We then present a formal security proof of the proposed protocol. To the best of our knowledge, this is the first provably-secure batch verification protocol that delivers end-to-end SMS security using symmetric keys.

Item Type:Article
ISSN:1545-5971
Additional Information:© 2018 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Uncontrolled Keywords:Authentication; Batch Verification; Mobile Subscriber; SMS; Symmetric Key Cryptosystem
Group:Faculty of Science & Technology
ID Code:30352
Deposited By: Symplectic RT2
Deposited On:15 Feb 2018 13:13
Last Modified:14 Mar 2022 14:09

Downloads

Downloads per month over past year

More statistics for this item...
Repository Staff Only -