Enhanced authentication for outsourced educational contents through provable block possession

Changhee Hahn, Hyunsoo Kwon, Daeyoung Kim, Junbeom Hur

Research output: Contribution to journalArticle

1 Citation (Scopus)

Abstract

In recent years, the volume of educational contents has been explosively increased thanks to the rapid development of multimedia technologies. Furthermore, the development of smart devices has made various educational institutes use them as effective learning tools. Since more and more educational contents become available not only at school zone but at a variety of online learning systems, it becomes increasingly unaffordable for a single educational contents provider to store and process them locally. Therefore, many educational contents providers are likely to outsource the contents to cloud storage for cost saving. These phenomena raise one serious concern: how to authenticate educational contents users in a secure and efficient way? The most widely used password-based authentication suffers from numerous drawbacks in terms of security. Multi-factor authentication protocols based on diverse communication channels such as SMS, biometric, hardware token could enhance security, however they inevitably bring poor usability. To this end, we present a data block-based authentication scheme, which provides provable security and guarantees usability invariant such that users do nothing but entering a password. In addition, the proposed scheme supports efficient user revocation. To the best of our knowledge, our scheme is the first data block-based authentication scheme for outsourced educational contents that is provably secure without usability degradation. The experiment on Amazon EC2 cloud shows that the proposed scheme guarantees nearly constant time for user authentication.

Original languageEnglish
Pages (from-to)13057-13076
Number of pages20
JournalMultimedia Tools and Applications
Volume75
Issue number21
DOIs
Publication statusPublished - 2016 Nov 1
Externally publishedYes

Fingerprint

Authentication
Biometrics
Learning systems
Hardware
Degradation
Costs
Experiments

Keywords

  • Block aggregation
  • Educational contents
  • Merkle tree
  • Two-factor authentication
  • Usability

ASJC Scopus subject areas

  • Software
  • Media Technology
  • Hardware and Architecture
  • Computer Networks and Communications

Cite this

Enhanced authentication for outsourced educational contents through provable block possession. / Hahn, Changhee; Kwon, Hyunsoo; Kim, Daeyoung; Hur, Junbeom.

In: Multimedia Tools and Applications, Vol. 75, No. 21, 01.11.2016, p. 13057-13076.

Research output: Contribution to journalArticle

Hahn, Changhee ; Kwon, Hyunsoo ; Kim, Daeyoung ; Hur, Junbeom. / Enhanced authentication for outsourced educational contents through provable block possession. In: Multimedia Tools and Applications. 2016 ; Vol. 75, No. 21. pp. 13057-13076.
@article{c51395c4aaf4467f8602fe569f862a31,
title = "Enhanced authentication for outsourced educational contents through provable block possession",
abstract = "In recent years, the volume of educational contents has been explosively increased thanks to the rapid development of multimedia technologies. Furthermore, the development of smart devices has made various educational institutes use them as effective learning tools. Since more and more educational contents become available not only at school zone but at a variety of online learning systems, it becomes increasingly unaffordable for a single educational contents provider to store and process them locally. Therefore, many educational contents providers are likely to outsource the contents to cloud storage for cost saving. These phenomena raise one serious concern: how to authenticate educational contents users in a secure and efficient way? The most widely used password-based authentication suffers from numerous drawbacks in terms of security. Multi-factor authentication protocols based on diverse communication channels such as SMS, biometric, hardware token could enhance security, however they inevitably bring poor usability. To this end, we present a data block-based authentication scheme, which provides provable security and guarantees usability invariant such that users do nothing but entering a password. In addition, the proposed scheme supports efficient user revocation. To the best of our knowledge, our scheme is the first data block-based authentication scheme for outsourced educational contents that is provably secure without usability degradation. The experiment on Amazon EC2 cloud shows that the proposed scheme guarantees nearly constant time for user authentication.",
keywords = "Block aggregation, Educational contents, Merkle tree, Two-factor authentication, Usability",
author = "Changhee Hahn and Hyunsoo Kwon and Daeyoung Kim and Junbeom Hur",
year = "2016",
month = "11",
day = "1",
doi = "10.1007/s11042-015-2593-6",
language = "English",
volume = "75",
pages = "13057--13076",
journal = "Multimedia Tools and Applications",
issn = "1380-7501",
publisher = "Springer Netherlands",
number = "21",

}

TY - JOUR

T1 - Enhanced authentication for outsourced educational contents through provable block possession

AU - Hahn, Changhee

AU - Kwon, Hyunsoo

AU - Kim, Daeyoung

AU - Hur, Junbeom

PY - 2016/11/1

Y1 - 2016/11/1

N2 - In recent years, the volume of educational contents has been explosively increased thanks to the rapid development of multimedia technologies. Furthermore, the development of smart devices has made various educational institutes use them as effective learning tools. Since more and more educational contents become available not only at school zone but at a variety of online learning systems, it becomes increasingly unaffordable for a single educational contents provider to store and process them locally. Therefore, many educational contents providers are likely to outsource the contents to cloud storage for cost saving. These phenomena raise one serious concern: how to authenticate educational contents users in a secure and efficient way? The most widely used password-based authentication suffers from numerous drawbacks in terms of security. Multi-factor authentication protocols based on diverse communication channels such as SMS, biometric, hardware token could enhance security, however they inevitably bring poor usability. To this end, we present a data block-based authentication scheme, which provides provable security and guarantees usability invariant such that users do nothing but entering a password. In addition, the proposed scheme supports efficient user revocation. To the best of our knowledge, our scheme is the first data block-based authentication scheme for outsourced educational contents that is provably secure without usability degradation. The experiment on Amazon EC2 cloud shows that the proposed scheme guarantees nearly constant time for user authentication.

AB - In recent years, the volume of educational contents has been explosively increased thanks to the rapid development of multimedia technologies. Furthermore, the development of smart devices has made various educational institutes use them as effective learning tools. Since more and more educational contents become available not only at school zone but at a variety of online learning systems, it becomes increasingly unaffordable for a single educational contents provider to store and process them locally. Therefore, many educational contents providers are likely to outsource the contents to cloud storage for cost saving. These phenomena raise one serious concern: how to authenticate educational contents users in a secure and efficient way? The most widely used password-based authentication suffers from numerous drawbacks in terms of security. Multi-factor authentication protocols based on diverse communication channels such as SMS, biometric, hardware token could enhance security, however they inevitably bring poor usability. To this end, we present a data block-based authentication scheme, which provides provable security and guarantees usability invariant such that users do nothing but entering a password. In addition, the proposed scheme supports efficient user revocation. To the best of our knowledge, our scheme is the first data block-based authentication scheme for outsourced educational contents that is provably secure without usability degradation. The experiment on Amazon EC2 cloud shows that the proposed scheme guarantees nearly constant time for user authentication.

KW - Block aggregation

KW - Educational contents

KW - Merkle tree

KW - Two-factor authentication

KW - Usability

UR - http://www.scopus.com/inward/record.url?scp=84928309982&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84928309982&partnerID=8YFLogxK

U2 - 10.1007/s11042-015-2593-6

DO - 10.1007/s11042-015-2593-6

M3 - Article

AN - SCOPUS:84928309982

VL - 75

SP - 13057

EP - 13076

JO - Multimedia Tools and Applications

JF - Multimedia Tools and Applications

SN - 1380-7501

IS - 21

ER -