Research And Application Of Two-Factor Authentication Model In Mobile Cloud Computing

With the rapid development of mobile terminal technology and mobile internet technology, traditional cloud computing has been unable to meet the requirements for portability and flexibility. First, the obstacles to the development of mobile Internet are disappearing. Second, the development of manufacturing industry has greatly enhanced the computing and storage capacity of mobile terminals. Therefore, the mobile technology and cloud computing are combined to develop the mobile cloud computing. However, mobile cloud computing is still faced with many security issues, in which the authentication is important. The present research of mobile cloud computing authentication technology is mainly focused on improving the security of authentication, reducing the amount of computation of the mobile terminal and so on. This paper takes the project named “Research and development of key technology and software of mobile terminal data security based on transparent encryption” as the background and focuses on the two-factor authentication model and scheme of mobile cloud computing. The main ideas include three aspects as following:(1) A dynamic characteristics-based two-factor authentication model in mobile cloud computing is proposed. The DCTFA model uses the user registration information and the dynamic characteristics of the mobile terminal as dual authentication factors. The proposed scheme based on DCTFA model improves the security by using the random number, the time stamp, the dynamic factor and the device characteristics, and does not need the help of the third party trusted mechanism. Through the analysis, the proposed scheme can effectively improve the security of authentication and reduce the computation of mobile terminal.(2) A society relations-based two-factor authentication model in mobile cloud computing is proposed. In the model, the dynamic characteristics of the mobile terminal and the social relations of the users are the double authentication factors, which are not dependent on the user’s registration information. Compared with the existing authentication schemes, the proposed scheme based on SRTFA model not only improves the formula of trust degree, but also increases the dynamic authentication weights and dynamic authentication thresholds for the identity tickets. Finally, the proposed scheme uses the cloud to generate user identity notes,in order to reduce the computation of the mobile terminal. The experimental results show that the proposed method solves the problems that the users’ trust is not reasonable, the identity voucher is lack of authentication weight and the authentication threshold cannot change with the users’ familiarity with lower computation.(3) An identity authentication module based on two-factor authentication model is developed. In order to verify the feasibility of the model, the identity authentication module of terminal and authentication server is designed in detail. The experimental results show that the identity authentication module can be effectively used in mobile cloud computing and mobile internet environment.