{"id":"https://openalex.org/W3021702234","doi":"https://doi.org/10.1109/jsyst.2020.2986377","title":"Comments on \u201cInsider Attack Protection: Lightweight Password-Based Authentication Techniques Using ECC\u201d","display_name":"Comments on \u201cInsider Attack Protection: Lightweight Password-Based Authentication Techniques Using ECC\u201d","publication_year":2020,"publication_date":"2020-05-04","ids":{"openalex":"https://openalex.org/W3021702234","doi":"https://doi.org/10.1109/jsyst.2020.2986377","mag":"3021702234"},"language":"en","primary_location":{"id":"doi:10.1109/jsyst.2020.2986377","is_oa":false,"landing_page_url":"https://doi.org/10.1109/jsyst.2020.2986377","pdf_url":null,"source":{"id":"https://openalex.org/S95999327","display_name":"IEEE Systems Journal","issn_l":"1932-8184","issn":["1932-8184","1937-9234","2373-7816"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Systems Journal","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5017367371","display_name":"Salman Shamshad","orcid":"https://orcid.org/0000-0002-8984-3199"},"institutions":[{"id":"https://openalex.org/I16076960","display_name":"COMSATS University Islamabad","ror":"https://ror.org/00nqqvk19","country_code":"PK","type":"education","lineage":["https://openalex.org/I16076960"]}],"countries":["PK"],"is_corresponding":true,"raw_author_name":"Salman Shamshad","raw_affiliation_strings":["Department of Computer Science, COMSATS University Islamabad, Sahiwal Campus, Pakistan"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, COMSATS University Islamabad, Sahiwal Campus, Pakistan","institution_ids":["https://openalex.org/I16076960"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5023371922","display_name":"Khalid Mahmood","orcid":"https://orcid.org/0000-0001-5046-7766"},"institutions":[{"id":"https://openalex.org/I16076960","display_name":"COMSATS University Islamabad","ror":"https://ror.org/00nqqvk19","country_code":"PK","type":"education","lineage":["https://openalex.org/I16076960"]}],"countries":["PK"],"is_corresponding":false,"raw_author_name":"Khalid Mahmood","raw_affiliation_strings":["Department of Computer Science, COMSATS University Islamabad, Sahiwal Campus, Pakistan"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, COMSATS University Islamabad, Sahiwal Campus, Pakistan","institution_ids":["https://openalex.org/I16076960"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5056889098","display_name":"Saru Kumari","orcid":"https://orcid.org/0000-0003-4929-5383"},"institutions":[{"id":"https://openalex.org/I303593345","display_name":"Chaudhary Charan Singh University","ror":"https://ror.org/01hzdv945","country_code":"IN","type":"education","lineage":["https://openalex.org/I303593345"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Saru Kumari","raw_affiliation_strings":["Department of Mathematics, Chaudhary Charan Singh University, Meerut, India"],"affiliations":[{"raw_affiliation_string":"Department of Mathematics, Chaudhary Charan Singh University, Meerut, India","institution_ids":["https://openalex.org/I303593345"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5072011650","display_name":"Muhammad Khurram Khan","orcid":"https://orcid.org/0000-0001-6636-0533"},"institutions":[{"id":"https://openalex.org/I28022161","display_name":"King Saud University","ror":"https://ror.org/02f81g417","country_code":"SA","type":"education","lineage":["https://openalex.org/I28022161"]}],"countries":["SA"],"is_corresponding":false,"raw_author_name":"Muhammad Khurram Khan","raw_affiliation_strings":["Center of Excellence in Information Assurance, King Saud University, Riyadh, Saudi Arabia"],"affiliations":[{"raw_affiliation_string":"Center of Excellence in Information Assurance, King Saud University, Riyadh, Saudi Arabia","institution_ids":["https://openalex.org/I28022161"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5017367371"],"corresponding_institution_ids":["https://openalex.org/I16076960"],"apc_list":null,"apc_paid":null,"fwci":1.5418,"has_fulltext":false,"cited_by_count":14,"citation_normalized_percentile":{"value":0.83839672,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":"15","issue":"1","first_page":"877","last_page":"880"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9944000244140625,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.8279958367347717},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.70843505859375},{"id":"https://openalex.org/keywords/password","display_name":"Password","score":0.6596068739891052},{"id":"https://openalex.org/keywords/insider","display_name":"Insider","score":0.5816375017166138},{"id":"https://openalex.org/keywords/challenge\u2013response-authentication","display_name":"Challenge\u2013response authentication","score":0.489275187253952},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.479302316904068},{"id":"https://openalex.org/keywords/reflection-attack","display_name":"Reflection attack","score":0.4329868257045746},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.379607230424881},{"id":"https://openalex.org/keywords/authentication-protocol","display_name":"Authentication protocol","score":0.31085044145584106}],"concepts":[{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.8279958367347717},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.70843505859375},{"id":"https://openalex.org/C109297577","wikidata":"https://www.wikidata.org/wiki/Q161157","display_name":"Password","level":2,"score":0.6596068739891052},{"id":"https://openalex.org/C2778971194","wikidata":"https://www.wikidata.org/wiki/Q1664551","display_name":"Insider","level":2,"score":0.5816375017166138},{"id":"https://openalex.org/C131129157","wikidata":"https://www.wikidata.org/wiki/Q1059963","display_name":"Challenge\u2013response authentication","level":4,"score":0.489275187253952},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.479302316904068},{"id":"https://openalex.org/C91069110","wikidata":"https://www.wikidata.org/wiki/Q1919060","display_name":"Reflection attack","level":5,"score":0.4329868257045746},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.379607230424881},{"id":"https://openalex.org/C21564112","wikidata":"https://www.wikidata.org/wiki/Q4825885","display_name":"Authentication protocol","level":3,"score":0.31085044145584106},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/jsyst.2020.2986377","is_oa":false,"landing_page_url":"https://doi.org/10.1109/jsyst.2020.2986377","pdf_url":null,"source":{"id":"https://openalex.org/S95999327","display_name":"IEEE Systems Journal","issn_l":"1932-8184","issn":["1932-8184","1937-9234","2373-7816"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Systems Journal","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.75,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":6,"referenced_works":["https://openalex.org/W416692946","https://openalex.org/W2497816424","https://openalex.org/W2561614683","https://openalex.org/W2969139182","https://openalex.org/W2970658942","https://openalex.org/W3000164966"],"related_works":["https://openalex.org/W2363600212","https://openalex.org/W2367067697","https://openalex.org/W1493058717","https://openalex.org/W2377502939","https://openalex.org/W2355452447","https://openalex.org/W2972452708","https://openalex.org/W2406792259","https://openalex.org/W2217572265","https://openalex.org/W4232990054","https://openalex.org/W2915235342"],"abstract_inverted_index":{"The":[0],"radical":[1],"progress":[2],"in":[3,184],"web":[4],"services":[5],"has":[6],"drained":[7],"more":[8],"attraction":[9],"towards":[10,110],"escalating":[11],"the":[12,22,32,40,55,77,89,96,104,115,118,123,126,181,185,196,201],"security":[13,60,87,124,176],"of":[14,99,125],"several":[15,174],"applications":[16,53],"that":[17,48,160,195],"serve":[18],"and":[19,45,117,190,217],"interact":[20],"with":[21,204],"Internet":[23],"users.":[24],"In":[25,82],"order":[26],"to":[27,39,58,75,84,113,121,173,214],"get":[28],"authenticated":[29],"from":[30,68,79,128],"servers,":[31],"users":[33],"must":[34],"disclose":[35],"their":[36,161,211],"secret":[37,63,105],"information":[38],"server":[41],"such":[42,62],"as":[43],"password":[44],"username":[46],"so":[47],"they":[49],"can":[50,102,198],"access":[51],"distinct":[52,59],"on":[54],"Web.":[56],"Due":[57],"attacks,":[61,88,130],"credentials":[64],"should":[65],"be":[66],"discouraged":[67],"being":[69],"revealed.":[70],"Moreover,":[71,210],"it":[72,169],"is":[73,92,170],"vibrant":[74],"secure":[76],"systems":[78],"known":[80,86,175],"attacks.":[81,177],"contrast":[83],"all":[85],"insider":[90,129,155,166],"attack":[91,142,156,167,226],"considered":[93],"devastating":[94],"because":[95],"privileged":[97],"insiders":[98],"a":[100],"system":[101,116,127],"violate":[103],"credentials,":[106],"which":[107],"may":[108],"lead":[109],"irrecoverable":[111],"damage":[112],"both":[114],"user.":[119],"Therefore,":[120],"ensure":[122],"different":[131],"protocols":[132],"have":[133,193],"been":[134],"proposed.":[135],"Very":[136],"recently,":[137],"Rajamanickam":[138],"et":[139],"al.":[140],"\u201cInsider":[141],"protection:":[143],"Lightweight":[144],"password-based":[145],"authentication":[146,152,186],"techniques":[147],"using":[148],"ECC,\u201d":[149],"presented":[150],"novel":[151],"scheme":[153],"for":[154,225],"protection.":[157],"They":[158],"claimed":[159],"protocol":[162,212],"not":[163],"only":[164],"prevents":[165],"but":[168],"also":[171],"immune":[172],"This":[178],"comment":[179],"discloses":[180],"non-trivial":[182],"weaknesses":[183],"phase":[187],"between":[188],"client":[189],"server.":[191],"We":[192],"identified":[194],"adversary":[197],"successfully":[199],"impersonate":[200],"entities":[202],"communicating":[203],"each":[205],"other":[206],"through":[207],"this":[208],"protocol.":[209],"fails":[213],"offer":[215],"forward":[216],"backward":[218],"secrecy.":[219],"Consequently,":[220],"we":[221],"suggest":[222],"possible":[223],"solution":[224],"resilience.":[227]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":6}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}