A Novel Multi-Factor Authenticated Key Exchange Scheme with Privacy Preserving

In this paper, a new multi-factor authenticated key exchange scheme, which combines with biometrics, password and the smart card, is proposed. Compared with the previous schemes, this scheme has higher security in remote authentication and preserves privacy of biometrics, and most of the previous schemes rely on the smart card to verify biometrics. The advantage of these approaches is that the user's biometrics is not shared with the remote server, which can resist insider's attack and preserve the privacy of the biometrics. The disadvantage is that the remote server must trust the smart card to perform authentication, which leads to various vulnerabilities. To achieve multifactor authentication, a new function called one-way function with distance-keeping, which is used to preserve privacy of user's biometrics, is introduced.