ABSTRACT
Traditional transactional techniques have been gradually supplanted by electronic transactions in recent years. To protect transactional details and to ensure secure electronic transactions, various e-payment mechanisms have been introduced. However, we discovered that earlier electronic payment mechanisms did not need non-repudiation from the customer and thus had several weaknesses. Hence, an authentication protocol satisfying the user’s requirements without having vulnerabilities should be designed. To enhance the security and robustness in protocol, biometric-based authentication is required. Biometrics has been widely preferred as a third authenticating factor in password and smartcard-based user authentication protocol. Hence, mutual authentication protocol using Biometrics along with password and smartcard has been designed. To strengthen it, an absolute light-weight protocol has been designed based on ECC that provides low computational cost with high security, high speed and makes it suitable for practical application. We preferred to utilize AVISPA and SPAN animator tool for 240protocol validation. Informal analysis is also done for protocol verification and validation.
