A Full Lifecycle Authentication Scheme for Large-scale Smart IoT Applications

Chen, Fei; Xiao, Zixing; Xiang, Tao; Fan, Jiulun; Truong, Hong-Linh

doi:10.1109/tdsc.2022.3178115

Cited by 14 publications

(13 citation statements)

References 39 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Smart IoT: Spanning smart cities, smart homes, and intelligent applications, research papers [65,69,70], contributing 8% in this domain, are dedicated to the development of IoT authentication mechanisms.…”

Section: Types Of Publication Channelsmentioning

confidence: 99%

See 1 more Smart Citation

Exploring Authentication Paradigms in the Internet of Things: A Comprehensive Scoping Review

Kamarudin,

Suhaimi,

Nor Rashid

et al. 2024

Symmetry

View full text Add to dashboard Cite

In the rapidly expanding domain of the Internet of Things (IoT), ensuring the implementation of robust security measures such as authentication has become paramount to safeguarding sensitive data and maintaining the integrity of connected devices. Symmetry in the IoT commonly denotes the uniformity or equilibrium in data distribution and processing across devices or nodes in a network. Leveraging symmetric patterns can enhance the robustness and scalability of IoT authentication. This scoping review aims to provide a comprehensive overview of recent developments in authentication techniques within the IoT paradigm. It subsequently presents recent research on various IoT authentication schemes, organized around several key research questions. The objective is to decipher the intricacies associated with authentication in the IoT by employing a multi-criteria classification approach. This involves a comprehensive analysis of existing authentication protocols, delineating their respective advantages and disadvantages, and gaining insights into the associated security concerns. The research questions highlighted in the review aim to probe the present scenario of authentication systems utilized in IoT, with a focus on identifying trends and discerning shifts. This review synthesizes insights from scholarly articles to provide a roadmap for future research in IoT authentication. It functions as a valuable resource for establishing theoretical foundations and provides practical implications applicable to practitioners, policymakers, and researchers alike. By elucidating the intricacies of IoT authentication, this review cultivates a profound understanding of the transformative potential and the multifaceted challenges. It establishes the foundation for resilient security measures essential for the sustainable growth of the Internet of Things.

show abstract

Section: Types Of Publication Channelsmentioning

confidence: 99%

“…Mobile: The domain of Mobile IoT is accentuated by 3%, and the research [70,71], is dedicated to enhancing security in the mobile IoT environment. The spotlight is on a mutual identity authentication scheme for mobile IoT devices, showcasing a nuanced approach to bolstering security.…”

Section: Types Of Publication Channelsmentioning

confidence: 99%

Exploring Authentication Paradigms in the Internet of Things: A Comprehensive Scoping Review

Kamarudin,

Suhaimi,

Nor Rashid

et al. 2024

Symmetry

View full text Add to dashboard Cite

show abstract

“…On the other side, few articles have been published that can also be used in the metaverse environment [4]. The papers [17]- [19] presented authentication mechanisms using ECC; however, security analysis done in [20], [21] depicts that they are vulnerable to different types of attacks.…”

Section: Related Workmentioning

confidence: 99%

“…However, the security verification of [4] depicts that it is prone to impersonation attacks. Apart from that, the protocols [17]- [19] can also be applied in metaverse environment but is prone to various attacks [4], [20], [21] that makes them unsuitable for the metaverse environment. On the other side, our proposed metaverse protocol handles the impersonation attack as well as others, as shown in Table III.…”

Section: A Comparison Of Security Featuresmentioning

confidence: 99%

A Blockchain-based Authentication Protocol for Metaverse Environments using a Zero Knowledge Proof

Yadav,

Braeken,

Ylianttila

et al. 2023

2023 IEEE International Conference on Metaverse Computing, Networking and Applications (MetaCom)

View full text Add to dashboard Cite

The metaverse, which consists of several universes called verses, is predicted to be the Internet of the future. Recently, this idea has received a lot of discussions, but not enough attention has been paid to the security concerns of these virtual worlds. Primarily when the user and platform server communicate with each other and share sensitive information using the public channel, any attacker can capture the message and can perform various types of attacks such as privacy attack, violation of perfect forward secrecy, impersonation attack, ephemeral secret leakage attack and traceability attack. Therefore, there is impelling need to design an authentication protocol for the metaverse environment that can secure the communication between the user and the platform server. Taking this into account, we designed a zero-knowledge proof authentication protocol based on blockchain for the metaverse environment. The security of the designed protocol is verified through the Burrows-Abadi-Needham (BAN) logic, Scyther tool, and Automated Validation of Internet Security Protocols and Applications (AVISPA) tool. The outcome of the security verification demonstrates that the designed metaverse authentication protocol mitigates all the attacks mentioned above. Moreover, we evaluated the performance of the designed metaverse authentication protocol in terms of computational, communication, storage costs, and energy consumption and compared it with existing metaverse authentication protocols, showing good results taking into account the additional security strength.

show abstract

“…They analyzed the security aspects of their scheme using the AVISPA tool. However, Chen et al [23] asserted that the scheme proposed by Panda and Chattopadhyay does not consider various security features such as stolen smartcards and user impersonation attacks. Haq et al [24] proposed a two-factor authentication protocol for 5G networks and they performed informal and formal security analyses to prove that their scheme can prevent a variety of security attacks.…”

Section: Related Workmentioning

confidence: 99%

Design of Secure Mutual Authentication Scheme for Metaverse Environments Using Blockchain

et al. 2022

View full text Add to dashboard Cite

During the COVID-19 pandemic, engagement in various remote activities such as online education and meetings has increased. However, since the conventional online environments typically provide simple streaming services using cameras and microphones, there have limitations in terms of physical expression and experiencing real-world activities such as cultural and economic activities. Recently, metaverse environments, three-dimensional virtual reality that use avatars, have attracted increasing attention as a means to solve these problems. Thus, many metaverse platforms such as Roblox, Minecraft, and Fortnite have been emerging to provide various services to users. However, such metaverse environments are potentially vulnerable to various security threats because the users and platform servers communicate through public channels. In addition, sensitive user data such as identity, password, and biometric information are managed by each platform server. In this paper, we design a system model that can guarantee secure communication and transparently manage user identification data in metaverse environments using blockchain technology. We also propose a mutual authentication scheme using biometric information and Elliptic Curve Cryptography (ECC) to provide secure communication between users and platform servers and secure avatar interactions between avatars and avatars. To demonstrate the security of the proposed mutual authentication scheme, we perform informal security analysis, Burrows-Abadi-Needham (BAN) logic, Real-or-Random (ROR) model, and Automated Validation of Internet Security Protocols and Applications (AVISPA). In addition, we compare the computation costs, communication costs, and security features of the proposed scheme with existing schemes in similar environments. The results demonstrate that the proposed scheme has lower computation and communication costs and can provide a wider range of security features than existing schemes. Thus, our proposed scheme can be used to provide secure metaverse environments.

show abstract

A Full Lifecycle Authentication Scheme for Large-scale Smart IoT Applications

Cited by 14 publications

References 39 publications

Exploring Authentication Paradigms in the Internet of Things: A Comprehensive Scoping Review

Exploring Authentication Paradigms in the Internet of Things: A Comprehensive Scoping Review

A Blockchain-based Authentication Protocol for Metaverse Environments using a Zero Knowledge Proof

Design of Secure Mutual Authentication Scheme for Metaverse Environments Using Blockchain

Contact Info

Product

Resources

About