A Hybrid Approach for Secure Iris-Based Authentication in IoT

Mohammed, Afreen Fatima; Qyser, Ahmed Abdul Moiz

doi:10.1007/978-981-13-8461-5_18

Cited by 4 publications

(1 citation statement)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To minimize computations, one-way hashes and perceptual hash functions are produced in simple operations. An iris-based authentication scheme is proposed along the hybrid cryptography of the blowfish and RSA algorithms [ 14 ]. The combination of two encryption algorithms ensures higher security in the system, and the use of iris peculiarly identifies legitimate users.…”

Section: Introductionmentioning

confidence: 99%

Two-Layered Multi-Factor Authentication Using Decentralized Blockchain in an IoT Environment

Bamashmos,

Chilamkurti,

Shahraki

2024

Sensors

View full text Add to dashboard Cite

Internet of Things (IoT) technology is evolving over the peak of smart infrastructure with the participation of IoT devices in a wide range of applications. Traditional IoT authentication methods are vulnerable to threats due to wireless data transmission. However, IoT devices are resource- and energy-constrained, so building lightweight security that provides stronger authentication is essential. This paper proposes a novel, two-layered multi-factor authentication (2L-MFA) framework using blockchain to enhance IoT devices and user security. The first level of authentication is for IoT devices, one that considers secret keys, geographical location, and physically unclonable function (PUF). Proof-of-authentication (PoAh) and elliptic curve Diffie–Hellman are followed for lightweight and low latency support. Second-level authentication for IoT users, which are sub-categorized into four levels, each defined by specific factors such as identity, password, and biometrics. The first level involves a matrix-based password; the second level utilizes the elliptic curve digital signature algorithm (ECDSA); and levels 3 and 4 are secured with iris and finger vein, providing comprehensive and robust authentication. We deployed fuzzy logic to validate the authentication and make the system more robust. The 2L-MFA model significantly improves performance, reducing registration, login, and authentication times by up to 25%, 50%, and 25%, respectively, facilitating quicker cloud access post-authentication and enhancing overall efficiency.

show abstract

Section: Introductionmentioning

confidence: 99%