A multi‐attack resilient lightweight IoT authentication scheme

Adeel, Adil; Ali, Mazhar; Khan, Abdul Nasir; Khalid, Tauqeer; Rehman, Faisal; Jararweh, Yaser; Shuja, Junaid

doi:10.1002/ett.3676

Cited by 37 publications

(36 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The overhead of Srinivas et al 21 is 29 T h , Dhillon and Kalra 11 is 22 T h , Qiu and Ma 8 is 25 T h , Turkanovi? et al 12 is 19 T h , Adeel et al 24 is 19 T h , and Dhillon and Kalra 25 is 22 T h whereas our proposed scheme consume total of 18 T h as shown in Table 3.…”

Section: Results Analysismentioning

confidence: 91%

A lightweight authentication and key exchange mechanism for IPv6 over low‐power wireless personal area networks‐based Internet of things

Thungon

Ahmed

Sahana

et al. 2020

Trans Emerging Tel Tech

View full text Add to dashboard Cite

The authentication mechanism in IPv6 over low‐power wireless personal area networks (6LoWPAN) uses media access control identifier and IPv6 address. The traditional wireless sensor network considers three‐factor authentication mechanism. These factors, namely, username, password, and biometric create a huge overhead in Internet of things due to resource‐constraint devices in terms of low memory and processing capabilities. In this article, we propose a lightweight key exchange and authentication scheme for 6LoWPAN to efficiently authenticate the resource‐constraint sensor devices. The proposed scheme uses hash‐based approaches in the setup and registration phase to reduce the computational cost and resource consumption overhead. The analytical results over the automated validation of internet security protocols and applications and ProVerif tools validate the security claim of the proposed scheme against threats like replay and man‐in‐the‐middle attack. Furthermore, we analyze the logic correctness of the proposed authentication scheme using Burrows‐Abadi‐Needham logic.

show abstract

Section: Results Analysismentioning

confidence: 91%

A lightweight authentication and key exchange mechanism for IPv6 over low‐power wireless personal area networks‐based Internet of things

Thungon

Ahmed

Sahana

et al. 2020

Trans Emerging Tel Tech

View full text Add to dashboard Cite

show abstract

“…The security properties of LAKD protocol and the other schemes for M2M communication were analyzed to obtain their attack resistance. Furthermore, articles that have a security analysis of the comparison schemes were reviewed to complete the information, such as [28][29][30]. In Table 8 is summarized the analysis results of common attacks, as was done in [44,45,64,65].…”

Section: Attack Resistance Comparisonmentioning

confidence: 99%

“…Take Esfahani et al's protocol, for example. It has been found vulnerable to modification, session and long-term key disclosure, privileged insider, impersonation, DoS, and tracking attacks in [28][29][30]. Concerning Joshitta et al, some of its security vulnerabilities are the use of the same session key between sessions, and its disclosure.…”

Section: Attack Resistance Comparisonmentioning

confidence: 99%

See 1 more Smart Citation

Lightweight Authentication Protocol for M2M Communications of Resource-Constrained Devices in Industrial Internet of Things

Lara

Aguilar

Sánchez

et al. 2020

Sensors

View full text Add to dashboard Cite

The Industrial Internet of Things (IIoT) consists of sensors, networks, and services to connect and control production systems. Its benefits include supply chain monitoring and machine failure detection. However, it has many vulnerabilities, such as industrial espionage and sabotage. Furthermore, many IIoT devices are resource-constrained, which impedes the use of traditional security services for them. Authentication allows devices to be confident of each other’s identity, preventing some security attacks. Many authentication protocols have been proposed for IIoT; however, they have high computing requirements not viable to resource-constrained devices, or they have been found insecure. In this paper, an authentication protocol for resource-constrained IIoT devices is proposed. It is based on the lightweight operations xor, addition, and subtraction, and a hash function. Also, only four messages are exchanged between the principals to authenticate. It has a low execution-time and communication-cost. Its security was successfully assessed with the formal methods Automated Validation of Internet Security Protocols and Applications (AVISPA) tool and Burrows–Abadi–Needham (BAN) logic, together with an informal analysis of its resistance to known attacks. Its performance and security were compared with state-of-the-art protocols, resulting in a good performance for resource-constrained IIoT devices, and higher security similar to computational expensive schemes.

show abstract

“…In the area of Industrial IoT applications, we can distinguish the recent work of [6] in which a lightweight authentication and key distribution (LAKD) scheme has been proposed built of only hash functions, xoring, addition, and subtraction. Their work was inspired on the protocol of [7] in which several weaknesses have been identified by [8][9][10], being a lack of protection against tracking, offline identity guessing, impersonation, and replay attacks. Their scheme [6] consists of four communication phases and a lot of hash calls should be made at the sensor node.…”

Section: Related Workmentioning

confidence: 99%

Highly Efficient Symmetric Key Based Authentication and Key Agreement Protocol Using Keccak

Braeken

2020

Sensors

View full text Add to dashboard Cite

Efficient authentication and key agreement protocols between two entities are required in many application areas. In particular, for client–server type of architectures, the client is mostly represented by a constrained device and thus highly efficient protocols are needed. We propose in this paper two protocols enabling the construction of a mutual authenticated key ensuring anonymity and unlinkability of the client and resisting the most well known attacks. The main difference between the two proposed protocols is in the storage requirements on the server side. The innovation of our protocols relies on the fact that, thanks to the usage of the sponge construction, available in the newly proposed SHA3 standard with underlying Keccak design, the computation cost can be reduced to only one hash operation on the client side in case of the protocol with storage and two hash operations for the protocol without storage and thus leads to a very efficient solution.

show abstract

A multi‐attack resilient lightweight IoT authentication scheme

Cited by 37 publications

References 27 publications

A lightweight authentication and key exchange mechanism for IPv6 over low‐power wireless personal area networks‐based Internet of things

A lightweight authentication and key exchange mechanism for IPv6 over low‐power wireless personal area networks‐based Internet of things

Lightweight Authentication Protocol for M2M Communications of Resource-Constrained Devices in Industrial Internet of Things

Highly Efficient Symmetric Key Based Authentication and Key Agreement Protocol Using Keccak

Contact Info

Product

Resources

About