A secure and privacy-preserving authentication protocol for wireless sensor networks in smart city

Xie, Qi; Li, Keheng; Tan, Xiao; Han, Lidong; Tang, Wen; Hu, Bin

doi:10.1186/s13638-021-02000-7

Cited by 27 publications

(32 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A study of the best security practices was performed, and several mechanisms were implemented to secure the data generated by the SmartWalk app during communications and at rest, which are in line with solutions reported in the literature aiming to protect personal data of other types of smart city applications [68][69][70]. Moreover, an analysis of the implemented security mechanism was performed, and it was possible to conclude that the usage of different security technologies provides a framework that mitigates threats and guarantees the privacy, integrity, and confidentiality of personal data.…”

Section: Discussionmentioning

confidence: 83%

Security Mechanisms of a Mobile Health Application for Promoting Physical Activity among Older Adults

Bastos

Ribeiro

Silva

et al. 2021

Sensors

View full text Add to dashboard Cite

Physical activity contributes to the maintenance of health conditions and functioning. However, the percentage of older adults who comply with the recommendations for physical activity levels is low when compared to the same percentages on younger groups. The SmartWalk system aims to encourage older adults to perform physical activity (i.e., walking in the city), which is monitored and adjusted by healthcare providers for best results. The study reported in this article focused on the implementation of SmartWalk security services to keep personal data safe during communications and while at rest, which were validated considering a comprehensive use case. The security framework offers various mechanisms, including an authentication system that was designed to complement the pairs of usernames and passwords with trusted execution environments and token-based features, authorization with different access levels, symmetric and asymmetric key cryptography, critical transactions review, and logging supported by blockchain technology. The resulting implementation contributes for a common understanding of the security features of trustful smart cities’ applications, which conforms with existing legislation and regulations.

show abstract

Section: Discussionmentioning

confidence: 83%

Security Mechanisms of a Mobile Health Application for Promoting Physical Activity among Older Adults

Bastos

Ribeiro

Silva

et al. 2021

Sensors

View full text Add to dashboard Cite

show abstract

“…However, it is vulnerable to offline password guessing assaults, impersonation attacks, and session key secrecy is not completed. Xie et al 16 propose an ECC and Fuzzy extractor-based scheme that can resist offline password guessing attacks and impersonation attacks but does not achieve session key secrecy or perfect forward secrecy. Other works 17,18 have also proposed various methods based on authentication schemes in IoT-enabled WSNs.…”

Section: Related Workmentioning

confidence: 99%

“…Moreover, the proposed technique can only handle specific security threats. 16 Several other papers, such as References [12,21,22], also discuss authentication schemes based on 3FAS in IoT enabled WSNs. While these schemes provide anonymity, forward secrecy, and resistance to multiple attacks, they are vulnerable to stolen-verifier attacks and de-synchronization attacks.…”

Section: Related Workmentioning

confidence: 99%

“…However, Reference [19] introduces a scheme based on ECC and key agreement that addresses the drawbacks of the scheme in Reference [12]. The proposed scheme resists attacks from privileged insiders, offline password guessing attacks, forgery and impersonation attacks, smart card loss attacks, and other similar attacks 16 . On the other hand, Reference [20] presents an authentication technique based on ECC and Fuzzy extractor, which can resist offline password guessing attacks and impersonation attacks, but it fails to provide complete session key secrecy and perfect forward secrecy.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

A robust and secure user authentication scheme based on multifactor and multi‐gateway in IoT enabled sensor networks

Kumar

Singh

et al. 2023

Security and Privacy

View full text Add to dashboard Cite

The Internet of Things (IoT) enabled wireless sensor networks (WSNs) are used to collect data from various nodes in hostile environments, but it is essential to authenticate legitimate nodes to prevent malicious attacks. Traditional authentication schemes may be vulnerable to attack, necessitating the development of more secure authentication techniques. To address this problem, we propose a novel authentication technique for multi‐gateway IoT‐enabled WSNs that achieves effective and secure data communication. The proposed scheme is based on biological information, hash, and XOR operations, which reduce computational costs. Passwords, biometric information, and session keys are updated securely to maintain forward and backward secrecy during communication. We provide an informal security analysis of the proposed scheme and a formal security analysis of the session key using the real‐or‐random (ROR) model. We also use the AVISPA simulation toolkit to verify the proposed user authentication scheme. Experimental results demonstrate that our proposed scheme is more effective than previous multi‐factor multi‐gateway authentication protocols.

show abstract

“…In [ 235 ], Xie et al solved the flaws of the framework of Banerjee et al [ 236 ]. This work covers the communication between the sensor and the user via a gateway, but the communication to the server is absent here.…”

Section: Iot Security Solutionsmentioning

confidence: 99%

Internet of Things: Security and Solutions Survey

Sadhu

Yanambaka

Abdelgawad

2022

Sensors

129

View full text Add to dashboard Cite

The overwhelming acceptance and growing need for Internet of Things (IoT) products in each aspect of everyday living is creating a promising prospect for the involvement of humans, data, and procedures. The vast areas create opportunities from home to industry to make an automated lifecycle. Human life is involved in enormous applications such as intelligent transportation, intelligent healthcare, smart grid, smart city, etc. A thriving surface is created that can affect society, the economy, the environment, politics, and health through diverse security threats. Generally, IoT devices are susceptible to security breaches, and the development of industrial systems could pose devastating security vulnerabilities. To build a reliable security shield, the challenges encountered must be embraced. Therefore, this survey paper is primarily aimed to assist researchers by classifying attacks/vulnerabilities based on objects. The method of attacks and relevant countermeasures are provided for each kind of attack in this work. Case studies of the most important applications of the IoT are highlighted concerning security solutions. The survey of security solutions is not limited to traditional secret key-based cryptographic solutions, moreover physical unclonable functions (PUF)-based solutions and blockchain are illustrated. The pros and cons of each security solution are also discussed here. Furthermore, challenges and recommendations are presented in this work.

show abstract

A secure and privacy-preserving authentication protocol for wireless sensor networks in smart city

Cited by 27 publications

References 30 publications

Security Mechanisms of a Mobile Health Application for Promoting Physical Activity among Older Adults

Security Mechanisms of a Mobile Health Application for Promoting Physical Activity among Older Adults

A robust and secure user authentication scheme based on multifactor and multi‐gateway in IoT enabled sensor networks

Internet of Things: Security and Solutions Survey

Contact Info

Product

Resources

About