An authentication scheme with identity-based cryptography for M2M security in cyber-physical systems

Chen, Shuo; Luo, Zhenxing

doi:10.1002/sec.1407

Cited by 24 publications

(10 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Correspondingly, authors in [168] propose an identitybased cryptographic authentication scheme without the need of a Key-escrow mechanism to secure M2M interactions in CPS. The scheme saves upon precious computation and communication resources by averting the process of signature generation, transmission and verification.…”

Section: ) Preventive Measuresmentioning

confidence: 99%

“…For instance, issues concerning device security such as device identity [154,155,156], tamperproofing [154,160], registration and management [43], and secure boot [158] have been addressed by various tech giants including IBM, AT&T, TCG and Juniper Networks. Similarly, issues concerning data security and network access including authenticated encryption [168,169,170], privacy preserving computation (homomorphic encryption) [161], secure cloud access [17], mutual device and gateway authentication [86], and secure network access control [86,167] have also been meticulously tackled. Whenever we talk about cryptographic security, key management is an associated challenge, and it is always considered to be an open research issue [200].…”

Section: Lessons Learnt and Pitfallsmentioning

confidence: 99%

See 1 more Smart Citation

Anatomy of Threats to the Internet of Things

Makhdoom

Abolhasan

Lipman

et al. 2019

IEEE Commun. Surv. Tutorials

299

164

View full text Add to dashboard Cite

The world is resorting to the Internet of Things (IoT) for ease of control and monitoring of smart devices. The ubiquitous use of IoT ranges from Industrial Control Systems (ICS) to e-Health, e-Commerce, smart cities, supply chain management, smart cars, Cyber Physical Systems (CPS) and a lot more. Such reliance on IoT is resulting in a significant amount of data to be generated, collected, processed and analyzed. The big data analytics is no doubt beneficial for business development. However, at the same time, numerous threats to the availability and privacy of the user data, message and device integrity, the vulnerability of IoT devices to malware attacks and the risk of physical compromise of devices pose a significant danger to the sustenance of IoT. This paper thus endeavors to highlight most of the known threats at various layers of the IoT architecture with a focus on the anatomy of malware attacks. We present a detailed attack methodology adopted by some of the most successful malware attacks on IoT including ICS and CPS. We also deduce an attack strategy of a Distributed Denial of Service attack through IoT botnet followed by requisite security measures. In the end, we propose a composite guideline for the development of an IoT security framework based on industry best practices and also highlight lessons learned, pitfalls and the open research challenges. Index Terms-Threats to the IoT, Internet of Things, malware attacks on the Internet of Things, attack methodology, security and privacy, IoT security framework, security guidelines.

show abstract

Section: ) Preventive Measuresmentioning

confidence: 99%

Section: Lessons Learnt and Pitfallsmentioning

confidence: 99%

Anatomy of Threats to the Internet of Things

Makhdoom

Abolhasan

Lipman

et al. 2019

IEEE Commun. Surv. Tutorials

299

164

View full text Add to dashboard Cite

show abstract

“…Recently, in [1], ID-based cryptosystems were employed, combined with key exchange strategies, in particular, the Authenticated Identity-Based Cryptography (IBC) without Key-Escrow (AIBCwKE) mechanism. The scheme seems to withstand most of the known attacks; however, the scheme requires the target sensors and mobile devices to perform computationally expensive cryptographic operations.…”

Section: Related Workmentioning

confidence: 99%

“…In the near future, this gap will vanish and all objects in the physical world will be connected to the cyber world by the Cyber-Physical System (CPS). Hence, there will be no longer a distinction between the cyber world and the physical world [1], [2]. Objects and devices over CPS are capable of capturing a variety of multimedia contents, are able to exchange information (e.g.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Design of a Secure Password-Based Authentication Scheme for M2M Networks in IoT Enabled Cyber-Physical Systems

Renuka¹,

Kumari

Zhao³

et al. 2019

IEEE Access

View full text Add to dashboard Cite

The Internet of Things (IoT) forms a foundation for cyber-physical systems. We propose an efficient and secure authentication scheme for machine-to-machine (M2M) networks in IoT enabled cyber-physical systems. Smart objects and smart devices over CPS are capable of capturing a variety of multimedia contents; interact with each other and also with the physical world in a fully automatic manner without human interference. The proposed scheme allows any pair of entities in an M2M network to mutually authenticate each other and agree on a session key for communicating data in a secure and efficient way. The authentication process does not incorporate the M2M service provider, and hence eliminates the burden of managing the authentication of massive scale devices at the edge of the network. The burden of the authentication process is offloaded and distributed on the gateways under the authority of this M2M service provider. The proposed scheme requires the mobile user to hold only one secret key provided by the M2M service provider, by which, he can roam randomly in the M2M network and authenticate to any of the gateways in the domain. Then, this authenticated gateway allows the mobile user to authenticate with any sensor node in the domain. In the proposed scheme, the authentication process does not rely on any public key cryptographic operations. Authentication is achieved using very few hash invocations and symmetric key encryptions. Therefore, the scheme is suitable for environmental sensors which are limited in resources (computation, storage, and energy). We analyze the security of the proposed scheme using BAN logic, which is widely accepted as a framework for the assessment of authentication protocols and also using ProVerif. We assess the efficiency of the proposed scheme and compare with some recently proposed schemes.

show abstract

Future IoT‐enabled threats and vulnerabilities: State of the art, challenges, and future prospects

Srivastava

Gupta

Quamara

et al. 2020

Int J Communication

View full text Add to dashboard Cite

SummaryIn the recent era, the security issues affecting the future Internet‐of‐Things (IoT) standards has fascinated noteworthy consideration from numerous research communities. In this view, numerous assessments in the form of surveys were proposed highlighting several future IoT‐centric subjects together with threat modeling, intrusion detection systems (IDS), and various emergent technologies. In contrast, in this article, we have focused exclusively on the emerging IoT‐related vulnerabilities. This article is a multi‐fold survey that emphasizes on understanding the crucial causes of novel vulnerabilities in IoT paradigms and issues in existing research. Initially, we have emphasized on different layers of IoT architecture and highlight various emerging security challenges associated with each layer along with the key issues of different IoT systems. Secondly, we discuss the exploitation, detection, and defense methodologies of IoT malware‐enabled distributed denial of service (DDoS), Sybil, and collusion attack capabilities. We have also discussed numerous state‐of‐the‐art strategies for intrusion detection and methods for IDS setup in future IoT systems. Third, we have presented a brief classification of existing IoT authentication protocols and a comparative analysis of such protocols based on different IoT‐enabled cyber attacks. For conducting a real‐time future IoT research, we have presented some emerging blockchain solutions. We have also discussed a comparative examination of some of the recently developed simulation tools and IoT test beds that are characterized based on different layers of IoT infrastructure. We have also outlined some of the open issues and future research directions and also facilitate the readers with broad classification of existing surveys in this domain that addresses several scopes related to the IoT paradigm. This survey article focuses in enabling IoT‐related research activities by comparing and merging scattered surveys in this domain.

show abstract

An authentication scheme with identity-based cryptography for M2M security in cyber-physical systems

Cited by 24 publications

References 29 publications

Anatomy of Threats to the Internet of Things

Anatomy of Threats to the Internet of Things

Design of a Secure Password-Based Authentication Scheme for M2M Networks in IoT Enabled Cyber-Physical Systems

Future IoT‐enabled threats and vulnerabilities: State of the art, challenges, and future prospects

Contact Info

Product

Resources

About