BCmECC: A Lightweight Blockchain-Based Authentication and Key Agreement Protocol for Internet of Things

Lánský, Jan; Rahmani, Amir Masoud; Ali, Saqib; Bagheri, Nasour; Safkhani, Masoumeh; Ahmed, Omed Hassan; Hosseinzadeh, Mehdi

doi:10.3390/math9243241

Cited by 10 publications

(7 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Lansky et al [126] formulate a lightweight authentication system based on Elliptic Curve Cryptography (ECC) named BCmECC. It depends on a public blockchain to confirm the users' public key and provides the needed security.…”

Section: B Internet Of Things (Iot)mentioning

confidence: 99%

“…ECC cryptography is often seen as a natural modern successor to the RSA cryptosystem, as it requires fewer keys and signatures to achieve the same level of security as RSA and enables swift key generation, key agreement, and signatures. Several studies [9], [126], [163], [178] have adopted this scheme for the authentication of digital identity in their proposed BC-based IDMS.…”

Section: ) Elliptic Curve Cryptography (Ecc)mentioning

confidence: 99%

“…Three types of attacks are used in impersonation: passive, active, and simultaneous [209]. Strong identification and authorization scheme are needed to resist this attack in blockchain and several studies have addressed this attack in their proposed system [7], [10], [15], [20], [126], [138], [153], [156], [158], [178]. Ao et al [156] utilize IBC and elliptic curve discrete logarithm problem techniques and formulated a mathematical structure that prevents the impersonation attack.…”

Section: Impersonation Attackmentioning

confidence: 99%

“…As a result, the blockchain is partitioned into two instances: one that runs the inherited version of the software and another that runs the upgraded version. Several studies e.g., [7], [15], [19], [20], [116], [126], [129], [150], [156], [210] have addressed this replay attack for resistance in their proposed BC-based IDMS solution. Ao et al [156] devise a system where the challenge number and the private key are random in each authentication process.…”

Section: Replay Attackmentioning

confidence: 99%

“…Therefore, the message signatures and authentication information are different each time, preventing replay attacks. Lansky et al [126] formulate a system where the cryptographic keys are a factor of the timestamp at a specific time t1. The eavesdropped message cannot be used at any later time t2, hence preventing the replay attack in the system.…”

Section: Replay Attackmentioning

confidence: 99%

See 4 more Smart Citations

Blockchain-Based Identity Management System and Self-Sovereign Identity Ecosystem: A Comprehensive Survey

et al. 2022

View full text Add to dashboard Cite

Identity Management System (IDMS) refers to how users or individuals are identified and authorized to use organizational systems and services. Since traditional identity management and authentication systems rely heavily on a trusted central authority, they cannot mitigate the effects of single points of failure. As a decentralized and distributed public ledger in a peer-to-peer (P2P) network, Blockchain (BC) technology has garnered a considerable amount of attention in the field of IDMS in recent years. Through Self-Sovereign Identity (SSI), users can have full authority over their digital identity. Successful implementation of a BC-based IDMS can significantly increase the degree of privacy and security of a user's SSI. However, the integration of BC-based IMDS to provide a user with SSI is still an unorganized area of research in its early stages of development. This article presents an extensive literature review of state-of-the-art academic publications as well as commercial market offerings regarding the applicability of BC-based SSI solutions. It also provides a detailed preliminary regarding the building blocks of blockchain technology and a progressive roadmap of IDMS solutions. In order to develop an effective BC-based IDMS solution that focuses on securing a user's SSI, this article outline five essential components of a BC-based IDMS: authentication, integrity, privacy, trust, and simplicity. Furthermore, we perform a security analysis that outlines several types of adversarial threats that can cause potential damage to the BC-based IDMS. We identify and discuss associated issues and challenges by analyzing several notable BC-based IDMS solutions in academic literature. We also highlight potential research gaps and provide future research scope.INDEX TERMS Blockchain, peer-to-peer network, identity management system, self-sovereign identity, security.

show abstract

Section: B Internet Of Things (Iot)mentioning

confidence: 99%