Comments on “Biometrics-Based Privacy-Preserving User Authentication Scheme for Cloud-Based Industrial Internet of Things Deployment”

Hussain, Sajid; Chaudhry, Shehzad Ashraf

doi:10.1109/jiot.2019.2934947

Cited by 53 publications

(23 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…DAS et al [24] proposed an AKE scheme for the IoT environment, which utilized lightweight hash function and FE technique for the bio-metric verification and cannot withstand traceability attack. Hussain et al [25] pointed out that the scheme proposed by DAS et al is vulnerable to various security attacks such as traceability attack, stolen-verifier attack, stolen/lost smart-device attack, and also does not render forward secrecy. Moreover, Challa et al [26] presented an AKE scheme based on ECC, which is not suitable for resource-limited devices because of high computational overhead.…”

Section: Related Workmentioning

confidence: 99%

LAKE-IoD: Lightweight Authenticated Key Exchange Protocol for the Internet of Drone Environment

et al. 2020

View full text Add to dashboard Cite

A drone is an unmanned aerial vehicle, which is deployed in a particular Fly Zone (FZ), and used to collect crucial information from its surrounding environment to be transmitted to the server for further processing. Generally, a Mobile User (MU) is required to access the real-time information collected by the drone stationed in a specific FZ securely. Therefore, to ensure secure and reliable communications an Authenticated Key Exchange (AKE) protocol is imperative to the Internet of Drone (IoD) environment. An AKE scheme ensures only authentic MU to access IoD network resources. Upon successful authentication, MU and drone can set up a secret session key for secure communication in the future. This paper presents a novel Lightweight AKE Protocol for IoD Environment (LAKE-IoD), which first ensures the authenticity of MU and also renders session key establishment mechanism between MU and drone with the help of a server. LAKE-IoD is an AKE protocol, which is based on an authenticated encryption scheme AEGIS, hash function, and bit-wise XOR operation. Meticulous formal security verification by employing a software tool known as Scyther and informal security analysis demonstrates that LAKE-IoD is protected against different well-known active and passive security attacks. Additionally, Burrows-Abadi-Needham logic is applied to verify the logical completeness of LAKE-IoD. Furthermore, a comparison of LAKE-IoD with the related schemes shows that LAKE-IoD incurs less communication, computational and storage overhead.

show abstract

Section: Related Workmentioning

confidence: 99%

LAKE-IoD: Lightweight Authenticated Key Exchange Protocol for the Internet of Drone Environment

et al. 2020

View full text Add to dashboard Cite

show abstract

“…• Referring to the DY model [2], a malicious attacker (M A) is able to eavesdrop, modify, replay, inject, or delete transmitted messages over a public channel. • M A can steal the legal user's smart card and extract the stored secret credentials in memory by performing power analysis [3]- [5]. • M A can be a legitimate and privileged insider, which is able to reveal the verifier table stored in the RC database [1].…”

Section: A Adversary Modelmentioning

confidence: 99%

Comments on “ITSSAKA-MS: An Improved Three-Factor Symmetric-Key Based Secure AKA Scheme for Multi-Server Environments”

2020

IEEE Access

View full text Add to dashboard Cite

Multi-server technology is widely utilized due to its enormous applicability in fields such as telecare medicine information system (TMIS), online shopping, remote surveillance, online banking, etc. However, a malicious attacker can perform various security attacks in the multi-server environments because he/she can easily modify, insert, inject, delete, and intercept exchanged messages over a public channel. Thus, secure authentication and key agreement (AKA) schemes are indispensable to provide useful services in multi-server environments. In 2020, Ali et al. presented a three-factor symmetric key based secure AKA scheme for privacy and security in multi-server environments. Ali et al. claimed that their scheme can prevent various security attacks, and also ensure secure authentication. However, this comment shows that Ali et al.'s scheme suffers from many drawbacks, including session key exposure, man-in-the-middle (MITM), and masquerade attacks. Moreover, their scheme fails to ensure mutual authentication. Thus, we suggest the necessary security guidelines to resolve the security threats of Ali et al.'s scheme. INDEX TERMS Cryptanalysis, multi-server environment, authentication, key establishment, security protocol.

show abstract

“…In this study, we explore the state‐of‐the‐art on authentication protocols regarding the monitoring of remote patient health care. Many remote patient monitoring protocols can be witnessed in the past; however, these protocols have many proven drawbacks 1–27 . Still, there is a need of a secure and efficient remote patient‐health care monitoring protocol (RPMP).…”

Section: Introductionmentioning

confidence: 99%

“…The authentication of patient, medical professional, or any kind of user is a technique to recognize the involved participants. Many authentication schemes 6–27 for remote patient's health monitoring have been presented in the last 5 years; however, none of those is secure against various attacks. Therefore, we are motivated to design an enhanced authentication technique.…”

Section: Introductionmentioning

confidence: 99%

A secure and efficient remote patient‐monitoring authentication protocol for cloud‐IoT

Alzahrani

Irshad

Alsubhi

et al. 2020

Int J Communication

View full text Add to dashboard Cite

Summary The ongoing Cloud‐IoT (Internet of Things)–based technological advancements have revolutionized the ways in which remote patients could be monitored and provided with health care facilities. The real‐time monitoring of patient's health leads to dispensing the right medical treatment at the right time. The health professionals need to access patients' sensitive data for such monitoring, and if treated with negligence, it could also be used for malevolent objectives by the adversary. Hence, the Cloud‐IoT–based technology gains could only be conferred to the patients and health professionals, if the latter authenticate one another properly. Many authentication protocols are proposed for remote patient health care monitoring, but with limitations. Lately, Sharma and Kalra (DOI: 10.1007/s40998‐018‐0146‐5) present a remote patient‐monitoring authentication scheme based on body sensors. However, we discover that the scheme still bears many drawbacks including stolen smart card attack, session key compromise, and user impersonation attacks. In view of those limitations, we have designed an efficient authentication protocol for remote patient health monitoring that counters all the above‐mentioned drawbacks. Moreover, we prove the security features of our protocol using BAN logic‐based formal security analysis and validate the results in ProVerif automated security tool.

show abstract

Comments on “Biometrics-Based Privacy-Preserving User Authentication Scheme for Cloud-Based Industrial Internet of Things Deployment”

Cited by 53 publications

References 7 publications

LAKE-IoD: Lightweight Authenticated Key Exchange Protocol for the Internet of Drone Environment

LAKE-IoD: Lightweight Authenticated Key Exchange Protocol for the Internet of Drone Environment

Comments on “ITSSAKA-MS: An Improved Three-Factor Symmetric-Key Based Secure AKA Scheme for Multi-Server Environments”

A secure and efficient remote patient‐monitoring authentication protocol for cloud‐IoT

Contact Info

Product

Resources

About