Design of a Secure Password-Based Authentication Scheme for M2M Networks in IoT Enabled Cyber-Physical Systems

Renuka, Km.; Kumari, Saru; Zhao, Di; Li, Li

doi:10.1109/access.2019.2908499

Cited by 46 publications

(27 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…It is not clear in their protocol how the gateway remains synchronized with the sensor node and how it can resist synchronization attacks. They show that their scheme outperforms other related work in literature [11][12][13][14] with respect to computational performance. Only [7] is slightly more efficient.…”

Section: Related Workmentioning

confidence: 76%

“…Only [7] is slightly more efficient. In addition, the communication cost of [6] is still lower compared to [12][13][14], but slightly higher than [7,11,14]. However, it has also been clearly shown that all of the schemes [7,[11][12][13][14] suffer significant weaknesses with respect to attacks like for instance tracking attack [7,11,13,14], offline identity guessing attack [7,11,12,14], impersonation attack [7,14], denial of service attack [7,[11][12][13][14], etc.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Highly Efficient Symmetric Key Based Authentication and Key Agreement Protocol Using Keccak

Braeken

2020

Sensors

View full text Add to dashboard Cite

Efficient authentication and key agreement protocols between two entities are required in many application areas. In particular, for client–server type of architectures, the client is mostly represented by a constrained device and thus highly efficient protocols are needed. We propose in this paper two protocols enabling the construction of a mutual authenticated key ensuring anonymity and unlinkability of the client and resisting the most well known attacks. The main difference between the two proposed protocols is in the storage requirements on the server side. The innovation of our protocols relies on the fact that, thanks to the usage of the sponge construction, available in the newly proposed SHA3 standard with underlying Keccak design, the computation cost can be reduced to only one hash operation on the client side in case of the protocol with storage and two hash operations for the protocol without storage and thus leads to a very efficient solution.

show abstract

Section: Related Workmentioning

confidence: 76%

Section: Related Workmentioning

confidence: 99%

Highly Efficient Symmetric Key Based Authentication and Key Agreement Protocol Using Keccak

Braeken

2020

Sensors

View full text Add to dashboard Cite

show abstract

“…The execution-cost of LAKD protocol is presented in Table 5, together with that of protocols [22,[60][61][62][63], which were also designed for M2M communication. Concerning the Case 1 measurement, the proposal has less execution-time than the other protocols, except for the schemes of Esfahani et al [22] and Joshitta et al [63].…”

Section: Execution-time Analysismentioning

confidence: 99%

Lightweight Authentication Protocol for M2M Communications of Resource-Constrained Devices in Industrial Internet of Things

Lara

Aguilar

Sánchez

et al. 2020

Sensors

View full text Add to dashboard Cite

The Industrial Internet of Things (IIoT) consists of sensors, networks, and services to connect and control production systems. Its benefits include supply chain monitoring and machine failure detection. However, it has many vulnerabilities, such as industrial espionage and sabotage. Furthermore, many IIoT devices are resource-constrained, which impedes the use of traditional security services for them. Authentication allows devices to be confident of each other’s identity, preventing some security attacks. Many authentication protocols have been proposed for IIoT; however, they have high computing requirements not viable to resource-constrained devices, or they have been found insecure. In this paper, an authentication protocol for resource-constrained IIoT devices is proposed. It is based on the lightweight operations xor, addition, and subtraction, and a hash function. Also, only four messages are exchanged between the principals to authenticate. It has a low execution-time and communication-cost. Its security was successfully assessed with the formal methods Automated Validation of Internet Security Protocols and Applications (AVISPA) tool and Burrows–Abadi–Needham (BAN) logic, together with an informal analysis of its resistance to known attacks. Its performance and security were compared with state-of-the-art protocols, resulting in a good performance for resource-constrained IIoT devices, and higher security similar to computational expensive schemes.

show abstract

“…Unfortunately, the shared master key can easily experience severe risks if a CPS node is compromised, leading to several attacks in the group. Renuka et al proposed three security mechanisms for machine-to-machine network in CPS [9]. These mechanisms include: (i) mobile-gateway authentication, (ii) mobile-sensor authentication and (iii) sensor-sensor authentication.…”

Section: ) Traditional Approachesmentioning

confidence: 99%

“…In the mobile-gateway approach, the authors included a human-inloop approach where the user is being authenticated using a password. However, in [16], Lara et al claimed that the approaches proposed in [9] require high computational complexities and are vulnerable to several attacks, e.g., offline guessing attack, privileged insider, and denial-of-service (DoS). In addition, Lara et al proposed another solution to mitigate the issues in [9].…”

Section: ) Traditional Approachesmentioning

confidence: 99%

Cyber-Physical Trust Systems Driven by Blockchain

2020

View full text Add to dashboard Cite

Cyber Physical Trust Systems (CPTS) are Cyber Physical Systems and Internet of Things enriched with trust as an explicit, measurable, testable and verifiable system component. In this paper, we propose to use blockchain, a distributed ledger technology, as the trust enabling system component for CPTS. We propose two schemes for CPTSs driven by blockchain in relation to two typical network model cases. We show that our proposed approach achieves the security properties, such as device identification, authentication, integrity, and non-repudiation, and provides protection against popular attacks, such as replay and spoofing. We provide formal proofs of those properties using the Tamarin Prover tool. We describe results of a proof-of-concept which implements a CPTS driven by blockchain for physical asset management and present a performance analysis of our implementation. We identify use cases in which CPTSs driven by blockchain find applications. INDEX TERMS Cyber physical systems, Internet of Things, distributed ledger technology, blockchain, asset management, supply chain, Industry 4.0, deep leasing.

show abstract

Design of a Secure Password-Based Authentication Scheme for M2M Networks in IoT Enabled Cyber-Physical Systems

Cited by 46 publications

References 17 publications

Highly Efficient Symmetric Key Based Authentication and Key Agreement Protocol Using Keccak

Highly Efficient Symmetric Key Based Authentication and Key Agreement Protocol Using Keccak

Lightweight Authentication Protocol for M2M Communications of Resource-Constrained Devices in Industrial Internet of Things

Cyber-Physical Trust Systems Driven by Blockchain

Contact Info

Product

Resources

About