Empirical Studies of TESLA Protocol: Properties, Implementations, and Replacement of Public Cryptography Using Biometric Authentication

Eledlebi, Khouloud; Yeun, Chan Yeob; Damiani, Ernesto; Al-Hammadi, Yousof

doi:10.1109/access.2022.3152895

Cited by 10 publications

(8 citation statements)

References 43 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Some authors like Eledlebi, Khouloud et al demonstrated the use of symmetric key encryption for the secure communication of biometric templates and employed a one-way hash function to ensure the integrity of the messages being communicated. 39 Some authors, like Shabaz et al 19 developed an approach including two-factor authentication or 2FA step verification for all external services to overcome the MITM attack. Additionally, client credentials are safeguarded with double encryption to prevent MITM attacks.…”

Section: Mechanisms To Prevent Mitm Attacksmentioning

confidence: 99%

A protocol to establish trust on biometric authentication devices

Kiran

Moona

Biswas

2023

Security and Privacy

View full text Add to dashboard Cite

One of the most extensively utilized mechanisms for person authentication is a system built using biometric‐based authentication. However, many applications use biometric authentication devices that do not support any device authentication mechanisms. As a result, a counterfeit scanning device may be substituted for the genuine one. Non‐authentic biometric authentication devices may perform some additive / subtractive or malicious functions. This paper proposes a technique for establishing trust in biometric authentication devices. The device authentication procedure is essential to build trust in biometric authentication devices such that non‐genuine biometric authentication devices are not used, which may compromise the loss of authentication factor and its replay when the genuine user is not getting authenticated. The protocol uses strong cryptographic mechanisms to authenticate the biometric authentication device with the application server and includes mechanisms for protection against the tampering of biometric templates and to prevent replay attacks. We also perform a formal verification using BAN logic to demonstrate that the proposed protocol meets the defined objectives. The proposed protocol can be used with any biometric authentication device to achieve the same objectives.

show abstract

Section: Mechanisms To Prevent Mitm Attacksmentioning

confidence: 99%

A protocol to establish trust on biometric authentication devices

Kiran

Moona

Biswas

2023

Security and Privacy

View full text Add to dashboard Cite

show abstract

“…Table I in section VI summarizes the advantages and disadvantages of the previously discussed variant TESLA protocols, and the proposed Enhanced Inf-TESLA protocol that is discussed later in section IV. A more detailed explanation of the security properties provided by these protocols can be found in [16].…”

Section: Related Workmentioning

confidence: 99%

Enhanced Inf-TESLA Protocol: A Continuous Connectivity and Low Overhead Authentication Protocol via IoT Devices

et al. 2022

View full text Add to dashboard Cite

Continuous and low-cost broadcast authentication is a fundamental security service for distributed sensor networks. This paper presents a novel development of a continuous and low-overhead broadcast authentication protocol named enhanced Infinite timed-efficient stream-loss tolerant authentication (enhanced Inf-TESLA) protocol, based on the Inf-TESLA protocol, whose continuous authentication is limited to the duration of its keychains. The enhanced Inf-TESLA protocol satisfies important security properties, including lower communication and computational overhead; a continuous generation of keychains without the need to establish synchronization packets; scalability to a large network; and resistance to masquerading, modification, man-in-the-middle, and replay attacks. We also highlighted an unaddressed authentication issue in the last packets of the original TESLA protocol and proposed a corresponding solution. We performed a simulation analysis using JAVA and proved that, compared to the Inf-TESLA protocol, the enhanced Inf-TESLA protocol can continuously authenticate packets for the entire lifetime of the receiver. We also compared the enhanced Inf-TESLA protocol with the original TESLA protocol in terms of time complexity and critical authentication processes. The results revealed the superiority of the enhanced Inf-TESLA protocol over the original TESLA protocol in terms of the message authentication code (MAC) value generation time and packet authentication time, which we believe can significantly improve the lifetime and lower the energy expenditure of Internet of Things devices with limited power sources. INDEX TERMS Continuous authentication, Internet of Things, low overhead, TESLA protocol, time complexity I. INTRODUCTIONThe development of the Internet of Things (IoT) technology has enabled billions of devices around the world to be connected to the Internet to collect and share data, create a level of digital intelligence, and support real-time communication of data [1]. Majority of devices that contribute to the IoT are constrained devices that have access to user information and daily life changes, which makes them vulnerable to cybersecurity attacks. Counter actions include using IoT devices as entry points to access other parts of the network or as a bait to turn turn down the attacker's system down. Constrained devices, such as sensors or smart devices, have limited CPU, memory, and power resources, which restricts the use of security protocols in protecting the privacy of their transferred data [1], [2].The main challenges in securing broadcast communication are source and integrity authentication, verifying that the received data comes from a legitimate source and has not been altered en-route [3]. Furthermore,

show abstract

“…This section discusses the latest variants of TESLA protocols that are used to compare our proposed Hybrid TLI-µTESLA protocol with. A detailed explanation about all the variants is given in [ 18 ].…”

Section: Related Workmentioning

confidence: 99%

Simulation Analysis and Comparison of New Hybrid TLI-µTESLA and Variant TESLA Protocols Using SHA-2 and SHA-3 Hash Functions

Eledlebi

Alzubaidi²,

Yeun³

et al. 2022

Sensors

Self Cite

View full text Add to dashboard Cite

The evolution of 5G and 6G networks has enhanced the ability of massive IoT devices to provide real-time monitoring and interaction with the surrounding environment. Despite recent advances, the necessary security services, such as immediate and continuous authentication, high scalability, and cybersecurity handling of IoT cannot be achieved in a single broadcast authentication protocol. This paper presents a new hybrid protocol called Hybrid Two-level µ-timed-efficient stream loss-tolerant authentication (Hybrid TLI-µTESLA) protocol, which maximizes the benefits of the previous TESLA protocol variants, including scalability support and immediate authentication of Multilevel-µTESLA protocol and continuous authentication with minimal computation overhead of enhanced Inf-TESLA protocol. The inclusion of three different keychains and checking criteria of the packets in the Hybrid TLI-µTESLA protocol enabled resistance against Masquerading, Modification, Man-in-the-Middle, Brute-force, and DoS attacks. A solution for the authentication problem in the first and last packets of the high-level and low-level keychains of the Multilevel-µTESLA protocol was also proposed. The simulation analysis was performed using Java, where we compared the Hybrid TLI-µTESLA protocol with other variants for time complexity and computation overhead at the sender and receiver sides. We also conducted a comparative analysis between two hash functions, SHA-2 and SHA-3, and assessed the feasibility of the proposed protocol in the forthcoming 6G technology. The results demonstrated the superiority of the proposed protocol over other variants in terms of immediate and continuous authentication, scalability, cybersecurity, lifetime, network performance, and compatibility with 5G and 6G IoT generations.

show abstract

Empirical Studies of TESLA Protocol: Properties, Implementations, and Replacement of Public Cryptography Using Biometric Authentication

Cited by 10 publications

References 43 publications

A protocol to establish trust on biometric authentication devices

A protocol to establish trust on biometric authentication devices

Enhanced Inf-TESLA Protocol: A Continuous Connectivity and Low Overhead Authentication Protocol via IoT Devices

Simulation Analysis and Comparison of New Hybrid TLI-µTESLA and Variant TESLA Protocols Using SHA-2 and SHA-3 Hash Functions

Contact Info

Product

Resources

About