On the security of a provably secure, efficient, and flexible authentication scheme for ad hoc wireless sensor networks

He, Jun; Yang, Zheng; Zhang, Jianxun; Liu, Wanping; Liu, Chao

doi:10.1177/1550147718756311

Cited by 21 publications

(33 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…According to Table 7, the computation time for the IoT node/sensor node in the proposed protocol is 0.003 ms, which is 95.42%, 97.68%, 98.82%, 97.03%, 91.84%, 85.64%, 88.92, 91.95%, and 97.66% lower than the computation times in the protocols of Challa et al [19], He et al [27], Challa et al [26], Renuka et al [35], Ma et al [33], Lyu et al [32], Martínez-Peláez et al [34], Wazid et al [29], and Ryu et al [28], respectively. Therefore, our proposed protocol is more efficient and more suitable for constrained sensor devices in the IoT environment.…”

Section: B Computational Overhead Comparisonsmentioning

confidence: 87%

“…However, these schemes are not lightweight due to their huge overheads. In 2018, many multifactor user authentication schemes were presented (Challa et al [26], He et al [27], Ryu et al [28], Wazid et al [29], Li et al [30]) for the IoT environment. Unfortunately, Wazid's scheme is suffering from security weakness [31]; while, Challa's, He's, Ryu's, and X. Li's scheme have high computation and communication overheads.…”

Section: Related Workmentioning

confidence: 99%

“…Here, we compare the proposed protocol with those of Challa et al [19], He et al [27], Challa et al [26], Renuka et al [35], Ma et al [33], Lyu et al [32], Martínez-Peláez et al [34], Wazid et al [29], and Ryu et al [28] during the login and authentication phases. The approximate execution times that are required for the operations are based on the experimental results of [29], as presented in Table 5.…”

Section: B Computational Overhead Comparisonsmentioning

confidence: 99%

“…In this subsection, we compare our proposed protocol with those of Dhillon and Kalra [24] (2017), Dammak et al [31] (2019), He et al [27] (2018), Farash et al [21] (2016), Li et al [30] (2018), Lyu et al [32] (2019), Ma et al [33] (2019), and Wazid et al [29] (2018) in terms of the communication cost. For simplicity and conventional comparison, we have assumed that the output sizes of the hash function, the identity ID, and ECC point multiplication are 160 bits.…”

Section: Communication Overhead Comparisonmentioning

confidence: 99%

See 3 more Smart Citations

Low-Overhead Remote User Authentication Protocol for IoT Based on a Fuzzy Extractor and Feature Extraction

et al. 2019

View full text Add to dashboard Cite

The Internet of things (IoT) is a system of smart technologies and services that mutually communicate data between users and devices or between devices via the Internet. Since data are shared between a remote user and various sensing devices over a network, it is essential to design a secure, lightweight and efficient remote user authentication protocol for the IoT environment. In the context of security and network privacy, mutual authentication is necessary for securely accessing the services of the IoT environment. However, the IoT faces substantial new challenges realizing mutual authentication due to IoT devices constraints. In this paper, we present a lightweight, robust and secure authentication protocol that satisfies constraints on IoT devices. The proposed protocol is based on level 3 feature extraction, fuzzy extraction of the user's biometrics, one-way hash functions and XOR operations and includes (1) three-factor authentication (user password, biometrics and smart devices), (2) mutual authentication, (3) a session key, and (4) key freshness. Furthermore, we have used the Burrows-Abadi-Needham logic to prove the authentication of our proposed protocol. In addition, our proposed protocol does not require additional hardware or a resource-constrained cryptosystem, and for that reason; hence, it has the lowest computational cost on the IoT nodes (0.003_ms), the lowest total computational cost (0.071_ms), and the lowest communication cost (2784 bits) compared with other relevant works. Moreover, we have conducted an informal security analysis to prove its ability to withstand well-known malicious attacks, such as replay attacks, impersonation attacks, password change attacks, man-in-the-middle (MITM) attacks, and denial of service (DOS) attacks.

show abstract

Section: B Computational Overhead Comparisonsmentioning

confidence: 87%

Section: Related Workmentioning

confidence: 99%

Section: B Computational Overhead Comparisonsmentioning

confidence: 99%

Section: Communication Overhead Comparisonmentioning

confidence: 99%

See 2 more Smart Citations

Low-Overhead Remote User Authentication Protocol for IoT Based on a Fuzzy Extractor and Feature Extraction

et al. 2019

View full text Add to dashboard Cite

show abstract

“…In 2018, several studies were published on remote user authentication for the IoT environment [36][37][38][39][40][41]. The author in [36] presented an authentication scheme for ad hoc WSN to improve the security weakness of the scheme in [42] using ECC cryptograph. In Cyber-Physical Systems (CPS) and IoT, Lu et al [37] presented a mutual authentication proposed scheme with user anonymity.…”

Section: Related Workmentioning

confidence: 99%

A Secure and Lightweight Three‐Factor Remote User Authentication Protocol for Future IoT Applications

et al. 2021

View full text Add to dashboard Cite

With the booming integration of IoT technology in our daily life applications such as smart industrial, smart city, smart home, smart grid, and healthcare, it is essential to ensure the security and privacy challenges of these systems. Furthermore, time-critical IoT applications in healthcare require access from external parties (users) to their real-time private information via wireless communication devices. Therefore, challenges such as user authentication must be addressed in IoT wireless sensor networks (WSNs). In this paper, we propose a secure and lightweight three-factor (3FA) user authentication protocol based on feature extraction of user biometrics for future IoT WSN applications. The proposed protocol is based on the hash and XOR operations, including (i) a 3-factor authentication (i.e., smart device, biometrics, and user password); (ii) shared session key; (iii) mutual authentication; and (iv) key freshness. We demonstrate the proposed protocol’s security using the widely accepted Burrows–Abadi–Needham (BAN) logic, Automated Validation of Internet Security Protocols and Applications (AVISPA) simulation tool, and the informal security analysis that demonstrates its other features. In addition, our simulations prove that the proposed protocol is superior to the existing related authentication protocols, in terms of security and functionality features, along with communication and computation overheads. Moreover, the proposed protocol can be utilized efficiently in most of IoT’s WSN applications, such as wireless healthcare sensor networks.

show abstract

Analyzing and Enhancing a User Authentication Scheme for Ad Hoc Wireless Sensor Networks

Kumari,

Tyagi

2024

Lecture Notes in Networks and Systems

View full text Add to dashboard Cite

On the security of a provably secure, efficient, and flexible authentication scheme for ad hoc wireless sensor networks

Cited by 21 publications

References 23 publications

Low-Overhead Remote User Authentication Protocol for IoT Based on a Fuzzy Extractor and Feature Extraction

Low-Overhead Remote User Authentication Protocol for IoT Based on a Fuzzy Extractor and Feature Extraction

A Secure and Lightweight Three‐Factor Remote User Authentication Protocol for Future IoT Applications

Analyzing and Enhancing a User Authentication Scheme for Ad Hoc Wireless Sensor Networks

Contact Info

Product

Resources

About