REAP-IIoT: Resource-Efficient Authentication Protocol for the Industrial Internet of Things

Tanveer, Muhammad; Alkhayyat, Ahmed; Khan, Abd Ullah; Kumar, Neeraj; Alharbi, Abdullah G.

doi:10.1109/jiot.2022.3188711

Cited by 28 publications

(31 citation statements)

References 42 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The security of this framework is demonstrated through Scyther and ROM. Similarly, an authenticated encryption and hash function-based AKA scheme is proposed in [2,13] for smart home and IIoT environments, with its security verified using ROM and Scyther. Lastly, an AKA scheme based on hyper-ECC is proposed in [14] for the Internet of drones environment.…”

Section: Related Workmentioning

confidence: 99%

“…By following the encryption process outlined in Equation ( 11), the credentials, namely Ct l 1 , Ct l 2 , and Ct l 3, can be obtained using P l 1 = ID U x , P l 2 = PW U x , and P l 3 = γ l 1 as the input parameters. To authenticate the user's secret credentials locally, the verification parameter is computed in Equation ( 12) and validated in Equation (13). If the condition in Equation ( 13) is satisfied, SMDU x /U x derives the parameters from TID x , TID GW y , TID SN z , and Ct 3 as indicated in Equations ( 14) and (15).…”

Section: 31mentioning

confidence: 99%

See 1 more Smart Citation

RDAF-IIoT: Reliable Device-Access Framework for the Industrial Internet of Things

Alasmary

2023

Mathematics

View full text Add to dashboard Cite

The Internet of Things (IoT) has experienced significant growth and is now a fundamental part of the next-generation Internet. Alongside improving daily life, IoT devices generate and collect vast amounts of data that can be leveraged by AI-enabled big data analytics for diverse applications. However, due to the machine-to-machine communication inherent in IoT, ensuring data security and privacy is crucial to mitigate various malicious cyber attacks, including man-in-the-middle, impersonation, and data poisoning attacks. Nevertheless, designing an efficient and adaptable IoT security framework poses challenges due to the limited computational and communication power of IoT devices, as well as their wide-ranging variety. To address these challenges, this paper proposes an Access Key Agreement (AKA) scheme called the “Reliable Device-Access Framework for the Industrial IoT (RDAF-IIoT)”. RDAF-IIoT verifies the user’s authenticity before granting access to real-time information from IIoT devices deployed in an industrial plant. Once authenticated at the gateway node, the user and IIoT device establish a session key for future encrypted communication. The security of the proposed RDAF-IIoT is validated using a random oracle model, while the Scyther tool is employed to assess its resilience against various security attacks. Performance evaluations demonstrate that the proposed scheme requires lower computational and communication costs compared to related security frameworks while providing enhanced security features.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: 31mentioning

confidence: 99%

RDAF-IIoT: Reliable Device-Access Framework for the Industrial Internet of Things

Alasmary

2023

Mathematics

View full text Add to dashboard Cite

show abstract

“…RSA and hashing are also used by researchers to provide a secure framework for Industrial IoT (IIoT). Authors [9] proposed resource efficient authentication protocol for IIoT. Lightweight Cryptography (LWC) along with hashing is used to authenticate IIoT devices and secure communication to mitigate man-in-the-middle & replay attacks.…”

Section: Security In Internet Of Things: Related Workmentioning

confidence: 99%

Blockchain-enabled Device Authentication and Authorisation for Internet of Things

Singh

Sturley

Sharma

et al. 2023

2023 1st International Conference on Advanced Innovations in Smart Cities (ICAISC)

View full text Add to dashboard Cite

The Internet of Things (IoT) is the network of multiple devices known as "things" which includes sensors, security cameras, smart lights, smart TV, traffic lights etc. in the smart home or industrial environment. In many applications, these IoT devices are installed in open areas for example traffic lights/ security cameras in a smart city. Strong authentication and authorisation for these devices need to be deployed to ensure trust among IoT networks. IoT devices produce and forward security-sensitive data and hence confidentiality, authentication and proper authorisation should be the primary priority of an IoT system. Implementing Certificate Authority-based digital certificate solutions is costly because of the number of devices involved in IoT networks. Blockchain is a decentralized ledgerbased technology which can help to provide seamless yet costeffective solutions for confidentiality, authentication, and authorisation for IoT environments. A blockchain-based system for device registration, authentication, authorisation, and data confidentiality is proposed. The paper shows the methodological and procedural details of the proposed security scheme.

show abstract

“…72 Thus, Scyther tool has been incorporated to identify unreported weaknesses in IKEv1 and IKEv2, 74 unfold incorrect claims in ISO/IEC 11770-2:2008 and ISO/IEC 11770-3:2008, 75 and illustrate security attacks in ISO/IEC 9798 family. 76 Recently, Scyther tool has been utilized to analyze the security of authentication protocols designed for the Internet of Things, [77][78][79][80][81] 5th generation, [82][83][84][85][86] and wireless sensor network [87][88][89][90][91] architecture.…”

Section: Security Verification Using Scyther Toolmentioning

confidence: 99%

A novel and provably secure mutual authentication protocol for cloud environment using elliptic curve cryptography and fuzzy verifier

Patel

Shukla

Patel

2023

Concurrency and Computation

View full text Add to dashboard Cite

SummaryCloud computing is an emerging paradigm that enables on‐demand data storage without considering the local infrastructure limitations of end‐users. The extensive growth in number of servers, resources, and networks intensifies security and privacy concerns in clouds. This necessitates secure mutual authentication and key agreement mechanism to verify the legitimacy of participating entities. In accordance, several authentication protocols have been designed to authenticate end‐users over insecure channels. This article presents security analysis of recent protocols that claim to render security and privacy features. We demonstrate that Kaur et al.'s protocol is vulnerable to replay attack, Dharminder et al.'s protocol is prone to user traceability and known session‐specific temporary information (KSSTI) attacks, and Bouchaala et al.'s protocol is prone to replay and KSSTI attacks. To withstand the aforementioned attacks, we propose an enhanced protocol based on fuzzy verifier and elliptic curve cryptography for clouds. Our protocol safeguards against security attacks while providing privacy functionalities. The security analysis is illustrated under real‐or‐random model, and correctness is verified under the Scyther security verification tool. Finally, comparative analysis with existing protocols shows that our protocol delivers robust security with reasonable computational and communication overheads than state‐of‐the‐art protocols.

show abstract

REAP-IIoT: Resource-Efficient Authentication Protocol for the Industrial Internet of Things

Cited by 28 publications

References 42 publications

RDAF-IIoT: Reliable Device-Access Framework for the Industrial Internet of Things

RDAF-IIoT: Reliable Device-Access Framework for the Industrial Internet of Things

Blockchain-enabled Device Authentication and Authorisation for Internet of Things

A novel and provably secure mutual authentication protocol for cloud environment using elliptic curve cryptography and fuzzy verifier

Contact Info

Product

Resources

About