RUAM-IoD: A Robust User Authentication Mechanism for the Internet of Drones

Tanveer, Muhammad; Alkhayyat, Ahmed; Naushad, Alamgir; Khan, Abd Ullah; Kumar, Neeraj; Alharbi, Abdullah G.

doi:10.1109/access.2022.3149376

Cited by 34 publications

(29 citation statements)

References 48 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore, they only utilized hash functions and exclusive-OR operators. In the same year, Tanveer et al [ 18 ] proposed an authentication mechanism for IoD environments. They used an AES-CBC-256 cipher and ECC to ensure the anonymity of users.…”

Section: Related Workmentioning

confidence: 99%

“…They used an AES-CBC-256 cipher and ECC to ensure the anonymity of users. Although the above schemes [ 11 , 12 , 13 , 14 , 15 , 17 , 18 ] provide useful services such as healthcare, rescue, and traffic surveillance, they can suffer from physical attacks because each drone cannot protect security parameters from power analysis attacks.…”

Section: Related Workmentioning

confidence: 99%

“…We summarize the cryptographic techniques and the advantages and limitations of the existing related schemes [ 4 , 11 , 12 , 13 , 14 , 15 , 17 , 18 , 19 , 20 , 21 ] in Table 1 . Although previous authentication schemes can provide convenient services to users, they still have high computational and communication overhead and security drawback problems.…”

Section: Related Workmentioning

confidence: 99%

“…We demonstrate the security features of the proposed scheme with a related sch- eme [ 4 , 14 , 18 , 21 , 24 ] in terms of “security functionalities”, “communication costs”, and “computation costs”.…”

Section: Performance Analysismentioning

confidence: 99%

“…In order to provide visualized information, we offer comprehensive security properties of the proposed scheme and related schemes [ 4 , 14 , 17 , 18 , 21 , 24 ] in a table. As shown in Table 4 , we consider various security functionalities and attacks, including “stolen smart card/mobile device”, “offline password guessing ”, “impersonation”, “replay”, “privileged-insider”, “physical and cloning”, “ESL”, “verification table leakage”, “user anonymity”, “perfect forward secrecy”, “mutual authentication”, “DoS”, “untraceability”, “device/drone capture”, and “correctness”.…”

Section: Performance Analysismentioning

confidence: 99%

See 4 more Smart Citations

Provably Secure Mutual Authentication and Key Agreement Scheme Using PUF in Internet of Drones Deployments

Park

Ryu

Kwon

et al. 2023

Sensors

View full text Add to dashboard Cite

Internet of Drones (IoD), designed to coordinate the access of unmanned aerial vehicles (UAVs), is a specific application of the Internet of Things (IoT). Drones are used to control airspace and offer services such as rescue, traffic surveillance, environmental monitoring, delivery and so on. However, IoD continues to suffer from privacy and security issues. Firstly, messages are transmitted over public channels in IoD environments, which compromises data security. Further, sensitive data can also be extracted from stolen mobile devices of remote users. Moreover, drones are susceptible to physical capture and manipulation by adversaries, which are called drone capture attacks. Thus, the development of a secure and lightweight authentication scheme is essential to overcoming these security vulnerabilities, even on resource-constrained drones. In 2021, Akram et al. proposed a secure and lightweight user–drone authentication scheme for drone networks. However, we discovered that Akram et al.’s scheme is susceptible to user and drone impersonation, verification table leakage, and denial of service (DoS) attacks. Furthermore, their scheme cannot provide perfect forward secrecy. To overcome the aforementioned security vulnerabilities, we propose a secure mutual authentication and key agreement scheme between user and drone pairs. The proposed scheme utilizes physical unclonable function (PUF) to give drones uniqueness and resistance against drone stolen attacks. Moreover, the proposed scheme uses a fuzzy extractor to utilize the biometrics of users as secret parameters. We analyze the security of the proposed scheme using informal security analysis, Burrows–Abadi–Needham (BAN) logic, a Real-or-Random (RoR) model, and Automated Verification of Internet Security Protocols and Applications (AVISPA) simulation. We also compared the security features and performance of the proposed scheme and the existing related schemes. Therefore, we demonstrate that the proposed scheme is suitable for IoD environments that can provide users with secure and convenient wireless communications.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Performance Analysismentioning

confidence: 99%

Section: Performance Analysismentioning

confidence: 99%

See 3 more Smart Citations

Provably Secure Mutual Authentication and Key Agreement Scheme Using PUF in Internet of Drones Deployments

Park

Ryu

Kwon

et al. 2023

Sensors

View full text Add to dashboard Cite

show abstract

REHAS: Robust and Efficient Hyperelliptic Curve‐Based Authentication Scheme for Internet of Drones

Pratap,

Singh,

Mehra

2024

Concurrency and Computation

View full text Add to dashboard Cite

Internet of Drones (IoD) is one of the most beneficial and has many versatile applications like Surveillance and Security, Delivery and Logistics, Environmental Monitoring, Agriculture, and so forth. The IoD network is crucial for collecting sensitive data like geo‐coordinates, vehicle traffic data, and property details while surveying the various deployment locations in smart cities. The communication between users and drones can be compromised over insecure wireless channels by multiple attacks such as Man‐in‐the‐middle‐attack, Denial of Service, and so forth. Many schemes have already been propounded in the field of IoD. Still, many of them cannot address the resource constraints problem of drones, and existing protocols have higher computation and communication costs. Therefore, this paper has proposed a robust and efficient Hyper‐Elliptic Curve‐based authentication scheme (REHAS), which provides a session key for secure communication. Artificial Identities are generated using a hash function and random numbers. Fuzzy Extractor is used for user biometric authentication, which makes the smart device secure when lost. HECC is used with a smaller bit size of 80 bits rather than ECC of 160 bits. The security of the REHAS has been ensured using Scyther simulation. Furthermore, the resilience, safety, and robustness of REHAS are ensured by Informal security analysis. Lastly, a comparative study of the REHAS has been performed with other related Authentication and key agreement (AKA) protocols regarding communication cost, Computation cost, and security features, demonstrating that REHAS incurred less computation cost (6.7171 ms), communication overhead (1696 bits), and energy consumption (22.5 mJ) than other existing AKA schemes.

show abstract

A comprehensive security and performance assessment of UAV authentication schemes

Mekdad

Arış

Acar

et al. 2023

Security and Privacy

View full text Add to dashboard Cite

In the past few years, unmanned aerial vehicles (UAVs) have significantly gained attention and popularity from industry, government, and academia. With their rapid development and deployment into the civilian airspace, UAVs play an important role in different applications, including goods delivery, search‐and‐rescue, and traffic monitoring. Therefore, providing secure communication through authentication models for UAVs is necessary for a successful and reliable flight mission. To satisfy such requirements, numerous authentication mechanisms have been proposed in the literature. However, the literature lacks a comprehensive study evaluating the security and performance of these solutions. In this article, we analyze the security and performance of 27 recent UAV authentication works by considering ten different key metrics. First, in the performance analysis, we show that the majority of UAV authentication schemes are lightweight in their communication cost. However, the storage overhead or the energy consumption is not reported by many authentication studies. Then, we reveal in the security analysis the widely employed formal models (i.e., abstract description of an authentication protocol through a mathematical model), while most of the studies lack coverage of many attacks that can target UAV systems. Afterwards, we highlight the challenges that need to be addressed in order to design and implement secure and reliable UAV authentication schemes. Finally, we summarize the lessons learned on the authentication strategies for UAVs to motivate promising direction for further research.

show abstract

RUAM-IoD: A Robust User Authentication Mechanism for the Internet of Drones

Cited by 34 publications

References 48 publications

Provably Secure Mutual Authentication and Key Agreement Scheme Using PUF in Internet of Drones Deployments

Provably Secure Mutual Authentication and Key Agreement Scheme Using PUF in Internet of Drones Deployments

REHAS: Robust and Efficient Hyperelliptic Curve‐Based Authentication Scheme for Internet of Drones

A comprehensive security and performance assessment of UAV authentication schemes

Contact Info

Product

Resources

About