A scalable and secure RFID mutual authentication protocol using ECC for Internet of Things

Naeem, Muhammad; Chaudhry, Shehzad Ashraf; Mahmood, Khalid; Karuppiah, Marimuthu; Kumari, Saru

doi:10.1002/dac.3906

Cited by 42 publications

(50 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Apart from the comparison of Gimli AE with the symmetric schemes discussed above, the evaluation of asymmetric schemes is also presented with respect to the hardware resources utilization and time consumption. Referring to the authentication protocol based on ECC presented by Naeem et al [17], the main operations are point multiplication, point addition and hash function. Out of these main operations, the most hardware expensive and time consuming one is the point multiplication.…”

Section: Comparisonmentioning

confidence: 99%

“…Tight constraints with respect to lower power consumptions and small hardware footprint demand for highly optimized implementations in hardware. Naeem et al [17] has presented an authentication protocol based on elliptic curve cryptography (ECC), while the information about hardware resource utilization is not provided. Symmetric cryptography is a practical solution for constrained devices due to its lightweight operations, and it is usually hardware friendly.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

A Flexible Gimli Hardware Implementation in FPGA and Its Application to RFID Authentication Protocols

2021

View full text Add to dashboard Cite

Radio Frequency Identification (RFID) systems have bestowed numerous conveniences in a multitude of applications, but the underlying wireless communications architecture makes it vulnerable to several security threats. To mitigate these issues, various authentication protocols have been proposed. The literature accommodates comprehensive proposals and analysis of authentication protocols, but not many of them provide hardware implementations. In addition, there is diverse demand for hardware area and throughput (TP) requirements from RFID system components (tags, readers, database servers), which demand a flexible implementation strategy. This paper proposes a flexible implementation strategy for the lightweight authenticated encryption (AE) and hash function called Gimli, and applies it to a state-of-theart authentication protocol. This allows the authentication protocol to be implemented efficiently, wherein the area and TP can be adjusted flexibly according to the RFID system requirements. This implementation strategy is generic; it can be used to implement any other AE and hash functions. This strategy can also be applied to other authentication protocols that heavily use AE and hash functions. To provide a detailed analysis, the hardware are optimization techniques in each component of the RFID system for a state-ofthe-art authentication protocol are analyzed. When implemented with the most area-optimized versions, we achieve TP of 740 Mbps and 420 Mbps for Gimli hash and Gimli AE, respectively, and for throughputoriented implementation, the results are 3.08 Gbps and 1.43 Gbps, respectively. This shows that the proposed implementation strategies allow us to implement authentication protocols in a flexible manner to meet the differing requirements in TP and area for RFID applications.

show abstract

Section: Comparisonmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

A Flexible Gimli Hardware Implementation in FPGA and Its Application to RFID Authentication Protocols

2021

View full text Add to dashboard Cite

show abstract

“…This protocol used elliptic curve Diffie-Hellman as the main agreement protocol to settle on a common message that is used to encrypt the subsequent messages exchanged to secure the tag data. Nevertheless, recently Naeem et al [20] put forward some scalability and consistency based security concerns. Finally, the paper recommends an update to fix the mentioned problems.…”

Section: Related Workmentioning

confidence: 99%

MUMAP: Modified Ultralightweight Mutual Authentication protocol for RFID enabled IoT networks

Raju

Ahmed²,

Ahad

2021

JIIAE

View full text Add to dashboard Cite

Flawed authentication protocols led to the need for a secured protocol for radio frequency identification (RFID) techniques. In this paper, an authentication protocol named Modified ultralightweight mutual authentication protocol (MUMAP) has been proposed and cryptanalysed by Juel-Weis challenge. The proposed protocol aimed to reduce memory requirements in the authentication process for low-cost RFID tags with limited resources. Lightweight operations like XOR and Left Rotation, are used to circumvent the flaws made in the other protocols. Proposed protocol has three-phase of authentication. Security analysis of proposed protocol proves its resistivity against attacks like desynchronization, disclosure, tracking, and replay attack. On the other hand, performance analysis indicates that it is an effective protocol to use in low-cost RFID tags. Juel-Weis challenge verifies the proposed protocol where it shows insusceptibility against modular operations.

show abstract

“…IoT is associated with great prospects of physical objects with the cyber world, such as healthcare devices, intelligent transportation systems, home appliances, sensors, and environmental monitoring [2]. Connected devices to the IoT are exponentially increasing [3], which add more security challenges that must be taken into consideration [4]. Cryptosystems based on asymmetric keys play vital roles in the security of diverse communication systems.…”

Section: Introductionmentioning

confidence: 99%

A Robust and Hybrid Cryptosystem for Identity Authentication

et al. 2021

View full text Add to dashboard Cite

With the progressive development of a wide range of applications, interconnect things and internet of things (IoT) became an imperative required trend by industries and academicians. IoT became a base infrastructure for remote access or control depending on internet protocol (IP) networks, especially after the COVID-19 pandemic. The huge application domain’s infrastructure, which depends on IoT, requires a trusted connection to guarantee security and privacy while transferring data. This paper proposes a hybrid identity authentication pipeline that integrates three schemes, namely, an elliptic curve cryptography (ECC) scheme is integrated with the Ong, Schnorr, and Shamir (OSS) signature scheme and chaotic maps. The latter satisfies both security and guarantee criteria. The novelty of the proposal is in using chaotic mapping and a cyclic group to deduce a substitution box (S-Box) and a reversible matrix as a portion of the OSS signature equation. The ECC-based security part is an efficient public key cryptography mechanism with less computational cost, which makes it the most convenient to be used in IoT devices for authentication and privacy. The strength of the proposed scheme relies on combining the discrete logarithm problem (DLP) and integer factorization problem (IFP). The proposed approach was simulated using Lab-View and compared with other state-of-the art schemes. Extensive simulation results and analysis of the security and time rendering results confirmed its durability against different types of attacks, such as linear and differential attacks.

show abstract

A scalable and secure RFID mutual authentication protocol using ECC for Internet of Things

Cited by 42 publications

References 31 publications

A Flexible Gimli Hardware Implementation in FPGA and Its Application to RFID Authentication Protocols

A Flexible Gimli Hardware Implementation in FPGA and Its Application to RFID Authentication Protocols

MUMAP: Modified Ultralightweight Mutual Authentication protocol for RFID enabled IoT networks

A Robust and Hybrid Cryptosystem for Identity Authentication

Contact Info

Product

Resources

About