A security authentication scheme in machine‐to‐machine home network service

Sun, Xiaoying; Men, Shuang; Zhao, Chenglin; Zhou, Zheng

doi:10.1002/sec.551

Cited by 37 publications

(122 citation statements)

References 7 publications

(11 reference statements)

Supporting

Mentioning

120

Contrasting

Order By: Relevance

“…These authentication protocols use three ideas, namely, Timestamp, Hash function, and Random numbers. The idea of random numbers is used by [41,56,40], and [42]. The idea of hash function is used by protocols [52] and [155], such as the IPSec protocol implements an anti-replay mechanism based on Message Authentication Code (MAC) [167].…”

Section: Replay Attackmentioning

confidence: 99%

Authentication Protocols for Internet of Things: A Comprehensive Survey

Ferrag

Μαγλαράς

Janicke

et al. 2017

Security and Communication Networks

229

131

View full text Add to dashboard Cite

In this paper, a comprehensive survey of authentication protocols for Internet of Things (IoT) is presented. Specifically more than forty authentication protocols developed for or applied in the context of the IoT are selected and examined in detail. These protocols are categorized based on the target environment: (1) Machine to Machine Communications (M2M), (2) Internet of Vehicles (IoV), (3) Internet of Energy (IoE), and (4) Internet of Sensors (IoS). Threat models, countermeasures, and formal security verification techniques used in authentication protocols for the IoT are presented. In addition a taxonomy and comparison of authentication protocols that are developed for the IoT in terms of network model, specific security goals, main processes, computation complexity, and communication overhead are provided. Based on the current survey, open issues are identified and future research directions are proposed.

show abstract

Section: Replay Attackmentioning

confidence: 99%

Authentication Protocols for Internet of Things: A Comprehensive Survey

Ferrag

Μαγλαράς

Janicke

et al. 2017

Security and Communication Networks

229

131

View full text Add to dashboard Cite

show abstract

“…Because the previous works in [7,10,11] do not mention which cryptography algorithm is used in their scheme, only the works in [6,8,9] are compared. Moreover, because the works in [6,8,9] just directly utilize the standardized cryptography algorithms, Table IV only list their underlay algorithms. An authentication scheme with IBC for M2M security in CPS S. Chen, M. Ma and Z. Luo From Table IV, it is obvious that the proposed work in this paper would bring more overhead than the previous works because the proposed work utilizes the AIBCwKE mechanism, which is asymmetric cryptography with bilinear pairing, while the previous works just use symmetric cryptography and message authentication code algorithm.…”

Section: Efficiency Analysismentioning

confidence: 99%

An authentication scheme with identity-based cryptography for M2M security in cyber-physical systems

Chen

Luo

2016

Security Comm. Networks

View full text Add to dashboard Cite

The Internet has made the world smaller while there is still a gap between the cyber world and our physical world. In the future cyber‐physical system (CPS), all objects in cyber world and physical world would be connected, and the concepts of cyber world and physical world will no longer exist. The speed of information transmitting and processing will be faster, the abilities of controlling facilities and handling events will be more powerful, and our lives will be better. In the CPS, machine to machine (M2M) communication is in charge of data collecting and transmitting, which utilizes both wireless and wired systems to monitor physical or environmental conditions and exchange the information among different systems without direct human intervention. As a part of CPS, M2M communication is considerably important while being fragile at the same time because M2M communication still faces lots of security threats that are not only from outside but also from inside. In traditional M2M communication, the M2M service provider (MSP) is always assumed to be trusted. However, the MSP could be compromised in real world. In that case, the previous security solutions would fail because the most confidential materials are kept in the MSP by the conventional solutions. How to protect the entire system from the compromised MSP is one important problem the paper intends to solve. In addition, the communication bandwidth and energy resource for the M2M devices are precious. Another issue the paper is addressing is the design of efficient security schemes being able to save both energy and communication bandwidth. In this paper, an authentication scheme applying authenticated identity‐based cryptography without key‐escrow mechanism has been proposed. In the proposed scheme, only partial secrets instead of full secrets are stored in the MSP, which could prevent the compromised MSP from endangering the whole system. The authenticated encryption property of the proposed scheme could leave out the work of signature generation, transmission, and verification so as to save the computation and communication resource of the whole system. The security analysis with Burrows–Abadi–Needham logic (BAN Logic) and Simple Promela Interpreter (SPIN) shows that the proposed scheme is well designed and could withstand Man‐in‐the‐Middle attacks, impersonation attacks, replay attacks, DoS attacks, and compromised attacks. Copyright © 2016 John Wiley & Sons, Ltd.

show abstract

“…The trust management aspect of these techniques is discussed by Yan et al [14]. Other such authentication protocols are IPsec (Internet Protocol Security), RFID (Radio Frequency Identification) tag management protocol, password-based authentication protocol, establishment protocol, and device authentication protocol [15][16][17][18][19].…”

Section: Background and Related Workmentioning

confidence: 99%

SecIoT: a security framework for the Internet of Things

Huang

Craig

Lin

et al. 2015

Security Comm. Networks

View full text Add to dashboard Cite

The 5th generation wireless system (5G) will support Internet of Things (IoT) by increasing the interconnectivity of electronic devices to support a variety of new and promising networked applications such as the home of the future, environmental monitoring networks, and infrastructure management systems. The potential benefits of the IoT are as profound as they are diverse. However, the benefits of the IoT come with some significant challenges. Not the least of these is that the increased interconnectivity integral to an IoT network increases its vulnerability to malevolent attacks. There is still no proven methodology for the design of security frameworks with device authentication and access control. This paper attempts to address this problem through the development of a prototype security framework with robust and transparent security protection. This includes an investigation into the security requirements of three different characteristic IoT scenarios (concretely, body IoT, home IoT, and hotel IoT), a design of new authentication mechanisms, and an access control subsystem with fine‐grained roles and risk indicators. Our prototype security framework gives us an insight into some of the major difficulties of IoT security as well as providing some feasible solutions. Copyright © 2015 John Wiley & Sons, Ltd.

show abstract

A security authentication scheme in machine‐to‐machine home network service

Cited by 37 publications

References 7 publications

Authentication Protocols for Internet of Things: A Comprehensive Survey

Authentication Protocols for Internet of Things: A Comprehensive Survey

An authentication scheme with identity-based cryptography for M2M security in cyber-physical systems

SecIoT: a security framework for the Internet of Things

Contact Info

Product

Resources

About