AKAIoTs: authenticated key agreement for Internet of Things

Saeed, Mutaz Elradi S.; Liu, Qunying; Tian, Guohui; Gao, Bin; Li, Fagen

doi:10.1007/s11276-018-1704-5

Cited by 45 publications

(24 citation statements)

References 42 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…At present, many key agreement protocols for the IoT environment pay more attention to lightweight requirements [16,17]. In 2016, Farash et al [18] improved the key agreement protocol based on heterogeneous sensor network proposed by Turkanovic.…”

Section: Related Workmentioning

confidence: 99%

“…Description Application [10,11] Security mechanisms For wireless sensor networks [12] A lightweight smart card-based authentication scheme For wireless sensor networks [13] A two-factor authentication protocol For wireless sensor networks [14] Uses ID technology and elliptic curve cryptosystem For resource-constrained wireless sensor networks [15] Protects the data security For the perception layer [16,17] Key agreement protocols For lightweight IoT environment [18] An improved key agreement protocol For heterogeneous sensor network [19] Uses chaotic mapping For IIoT environment [20] Combines data encryption with game theory For privacy protection in IIoT [21] Uses stake blockchain For dynamic wireless sensor networks In the same way, A can pretend to be P 2 . First, A chooses r 2 ′ ∈ Z * q , then computes ψ 2 ′ � r 2 ′ P 0 + r 2 ′ q 2 P and σ 2 ′ � r 2 ′ P 0 , finally sends the tuple ψ 2 ′ , σ 2 ′ to the initiator.…”

Section: Literature Studiesmentioning

confidence: 99%

See 1 more Smart Citation

Security Analysis of a Lightweight Identity-Based Two-Party Authenticated Key Agreement Protocol for IIoT Environments

Cheng

Shi

2021

Security and Communication Networks

View full text Add to dashboard Cite

Internet of Things brings convenience to the social life, at the same time, putting forward higher requirements for the security of data transmission and storage. Security incidents based on industrial Internet of Things have occurred frequently recently, which should be given full consideration. The identity-based authenticated key agreement protocol can solve these security threats to a certain extent. Recently, a lightweight identity-based authenticated key agreement protocol for Industrial Internet of Things, called ID-2PAKA protocol, was claimed to achieve secure authentication and meet security properties. In this paper, we show that the ID-2PAKA protocol is insecure in identity authentication and cannot resisting ephemeral key compromise impersonation attack.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Literature Studiesmentioning

confidence: 99%

Security Analysis of a Lightweight Identity-Based Two-Party Authenticated Key Agreement Protocol for IIoT Environments

Cheng

Shi

2021

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…In IoT communication environments, IBC based on ECC has been extensively investigated, as it offers a more cost-effective alternative to RSA. An excellent approach based on IBC was recently published by Saeed et al [23]. The authors introduced an identity-based authenticated key agreement between client sensor nodes and cloud servers.…”

Section: Identity-based Cryptographymentioning

confidence: 99%

Contemporary Physical Clone-Resistant Identity for IoTs and Emerging Technologies

et al. 2021

View full text Add to dashboard Cite

Internet of things (IoT) technologies have recently gained much interest from numerous industries, where devices, machines, sensors, or simply things are linked with each other over open communication networks. However, such an operation environment brings new security threats and technology challenges in securing and stabilizing such large systems in the IoT world. Device identity in such an environment is an essential security requirement as a secure anchor for most applications towards clone-resistant resilient operational security. This paper analyzes different contemporary authenticated identification techniques and discusses possible future technologies for physically clone-resistant IoT units. Two categories of identification techniques to counteract cloning IoT units are discussed. The first category is inherently cloneable and includes the classical identification mechanisms based on secret and public key cryptography. Such techniques deploy mainly secret keys stored permanently somewhere in the IoT devices as classical means to make units clone-resistant. However, such techniques are inherently cloneable as the manufacturer or device personalizers can clone them by re-using the same secret key (which must be known to somebody) or reveal keys to third parties to create cloned entities. In contrast, the second, more resilient category is inherently unclonable because it deploys unknown and hard to predict born analog modules such as physical unclonable functions (PUFs) or mutated digital modules and so-called secret unknown ciphers (SUCs). Both techniques are DNA-like identities and hard to predict and clone even by the manufacturer itself. Born PUFs were introduced two decades ago; however, PUFs as analog functions failed to serve as practically usable unclonable electronic identities due to being costly, unstable/inconsistent, and non-practical for mass application. To overcome the drawbacks of analog PUFs, SUCs techniques were introduced a decade ago. SUCs, as mutated modules, are highly consistent, being digital modules. However, as self-mutated digital modules, they offer only clone-resistant identities. Therefore, the SUC technique is proposed as a promising clone-resistant technology embedded in emerging IoT units in non-volatile self-reconfiguring devices. The main threats and expected security requirements in the emerging IoT applications are postulated. Finally, the presented techniques are analyzed, classified, and compared considering security, performance, and complexity given future expected IoT security features and requirements.

show abstract

“…in health-care and surveillance. More recently, Saeed et al [79] introduced identity-based authenticated key agreement between client sensor nodes and cloud servers. In this work, the base station hosts the PKG supporting ID-based schemes, which issue the private-public key pairs and other system parameters to the communicating entities in the network based on its identities.…”

Section: Identity-based Schemesmentioning

confidence: 99%

A Survey of Key Bootstrapping Protocols Based on Public Key Cryptography in the Internet of Things

2019

View full text Add to dashboard Cite

The Internet of Things envisages connecting all physical objects or things to the Internet, using devices as diverse as smartphones, coffee makers, washing machines, automobiles, lamps, and wearable devices, among many others. The explosive growth of Internet-connected sensing and actuating devices has bridged the gap between the physical and the digital world, with new solutions bringing benefits to people, processes, and businesses. However, security will be a major challenge in enabling most of such applications. The lack of secure links exposes data exchanged by devices to theft and attacks, with hackers already showing a keen interest in this area. Secure communication in the IoT will require a multifaceted approach, in particular, targeting aspects as relevant as the communications' protocols and data that need to be secured. One of the major aspects among these is how keys are bootstrapped in devices, for the purpose of supporting secure communications. In this paper, we survey the state of the art in key bootstrapping protocols based on public-key cryptography in the Internet of Things. Due to its inherent scalability, such protocols are particularly relevant for the implementation of distributed identity and trust management mechanisms on the IoT, in the context of which devices may be authenticated and trusted. The reviewed proposals are analyzed and classified on the basis of the key delivery method, the underlying cryptographic primitive, and the authentication mechanism supported. We also identify and discuss the main challenges of implementing such methods in the context of IoT applications and devices, together with the main avenues for conducting further research in the area. INDEX TERMS Authentication, Internet of Things, key bootstrapping, key management, public key cryptography, security. The associate editor coordinating the review of this manuscript and approving it for publication was Congduan Li.

show abstract

AKAIoTs: authenticated key agreement for Internet of Things

Cited by 45 publications

References 42 publications

Security Analysis of a Lightweight Identity-Based Two-Party Authenticated Key Agreement Protocol for IIoT Environments

Security Analysis of a Lightweight Identity-Based Two-Party Authenticated Key Agreement Protocol for IIoT Environments

Contemporary Physical Clone-Resistant Identity for IoTs and Emerging Technologies

A Survey of Key Bootstrapping Protocols Based on Public Key Cryptography in the Internet of Things

Contact Info

Product

Resources

About