Highly Efficient Anonymous IoT Authentication using Composite Hashing

Chien, Hung‐Yu

doi:10.1109/dsc49826.2021.9346263

Cited by 3 publications

(3 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Chien [21][22], based on hashing and hash composition, propose an anonymous client-to-server authentication and an anonymous device-to-device authentication. In this paper, we modify and extend the anonymous client-toserver authentication in [20][21] to design and implement an anonymous client-to-broker authentication for MQTT 5.0. The differences between this work and several MQTT precedents are summarized here.…”

Section: Related Work and Backgroundmentioning

confidence: 99%

“…Some of these securityenhancement proposals provide hardware/architecture support for security protocols, some propose new symmetrickey-based/asymmetric-key-based security protocols, and some aim at designing authenticated key agreement schemes that are compatible with the previous MQTT packet formats and Application Interfaces (API). Chien [20][21] proposes general and efficient client-server authentication and deviceto-device authentication.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Design and Implementation of Efficient IoT Authentication Schemes for MQTT 5.0

Hung-Yu Chien,

Hung-Yu Chien

2023

Journal of Internet Technology

View full text Add to dashboard Cite

<p>MQTT (Message Queue Telemetry Transport) is one of the most popular Internet of Things (IoT) communication protocols, owing to its lightweight and easiness to use. The previous MQTT standards (including version 3.1 and its precedents) do not provide proper security functions; instead, they assume the adoption of SSL/TLS in the underlying layer. However, it not only incurs larger overhead but also hinders the development of suitable authentication/confidentiality protection to suit various MQTT deployment scenarios. The newest MQTT standard called MQTT 5.0 responds to these challenges by supporting the Enhanced Authentication framework in which designers can design and implement any secure authentication mechanisms within the framework. This paper designs and implements two efficient authentication protocols, using the MQTT 5.0 Enhanced Authentication framework. One is simple challenge-response authentication scheme, and the other is an anonymous challenge-response authentication scheme. We extend HiveMQ platform to implement the schemes and evaluate the performance. The results show that the proposed schemes demand only hundred few more milliseconds to achieve much robust authentication, compared to the simple identity-password authentication.</p> <p> </p>

show abstract

Section: Related Work and Backgroundmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Design and Implementation of Efficient IoT Authentication Schemes for MQTT 5.0

Hung-Yu Chien,

Hung-Yu Chien

2023

Journal of Internet Technology

View full text Add to dashboard Cite

show abstract

“…However, from the security analysis of much anonymous authentication protocols/anonymous key exchange protocols, in most instances, the anonymity of such protocols means that the participants' real identities are not involved in authentication and data transmissions [35], the probability that an attacker can determine the true identities of the protocol participants by executing the protocol [36] or observing the packets generated during the execution of the protocol is negligible [37]. In some protocols, pseudonyms are utilized to safeguard the anonymity of users, such as [37,38]. Cao and Wei [36] defined user anonymity as shown in Equation (14).…”

Section: Session the Further Analysis Usesmentioning

confidence: 99%

A Secure Anonymous Identity-Based Virtual-Space Agreement Method for Crowds-Based Anonymous Communicate Scheme

Lin,

Wang,

Shang

et al. 2023

IET Information Security

View full text Add to dashboard Cite

Anonymous data exchange is in great demand in many situations, especially in remote control systems, in which a stable, secure, and secret data channel must be established between the controlling and controlled parties to distribute control commands and return data. In the previous work, we built a two-level Virtual-Space anonymous communication scheme based on the Crowds System for performing secret data exchange in remote control systems. However, as an essential part of security and anonymity, participating nodes’ identity declaration and session key agreement phases were not well designed. In this paper, we redesign the identity agreement and declaration process and design an identity-based Virtual-Space agreement method using the extended Chebyshev Chaotic Maps. In this approach, we transform the identity declaration process into a multilevel Virtual-Space agreement problem, where a series of security-progressive Virtual-Space addresses are negotiated between the controller and the controlled nodes. The protocol can handle the case where there are multiple controllers in the system, and the negotiated Virtual-Space depends on the identity of the controller and the controlled node, so different controllers do not affect each other. The designed protocol is verified on Freenet, and we conclude this paper with a detailed security analysis of the method to prove that the method satisfies forward security.

show abstract

Dual-Driven Resource Management for Sustainable Computing in the Blockchain-Supported Digital Twin IoT

Wang

Song

et al. 2023

IEEE Internet Things J.

View full text Add to dashboard Cite

Highly Efficient Anonymous IoT Authentication using Composite Hashing

Cited by 3 publications

References 16 publications

Design and Implementation of Efficient IoT Authentication Schemes for MQTT 5.0

Design and Implementation of Efficient IoT Authentication Schemes for MQTT 5.0

A Secure Anonymous Identity-Based Virtual-Space Agreement Method for Crowds-Based Anonymous Communicate Scheme

Dual-Driven Resource Management for Sustainable Computing in the Blockchain-Supported Digital Twin IoT

Contact Info

Product

Resources

About