Lightweight and Anonymous Mutual Authentication Protocol for Edge IoT Nodes with Physical Unclonable Function

Wang, Hongyuan; Meng, Jin; Du, Xilong; Cao, Tengfei; Xie, Yang

doi:10.1155/2022/1203691

Cited by 7 publications

(8 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Te former ignores the actual architecture and the authority fltering function of gateway, while the latter exaggerates the security assumption of gateway. And only several schemes [6,13,14,17,20,[24][25][26] take physical attack into consideration. A comparison of recent schemes is shown in Table 1.…”

Section: Related Workmentioning

confidence: 99%

“…However, this is infeasible in reality (violates condition P2 in Table 1) since gateways residing at open environment are also prone to various attacks. Following the concept of computational asymmetry, Wang et al proposed a PUF-based lightweight AKA protocol for edge IoT nodes [26]. To acclimatize environmental noise, the reverse fuzzy extractor is employed, which also mitigated the computation burden at end devices.…”

Section: Te System Architecture Is Not Practical For Hierarchalmentioning

confidence: 99%

See 1 more Smart Citation

Extremely Lightweight PUF-based Batch Authentication Protocol for End-Edge-Cloud Hierarchical Smart Grid

Liu

Yan

Sun

et al. 2022

Security and Communication Networks

View full text Add to dashboard Cite

Smart grid is gradually replacing traditional grid with two-way communication and improved management. Besides the efficiency and reliability it brings, the smart grid is inevitably fraught with rampant physical and cyber-attack. Although several physical unclonable function (PUF)-based schemes have been proposed, they are unsuited to the end-edge-cloud hierarchical smart grid. This paper proposes a PUF-based batch authentication and key agreement protocol, which protects both meters and gateways and provides end-to-end authentication between meters and the server. By offloading heavy operations from field devices to the server, the computation overhead is reduced substantially. Moreover, we innovatively devolve batch authentication and access control to the gateway, which additionally decreases downlink communication and signaling cost, and is superior to most recent schemes. Our protocol is proved by Tamarin under extended Dolev–Yao adversary and the Real-or-Random model and is evaluated to be secure against various attacks. Using extremely lightweight operations, our protocol is implemented on the MSP430FR5969 microcontroller.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Te System Architecture Is Not Practical For Hierarchalmentioning

confidence: 99%

Extremely Lightweight PUF-based Batch Authentication Protocol for End-Edge-Cloud Hierarchical Smart Grid

Liu

Yan

Sun

et al. 2022

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…We note that, beyond the device identification process (our focus) per se, the resulting classification of device instances is often used in subsequent management or processing tasks as observed in our literature review (e.g., applying policies to specific classes of devices). ✓ Noguchi [161] ✓ Perdisci [167] ✓ Ray [171] ✓ AA3 Yousefnezhad [225] ✓ AA3 Aneja [19] ✓ AA3 Chowdhury [52] ✓ AA3 Hamad [100] ✓ ✓ AA3 Anantharaman [18] ✓ ✓ Kotak [126] ✓ ✓ Ammar [15] ✓ Ammar [16] ✓ Santos [183] ✓ Meidan [150] ✓ Singla [190] ✓ Marchal [144] ✓ Bao [28] ✓ Thomsen [203] ✓ Miettinen [152] ✓ Yu [227] ✓ Bezawada [40] ✓ Salman [181] ✓ Marchal [144] ✓ Aksoy [6] ✓ Kumar [130] ✓ AA4 Anantharaman [17] ✓ AA1, AA4 Mukhandi [155] ✓ AA1 Bin-Rabiah [41] ✓ AA1 Gritti [91] ✓ AA1 Kalra [119] ✓ AA1 Malche [143] ✓ AA1 Nashwan [157] ✓ AA1 Kim [122] ✓ AA2 Kim [123] ✓ AA1, AA2 Wang [214] ✓ AA2 Niya [160] ✓ AA2…”

Section: Determine Device Classesmentioning

confidence: 99%

“…Reviewed AA2 proposals include the following. Anantharaman [17] AA1, AA4 ✓ ✓ Nashwan [157] AA1 ✓ ▲ Bin-Rabiah [41] AA1 ✓ ▲ Kalra [119] AA1 ✓ ▲ Gritti [91] AA1 ✓ Malche [143] AA1 ✓ Mukhandi [155] AA1 ✓ Kumar [130] AA4 ✓ ▲ Kim [123] AA1, AA2 ✓ Wang [214] AA2 ✓ ▲ Kim [122] AA2 ✓ ▲ Niya [160] AA2 ✓ revocation of key pairs (a similar challenge as in certificate-based approaches, Section 7.4). The primitives used to facilitate authentication and encryption in JEDI and authorization with macaroons may be lightweight, but the infrastructure and management requirements are non-trivial.…”

Section: Further Analysis Of One Identification Approach: Authenticationmentioning

confidence: 99%

“…Kim et al[123] also add PUF-based authentication to the OCF IoTivity framework[114] by using PUFs to authenticate devices with CR-pairs and public/private key pairs. Wang et al[214], with the goal of reducing device resource use, use CR-pairs from PUFs to authenticate resource-constrained devices and generate session keys. Niya et al[160] use smart contracts on the 2: Authentication approaches used in the three phases of device authentication (Section 7.1.3) based on authentication papers from Table7.1 on page 141.…”

mentioning

confidence: 99%

See 1 more Smart Citation

On Security Best Practices, Systematic Analysis of Security Advice, and Internet of Things Devices

Bellman¹

View full text Add to dashboard Cite

While Internet of Things (IoT) security best practices have recently attracted considerable attention from industry and governments, academic research has highlighted the failure of many IoT product manufacturers to follow accepted practices. We begin by investigating a surprising lack of consensus, and void in the literature, on what (generically) best practice means, and provide a technical examination of related terminology. We use iterative inducting coding to design an analysis methodology for categorizing security advice and measuring its actionability. We use this methodology to analyze three datasets: a set of 1013 IoT security best practices, recommendations, and guidelines, and two formally recommended IoT security advice documents. We find all three sets to be largely non-actionable. Through design and use of this methodology, we identify the characteristics of actionable security advice.We also analyze recent work on IoT device identification based on three identification objectives (distinguish device instances, distinguish device classes, and authenticate device identity), and the technical approaches by which they are reached: device fingerprinting, classification, and authentication. We differentiate the role of these objectives and approaches in IoT security, and develop a model relating them. viii ix Ashraf Matrawy (Carleton University), and Dr. Mohammad Zulkernine (Queen's University).Finally, a special thank-you goes to my family and friends for all the support over the past five years-your encouragement is deeply appreciated, and I could not have done this without your support.

show abstract

Securing IoT-Based Smart Healthcare Systems by Using Advanced Lightweight Privacy-Preserving Authentication Scheme

Das,

Namasudra,

Deb

et al. 2023

IEEE Internet Things J.

View full text Add to dashboard Cite

Lightweight and Anonymous Mutual Authentication Protocol for Edge IoT Nodes with Physical Unclonable Function

Cited by 7 publications

References 31 publications

Extremely Lightweight PUF-based Batch Authentication Protocol for End-Edge-Cloud Hierarchical Smart Grid

Extremely Lightweight PUF-based Batch Authentication Protocol for End-Edge-Cloud Hierarchical Smart Grid

On Security Best Practices, Systematic Analysis of Security Advice, and Internet of Things Devices

Securing IoT-Based Smart Healthcare Systems by Using Advanced Lightweight Privacy-Preserving Authentication Scheme

Contact Info

Product

Resources

About