Lightweight three factor scheme for real-time data access in wireless sensor networks

Luo, Hanguang; Su, Jian

doi:10.1007/s11276-018-1841-x

Cited by 26 publications

(20 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A three-factor-based authentication scheme for real-time data access in wireless sensor networks (WSNs) is proposed in [12] to provide higher security and operational efficiency when compared with the two-factor-based authentication scheme. The proposed scheme uses smart card, biometric information and user's password and username factors to provide an authenticated real-time access to data in WSNs.…”

Section: Reciprocal Authenticationmentioning

confidence: 99%

“…These schemes are resistant to most but not to all of the attacks. The schemes proposed in [9,[11][12]14] are not resistant to asynchronous attacks. Schemes in [10,[31][32] are vulnerable to playback attacks [20,29].…”

Section: Reciprocal Authenticationmentioning

confidence: 99%

“…Although many authentication schemes have been proposed in recent years [4][5][6][7][8][9][10][11][12][13][14], most of them lack mutual authentication between MClient and CServers [15][16]. Moreover, the existing schemes are vulnerable to known attacks such as man-in-the-middle (MITM), playback, impersonation, and asynchronization [17][18][19].…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Dynamic Reciprocal Authentication Protocol for Mobile Cloud Computing

Ahmed

Wendy

Kabir

et al. 2021

IEEE Systems Journal

View full text Add to dashboard Cite

A combination of mobile and cloud computing delivers many advantages such as mobility, resources, and accessibility through seamless data transmission via the Internet anywhere at any time. However, data transmission through vulnerable channels poses security threats such as man-in-themiddle, playback, impersonation, and asynchronization attacks. To address these threats, we define an explicit security model that can precisely measure the practical capabilities of an adversary. A systematic methodology consisting of 16 evaluation criteria is used for comparative evaluation, thereby leading other approaches to be evaluated through a common scale. Finally, we propose a dynamic reciprocal authentication protocol to secure data transmission in mobile cloud computing. In particular, our proposed protocol develops a secure reciprocal authentication method, which is free of Diffie-Hellman limitations, and has immunity against basic or sophisticated known attacks. The protocol utilizes multi-factor authentication of usernames, passwords, and a one-time password. The password is automatically generated and regularly updated for every connection. The proposed protocol is implemented and tested using Java to demonstrate its efficiency in authenticating communications and securing data transmitted in the mobile cloud computing environment. Results of the evaluation process indicate that compared with the existing works, the proposed protocol possesses obvious capabilities in security and in communication and computation costs.

show abstract

Section: Reciprocal Authenticationmentioning

confidence: 99%

Section: Reciprocal Authenticationmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Dynamic Reciprocal Authentication Protocol for Mobile Cloud Computing

Ahmed

Wendy

Kabir

et al. 2021

IEEE Systems Journal

View full text Add to dashboard Cite

show abstract

“…However, we discovered that their scheme fails to provide three-factor security if the lost/stolen smart card is obtained by the attacker and the biometric information is also collected by the attacker without the awareness of the owner, so their scheme is not as secure as they claimed. With a similar reason, schemes of [46][47][48] fail to provide true three-factor security. Although Li et al employed fuzzy verifier technique and claimed that their protocol [49] for wireless medical sensor networks satisfies many security features, we found that it cannot resist replay attack.…”

Section: Related Workmentioning

confidence: 99%

A Lightweight Secure User Authentication and Key Agreement Protocol for Wireless Sensor Networks

Chen

2019

Security and Communication Networks

View full text Add to dashboard Cite

Wireless sensor networks (WSNs) have great potential for numerous domains of application because of their ability to sense and understand unattended environments. However, a WSN is subject to various attacks due to the openness of the public wireless channel. Therefore, a secure authentication mechanism is vital to enable secure communication within WSNs, and many studies on authentication techniques have been presented to build robust WSNs. Recently, Lu et al. analyzed the security defects of the previous ones and proposed an anonymous three-factor authenticated key agreement protocol for WSNs. However, we found that their protocol is vulnerable to some security weaknesses, such as the offline password guessing attack, known session-specific temporary information attack, and no session key backward secrecy. We propose a lightweight security-improved three-factor authentication scheme for WSNs to overcome the previously stated weaknesses. In addition, the improved scheme is proven to be secure under the random oracle model, and a formal verification is conducted by ProVerif to reveal that the proposal achieves the required security features. Moreover, the theoretical analysis indicates that the proposal can resist known attacks. A comparison with related works demonstrates that the proposed scheme is superior due to its reasonable performance and additional security features.

show abstract

“…To illustrate the effectiveness of our proposed scheme, we have presented the comparison of security features provided by our protocol and two related works by evaluating whether the 12 features in Table 7. Considering the earlier criteria-related study [25,26,27], based on a set of 11 features from [2] and a set of 10 features which is defined in [3], we put a list of 12 following independent criteria to show that our scheme provides higher security level than the previous works. Particularly, [2,3] did not mention the resistance of man-in-the-middle attack or not following the trace of the object as it moves from a zone to another.…”

Section: Security Features Comparisonmentioning

confidence: 99%

The Meeting of Acquaintances: A Cost-Efficient Authentication Scheme for Light-Weight Objects with Transient Trust Level and Plurality Approach

Dang

Tran

2019

Security and Communication Networks

View full text Add to dashboard Cite

Wireless sensor networks consist of a large number of distributed sensor nodes so that potential risks are becoming more and more unpredictable. The new entrants pose the potential risks when they move into the secure zone. To build a door wall that provides safe and secured for the system, many recent research works applied the initial authentication process. However, the majority of the previous articles only focused on the Central Authority (CA) since this leads to an increase in the computation cost and energy consumption for the specific cases on the Internet of Things (IoT). Hence, in this article, we will lessen the importance of these third parties through proposing an enhanced authentication mechanism that includes key management and evaluation based on the past interactions to assist the objects joining a secured area without any nearby CA. We refer to a mobility dataset from CRAWDAD collected at the University Politehnica of Bucharest and rebuild into a new random dataset larger than the old one. The new one is an input for a simulated authenticating algorithm to observe the communication cost and resource usage of devices. Our proposal helps the authenticating flexible, being strict with unknown devices into the secured zone. The threshold of maximum friends can modify based on the optimization of the symmetric-key algorithm to diminish communication costs (our experimental results compare to previous schemes less than 2000 bits) and raise flexibility in resource-constrained environments.

show abstract

Lightweight three factor scheme for real-time data access in wireless sensor networks

Cited by 26 publications

References 35 publications

Dynamic Reciprocal Authentication Protocol for Mobile Cloud Computing

Dynamic Reciprocal Authentication Protocol for Mobile Cloud Computing

A Lightweight Secure User Authentication and Key Agreement Protocol for Wireless Sensor Networks

The Meeting of Acquaintances: A Cost-Efficient Authentication Scheme for Light-Weight Objects with Transient Trust Level and Plurality Approach

Contact Info

Product

Resources

About