MAKE-IT—A Lightweight Mutual Authentication and Key Exchange Protocol for Industrial Internet of Things

Choudhary, Karanjeet; Gaba, Gurjot Singh; Bütün, İsmail; Kumar, Pardeep

doi:10.3390/s20185166

Cited by 26 publications

(19 citation statements)

References 40 publications

(100 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Hence, their deployment in a hostile environment can pose threats to the entire network. The TelosB mote [30] consumes 0.72 µJ and 0.81 µJ of energy [3], [9], [10] while transmitting and receiving, respectively. Table III provides the number of bits (T X /R X ) and the quantity of energy consumption (µJ) by a sensor node during the mutual authentication and key establishment phase.…”

Section: Performance and Comparative Analysismentioning

confidence: 99%

A Lightweight and Robust Secure Key Establishment Protocol for Internet of Medical Things in COVID-19 Patients Care

Masud

Gaba

AlQahtani

et al. 2021

IEEE Internet Things J.

Self Cite

160

View full text Add to dashboard Cite

Due to the outbreak of COVID-19, the Internet of Medical Things (IoMT) has enabled the doctors to remotely diagnose the patients, control the medical equipment, and monitor the quarantined patients through their digital devices. Security is a major concern in IoMT because the IoT nodes exchange sensitive information between virtual medical facilities over the vulnerable wireless medium. Hence, the virtual facilities must be protected from adversarial threats through secure sessions. This paper proposes a lightweight and physically secure mutual authentication and secret key establishment protocol that uses Physical Unclonable Functions (PUF) to enable the network devices to verify the doctor's legitimacy (user) and sensor node before establishing a session key. PUF also protects the sensor nodes deployed in an unattended and hostile environment from tampering, cloning, and side-channel attacks. The proposed protocol exhibits all the necessary security properties required to protect the IoMT networks, like authentication, confidentiality, integrity, and anonymity. The formal AVISPA and informal security analysis demonstrate its robustness against attacks like impersonation, replay, a man in the middle, etc. The proposed protocol also consumes fewer resources to operate and is safe from physical attacks, making it more suitable for IoT-enabled medical network applications.

show abstract

Section: Performance and Comparative Analysismentioning

confidence: 99%

A Lightweight and Robust Secure Key Establishment Protocol for Internet of Medical Things in COVID-19 Patients Care

Masud

Gaba

AlQahtani

et al. 2021

IEEE Internet Things J.

Self Cite

160

View full text Add to dashboard Cite

show abstract

“…In addition, the method proposed in this paper has better advantages in terms of flexibility and security mechanism upgrade cost compared to hardware-based solutions. The authors of [ 38 ] further proposed a lightweight mutual verification and key exchange model for remote devices, which has been applied in IIoT. In the process of device authentication, symmetric and asymmetric key encryption, hash codes, and timestamps were used to effectively prevent replay attack, modification attacks, and man-in-the-middle attacks.…”

Section: Related Workmentioning

confidence: 99%

TTAS: Trusted Token Authentication Service of Securing SCADA Network in Energy Management System for Industrial Internet of Things

Yang

Lee

Chen

et al. 2021

Sensors

View full text Add to dashboard Cite

The vigorous development of the Industrial Internet of Things brings the advanced connection function of the new generation of industrial automation and control systems. The Supervisory Control and Data Acquisition (SCADA) network is converted into an open and highly interconnected network, where the equipment connections between industrial electronic devices are integrated with a SCADA system through a Modbus protocol. As SCADA and Modbus are easily used for control and monitoring, the interconnection and operational efficiency between systems are highly improved; however, such connectivity inevitably exposes the system to the open network environment. There are many network security threats and vulnerabilities in a SCADA network system. Especially in the era of the Industrial Internet of Things, any security vulnerability of an industrial system may cause serious property losses. Therefore, this paper proposes an encryption and verification mechanism based on the trusted token authentication service and Transport Layer Security (TLS) protocol to prevent attackers from physical attacks. Experimentally, this paper deployed and verified the system in an actual field of energy management system. According to the experimental results, the security defense architecture proposed in this paper can effectively improve security and is compatible with the actual field system.

show abstract

“…Diffie-Hellman Diffie and Hellman [30] Blockey WooSeung [23] Proposed Method will refer to the above mentioned studies [34][35][36] to study how to extend the dynamic encryption key proposed in the paper to access control and authentication techniques. In addition, only theoretical verification of the randomness and unpredictability of the security aspects of the measures proposed in this study was carried out.…”

Section: Otp (S/key) Kungpisdan Et Al [29]mentioning

confidence: 99%

“…The study by Maissa et al [35] decentralized light-weight access control model was proposed to address the issue of scalability of centralized access control. The study by Choudhary et al [36] authentication and key management model considering the user's authentication of the device was proposed. Future research Funding: This research was funded by Korea east-west power company.…”

mentioning

confidence: 99%

Block Data Record-Based Dynamic Encryption Key Generation Method for Security between Devices in Low Power Wireless Communication Environment of IoT

Cho

Ko²,

Park

2020

Applied Sciences

View full text Add to dashboard Cite

The Internet of Things uses low-power wireless communication for wireless connectivity and efficient energy. Low-power wireless communication is applied to IoT for wireless connection and efficient energy consumption in various areas such as wearable devices, smart homes, and power plants in order to send and receive data and control the environment. Security is becoming more important because the Internet of Things controls real physical systems. For the security of the Internet of Things, the encryption key is important to identify and authenticate devices that are trusted. The static encryption key method used for devices is likely to be calculated in reverse through the value of the key and is vulnerable to exploitation attacks. This requires the application of dynamic encryption keys that generate keys periodically. However, in the case of low-power wireless communication, the asynchronous communication method and the packet loss make it difficult to apply existing dynamic encryption key technologies. In this paper, we proposed dynamic encryption key method that applies the mechanism of the block chain to solve these problems. Based on the history of sensor data between devices, encryption keys are dynamically generated. The proposed method is to generate the same encryption key between devices with only one step of asynchronous communication considering packet loss. The proposed method is also validated in terms of availability and security in the Internet of Things low-power wireless communication.

show abstract

MAKE-IT—A Lightweight Mutual Authentication and Key Exchange Protocol for Industrial Internet of Things

Cited by 26 publications

References 40 publications

A Lightweight and Robust Secure Key Establishment Protocol for Internet of Medical Things in COVID-19 Patients Care

A Lightweight and Robust Secure Key Establishment Protocol for Internet of Medical Things in COVID-19 Patients Care

TTAS: Trusted Token Authentication Service of Securing SCADA Network in Energy Management System for Industrial Internet of Things

Block Data Record-Based Dynamic Encryption Key Generation Method for Security between Devices in Low Power Wireless Communication Environment of IoT

Contact Info

Product

Resources

About