Pre-Authentication Design for Seamless and Secure Handover in Mobile WiMAX

Zmezm, Hamzah F.; Hashim, Shaiful Jahari; Sali, Aduwati; Alezabi, Kamal Ali

doi:10.15866/irecos.v10i7.6955

Cited by 9 publications

(6 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…An attacking node may individually identify the victim node to continue between the two nodes. The nodes that are communicating may need to re-transmission messages by altering sequence numbers [ 22 , 24 , 25 ]. In [ 26 ], the authors provided secure key management and user authentication scheme called the SAKA-FC.…”

Section: Related Workmentioning

confidence: 99%

SELAMAT: A New Secure and Lightweight Multi-Factor Authentication Scheme for Cross-Platform Industrial IoT Systems

Khalid

Hashim

Ahmad

et al. 2021

Sensors

View full text Add to dashboard Cite

The development of the industrial Internet of Things (IIoT) promotes the integration of the cross-platform systems in fog computing, which enable users to obtain access to multiple application located in different geographical locations. Fog users at the network’s edge communicate with many fog servers in different fogs and newly joined servers that they had never contacted before. This communication complexity brings enormous security challenges and potential vulnerability to malicious threats. The attacker may replace the edge device with a fake one and authenticate it as a legitimate device. Therefore, to prevent unauthorized users from accessing fog servers, we propose a new secure and lightweight multi-factor authentication scheme for cross-platform IoT systems (SELAMAT). The proposed scheme extends the Kerberos workflow and utilizes the AES-ECC algorithm for efficient encryption keys management and secure communication between the edge nodes and fog node servers to establish secure mutual authentication. The scheme was tested for its security analysis using the formal security verification under the widely accepted AVISPA tool. We proved our scheme using Burrows Abdi Needham’s logic (BAN logic) to prove secure mutual authentication. The results show that the SELAMAT scheme provides better security, functionality, communication, and computation cost than the existing schemes.

show abstract

Section: Related Workmentioning

confidence: 99%

SELAMAT: A New Secure and Lightweight Multi-Factor Authentication Scheme for Cross-Platform Industrial IoT Systems

Khalid

Hashim

Ahmad

et al. 2021

Sensors

View full text Add to dashboard Cite

show abstract

“…They devised an authenticated key agreement scheme for simultaneously accessing multiple sensing devices and establishing a mutual session key between them. Unfortunately, due to secret-sharing technology, the proposed scheme has a high computing cost [41].…”

Section: Related Workmentioning

confidence: 99%

A New Hybrid Online and Offline Multi-Factor Cross-Domain Authentication Method for IoT Applications in the Automotive Industry

et al. 2021

View full text Add to dashboard Cite

Connected vehicles have emerged as the latest revolution in the automotive industry, utilizing the advent of the Internet of Things (IoT). However, most IoT-connected cars mechanisms currently depend on available network services and need continuous network connections to allow users to connect to their vehicles. Nevertheless, the connectivity availability shortcoming in remote or rural areas with no network coverage makes vehicle sharing or any IoT-connected device problematic and undesirable. Furthermore, IoT-connected cars are vulnerable to various passive and active attacks (e.g., replay attacks, MiTM attacks, impersonation attacks, and offline guessing attacks). Adversaries could all use these attacks to disrupt networks posing a threat to the entire automotive industry. Therefore, to overcome this issue, we propose a hybrid online and offline multi-factor authentication cross-domain authentication method for a connected car-sharing environment based on the user’s smartphone. The proposed scheme lets users book a vehicle using the online booking phase based on the secured and trusted Kerberos workflow. Furthermore, an offline authentication phase uses the OTP algorithm to authenticate registered users even if the connectivity services are unavailable. The proposed scheme uses the AES-ECC algorithm to provide secure communication and efficient key management. The formal SOV logic verification was used to demonstrate the security of the proposed scheme. Furthermore, the AVISPA tool has been used to check that the proposed scheme is secured against passive and active attacks. Compared to the previous works, the scheme requires less computation due to the lightweight cryptographic algorithms utilized. Finally, the results showed that the proposed system provides seamless, secure, and efficient authentication operation for the automotive industry, specifically car-sharing systems, making the proposed system suitable for applications in limited and intermittent network connections.

show abstract

“…In this section, we present some of such studies. The work in has proposed a pre‐authentication mechanism to provide secure and safe connection before HO process. It provides forward and backward secrecy based on the least privilege principle.…”

Section: Enhancements Of Wimax Authentication Processmentioning

confidence: 99%

Authentication process enhancements in WiMAX networks

Alezabi

Hashim

et al. 2016

Security Comm Networks

Self Cite

View full text Add to dashboard Cite

Authentication is one of the most important security processes in Worldwide Interoperability for Microwave Access (WiMAX) networks. This process allows the receiver (whether base station or subscriber station) of a packet to be confident of the identity of the sender and the integrity of the message. Most attacks will attempt to violate the authentication process. If such attacks become successful, an attacker will gain an illegitimate access to network resources, thus increasing the probability of future malicious attacks. A number of algorithms and methods have been proposed to improve the security level of authentication in WiMAX networks. However, the evaluations of these algorithms and methods have always been based on a particular aspect, such as reducing overhead, protecting unauthenticated management messages, preventing WiMAX from external attacks, and protection during the handover process. Motivated by these variations, we review the state of art of WiMAX authentication mechanisms, namely, PKMv1, PKMv2, and the recent authentication protocols. We discuss their mechanisms, strengths, weaknesses, and potential countermeasures against each other. Our discussion is based on four categories, namely, enhancements, differences, advantages, and limitations. Copyright © 2016 John Wiley & Sons, Ltd.

show abstract

Pre-Authentication Design for Seamless and Secure Handover in Mobile WiMAX

Cited by 9 publications

References 11 publications

SELAMAT: A New Secure and Lightweight Multi-Factor Authentication Scheme for Cross-Platform Industrial IoT Systems

SELAMAT: A New Secure and Lightweight Multi-Factor Authentication Scheme for Cross-Platform Industrial IoT Systems

A New Hybrid Online and Offline Multi-Factor Cross-Domain Authentication Method for IoT Applications in the Automotive Industry

Authentication process enhancements in WiMAX networks

Contact Info

Product

Resources

About