Three-party authenticated key agreements for optimal communication

Lee, Tian Fu; Hwang, Tzonelih

doi:10.1371/journal.pone.0174473

Cited by 5 publications

(5 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We can distinguish several mutual authentication and key agreement schemes. Some of the techniques developed are based on symmetric key mechanisms, using a pre-shared common key [16]- [19]. In particular, Gong et al [16], [19] study the minimum number of communication rounds and messages needed to establish mutual authentication among three different parties, taking into account various assumptions.…”

Section: Related Workmentioning

confidence: 99%

“…Some of the techniques developed are based on symmetric key mechanisms, using a pre-shared common key [16]- [19]. In particular, Gong et al [16], [19] study the minimum number of communication rounds and messages needed to establish mutual authentication among three different parties, taking into account various assumptions. The disadvantage in these schemes is that the session key is only constructed by the authentication server and the other two entities do not participate in the construction of it, making these schemes vulnerable for key control resilience attacks [20].…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Security Enhanced Emergency Situation Detection System for Ambient Assisted Living

Shabisha

Sandeepa

Moremada

et al. 2021

IEEE Open J. Comput. Soc.

View full text Add to dashboard Cite

Typical wearable devices use a dedicated mobile phone as relay node to transfer the collected sensor data to a server. However, such relay nodes can be faulty or inactive due to various reasons, leading to interruptions of the communication link. To mitigate this challenge, we propose a novel security-enhanced emergency situation detection system, where 3 rd party unknown mobile relays are used instead of dedicated gateways as opposed to many existing solutions for IoT healthcare applications. The proposed underlying key agreement and authentication scheme ensures anonymity and untraceability for both sensors (wearable devices) and relay nodes, and relies on symmetric key-based operations to function under resourceconstrained environments. We have also developed a prototype of the system using commercial off-the-shelf devices to verify the proposed method's validity and evaluate the performance advantage over existing approaches. Bluetooth Low Energy (BLE) communication technology is used to connect sensor nodes (wearable devices) and mobile relays. After sending medical data to the cloud server, the relay node is responsible for emergency detection and alert generation.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Security Enhanced Emergency Situation Detection System for Ambient Assisted Living

Shabisha

Sandeepa

Moremada

et al. 2021

IEEE Open J. Comput. Soc.

View full text Add to dashboard Cite

show abstract

“…In the context of the so-called tripartite schemes, where three entities need to agree on a common key, we can also distinguish several identity-based mutual authentication schemes. Some of the schemes are based on symmetric key mechanisms, using a pre-shared common key [23][24][25][26]. In particular, [23,24] study the minimum amount of communication rounds and messages needed to establish mutual authentication among three different parties, taking into account different assumptions.…”

Section: Related Workmentioning

confidence: 99%

“…Some of the schemes are based on symmetric key mechanisms, using a pre-shared common key [23][24][25][26]. In particular, [23,24] study the minimum amount of communication rounds and messages needed to establish mutual authentication among three different parties, taking into account different assumptions. The disadvantage in these schemes is that the session key is only constructed by the authentication server and the other two entities do not participate in its construction, making these schemes vulnerable for key control resilience attacks [27].…”

Section: Related Workmentioning

confidence: 99%

Identity-based and anonymous key agreement protocol for fog computing resistant in the Canetti–Krawczyk security model

2019

View full text Add to dashboard Cite

Fog computing allows to connect the edge of the network, consisting of low cost Internet of Things devices, with high end cloud servers. Fog devices can perform data processing, which can significantly reduce the delay for the application. Moreover, data aggregation can be carried out by fog devices which decrease the bandwidth needed being very important for the wireless part of the communication with the cloud servers. The edge-fog-cloud architecture is currently being rolled out for several applications in the field of connected cars, health care monitoring, etc. In this paper, we propose an identitybased, mutual authenticated key agreement protocol for this fog architecture, in which end device and fog are able to establish a secure communication without leakage of their identities. Only the cloud server is able to control the identities of device and fog. We formally prove that the session keys are also protected in the Canetti-Krawczyk security model, in which adversaries are considered to have access to session state specific information, previous session keys, or long-term private keys. The scheme is very efficient as it only utilises elliptic curve operations and basic symmetric key operations.

show abstract

“…We can distinguish symmetric key based schemes like e.g. [34]- [37], and public key based schemes like e.g. [38]- [40].…”

Section: Fog Architecturementioning

confidence: 99%

Fog-Orchestrated and Server-Controlled Anonymous Group Authentication and Key Agreement

et al. 2019

View full text Add to dashboard Cite

Fog architectures are currently present in many applications. Constrained devices equipped with sensors produce measurements that will be sent to a nearby gateway, called the fog. The fog verifies, aggregates and forwards them to the server. Group authentication among these devices allows them to securely accept messages of the group members, resulting in faster updates in their process. When defining a security scheme, it should be considered that edge and fog devices are susceptible to attacks. Privacy of the devices should be guaranteed, with respect to outsiders and the fog. It should be impossible to track the connection pattern of devices with different fogs, even if several fogs are captured by an attacker. Inclusion of protection against potentially malicious fogs has not yet been considered in literature, especially not for group-based communications. We present a server-controlled group authentication and key agreement scheme, executed by the fog in collaboration with the devices that it can reach. The server, assumed to be fully trusted, is responsible for the registration and authorisation of the devices and initiates the key update process, whereas the fog takes care of the secure distribution process among its members. At the end, all entities in the group are ensured to possess the correct group key. Moreover, a pairwise secret key between device and server is obtained during the process. The proposed scheme is very efficient as it relies on elliptic curve cryptography and Lagrange interpolation. No initially shared secret key material among the entities needs to be pre-stored. INDEX TERMS Edge-fog-cloud architecture, elliptic curve cryptography, group authentication, group key, Rubin logic.

show abstract

Three-party authenticated key agreements for optimal communication

Cited by 5 publications

References 33 publications

Security Enhanced Emergency Situation Detection System for Ambient Assisted Living

Security Enhanced Emergency Situation Detection System for Ambient Assisted Living

Identity-based and anonymous key agreement protocol for fog computing resistant in the Canetti–Krawczyk security model

Fog-Orchestrated and Server-Controlled Anonymous Group Authentication and Key Agreement

Contact Info

Product

Resources

About