Toward efficient authentication for space-air-ground integrated Internet of things

Zhao, Baokang; Liu, Puguang; You, Ilsun

doi:10.1177/1550147719860390

Cited by 17 publications

(6 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…They analyzed the security architecture of 6G and considered the new open authentication protocols (e.g., satellite, sea area) for non-3GPP networks, as one of the priorities for 6G network access security. Zhao et al [16] made use of the broadcasting function of satellites to propose an efficient and lightweight access authentication scheme, to prevent the burden of "message storms" on satellite authentication. Cui et al [17] proposed an authentication scheme for heterogeneous B5G networks (including satellite networks) and proposed a user detection scheme based on trust evaluation.…”

Section: Related Workmentioning

confidence: 99%

On-Demand Anonymous Access and Roaming Authentication Protocols for 6G Satellite–Ground Integrated Networks

Tao

Juan

et al. 2023

Sensors

View full text Add to dashboard Cite

Satellite–ground integrated networks (SGIN) are in line with 6th generation wireless network technology (6G) requirements. However, security and privacy issues are challenging with heterogeneous networks. Specifically, although 5G authentication and key agreement (AKA) protects terminal anonymity, privacy preserving authentication protocols are still important in satellite networks. Meanwhile, 6G will have a large number of nodes with low energy consumption. The balance between security and performance needs to be investigated. Furthermore, 6G networks will likely belong to different operators. How to optimize the repeated authentication during roaming between different networks is also a key issue. To address these challenges, on-demand anonymous access and novel roaming authentication protocols are presented in this paper. Ordinary nodes implement unlinkable authentication by adopting a bilinear pairing-based short group signature algorithm. When low-energy nodes achieve fast authentication by utilizing the proposed lightweight batch authentication protocol, which can protect malicious nodes from DoS attacks. An efficient cross-domain roaming authentication protocol, which allows terminals to quickly connect to different operator networks, is designed to reduce the authentication delay. The security of our scheme is verified through formal and informal security analysis. Finally, the performance analysis results show that our scheme is feasible.

show abstract

Section: Related Workmentioning

confidence: 99%

On-Demand Anonymous Access and Roaming Authentication Protocols for 6G Satellite–Ground Integrated Networks

Tao

Juan

et al. 2023

Sensors

View full text Add to dashboard Cite

show abstract

“…First, since CSP just owns parts of query data, it cannot make the decision tree evaluation all by himself. In addition, in the two-cloud model, the SUs usually can stay offline during the evaluation process while the single server model usually cannot [5,6,[28][29][30][31].…”

Section: Service Usersmentioning

confidence: 99%

“…There are a lot of security and privacy issues in the IoT [5][6][7][8]. The data security and privacy issues during the evaluation of the decision tree are mainly considered in our work.…”

Section: Introductionmentioning

confidence: 99%

Towards an Efficient Privacy-Preserving Decision Tree Evaluation Service in the Internet of Things

Liu

Zhao

et al. 2020

Symmetry

Self Cite

View full text Add to dashboard Cite

With the fast development of the Internet of Things (IoT) technology, normal people and organizations can produce massive data every day. Due to a lack of data mining expertise and computation resources, most of them choose to use data mining services. Unfortunately, directly sending query data to the cloud may violate their privacy. In this work, we mainly consider designing a scheme that enables the cloud to provide an efficient privacy-preserving decision tree evaluation service for resource-constrained clients in the IoT. To design such a scheme, a new secure comparison protocol based on additive secret sharing technology is proposed in a two-cloud model. Then we introduce our privacy-preserving decision tree evaluation scheme which is designed by the secret sharing technology and additively homomorphic cryptosystem. In this scheme, the cloud learns nothing of the query data and classification results, and the client has no idea of the tree. Moreover, this scheme also supports offline users. Theoretical analyses and experimental results show that our scheme is very efficient. Compared with the state-of-art work, both the communication and computational overheads of the newly designed scheme are smaller when dealing with deep but sparse trees.

show abstract

“…A LTHOUGH the Internet of Things (IoT) seems more than promising to embrace the industrial sectors, such as oil and gas industry, environmental monitoring and food and agriculture systems, it can be easily recognized that fundamental performance limitations related to availability, resilience and cost of terrestrial connectivity, where satellite network plays a complementary role in supporting the development of the IoT applications and in realizing the full potential of the interconnected devices [1,2]. For some IoT applications, the smart the LEO satellite constellation network and IoT applications, the communication between the ground and the satellites is vulnerable to non-authorized or malicious attacks due to its openness [7]. To achieve the secure communication in LEO satellite constellation assisted IoT ecosystem, several features inherited from the LEO satellite constellation network have to be taken into consideration, The dynamic topology requires the mechanism of the secure communication to be efficient so that the users in the covered area can be served during in passing by period; Frequent link switching happens between beam-to-beam and between satellite-to-satellite, the verification process should be lightweight that can be easily performed on the satellite, and possible verification optimization should be considered as well; The transmission delay for the uplink/downlink is shorter compared to the other satellite communication system like Geosynchronous Equatorial Orbit (GEO) system, however, it is still unavoidable consumption of time which limit the communication efficiency; Limited computing capability and storage space burdens the challenges in designing the secure communication algorithms where those heavy cryptography algorithms are no longer applicable.…”

Section: Introductionmentioning

confidence: 99%

An Efficient and Privacy-Preserving Blockchain-Based Authentication Scheme for Low Earth Orbit Satellite-Assisted Internet of Things

Wang¹,

Chang²,

et al. 2022

IEEE Trans. Aerosp. Electron. Syst.

View full text Add to dashboard Cite

Recently, integrating satellite networks (e.g. Lowearth-orbit satellite constellation) into the Internet of Things (IoT) ecosystem has emerged as a potential paradigm to provide more reliable, ubiquitous and seamless network services. The LEO satellite networks serves as a key enabler to transform the connectivity across industries and geographical border. Despite the convenience brought from the LEO satellite networks, it arises security concerns, in which the essential one is to secure the communication between the IoT devices and the LEO satellite network. However, some challenges inheriting from the LEO satellite networks need to be considered : 1) the dynamic topology; 2) the resource-constraint satellites; 3) the relative long latency; 4) multiple beams authentication. In particular, the centralized authentication schemes are no longer suitable for the emerging LEO satellite assisted IoT ecosystem. In this paper, we first introduce the architecture of the LEO satellite network assisted IoT ecosystem. Then, we propose an efficient and privacy-preserving blockchain-based authentication scheme. The proposed authentication scheme takes the advantages of certificateless encryption and consortium blockchain to provide lightweight key pair computation without appealing devices' information and efficient signature querying and verification. In addition, a fast authentication mechanism is implemented in the scheme in order to reduce the time complexity from querying a certain record for the authentication within a satellite among multiple beams. With the analysis of the storage and computation complexity, the performance evaluation demonstrates the effectiveness of the proposed scheme.

show abstract

Toward efficient authentication for space-air-ground integrated Internet of things

Cited by 17 publications

References 21 publications

On-Demand Anonymous Access and Roaming Authentication Protocols for 6G Satellite–Ground Integrated Networks

On-Demand Anonymous Access and Roaming Authentication Protocols for 6G Satellite–Ground Integrated Networks

Towards an Efficient Privacy-Preserving Decision Tree Evaluation Service in the Internet of Things

An Efficient and Privacy-Preserving Blockchain-Based Authentication Scheme for Low Earth Orbit Satellite-Assisted Internet of Things

Contact Info

Product

Resources

About