GASE: A Lightweight Group Authentication Scheme With Key Agreement for Edge Computing Applications

被引:17
作者
Nakkar, Mouna [1 ]
AlTawy, Riham [2 ]
Youssef, Amr [1 ]
机构
[1] Concordia Univ, Concordia Inst Informat Syst Engn, Montreal, PQ H3G 1M8, Canada
[2] Univ Victoria, Dept Elect & Comp Engn, Victoria, BC V8P 5C2, Canada
基金
加拿大自然科学与工程研究理事会;
关键词
Authentication; Protocols; Servers; Internet of Things; Edge computing; Cloud computing; Cryptography; Aggregated message authentication code (Agg-MAC); edge computing (EC); group authentication; massive machine-type communication (mMTC); secret sharing; NB-IOT; SECRET; PROTOCOL; AGGREGATE; DEVICES;
D O I
10.1109/JIOT.2022.3204335
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Motivated by the fact that mass authentication is one of the desirable security features in the edge computing paradigm, we propose a lightweight group authentication protocol with a session key-agreement. Most of the previously proposed group authentication schemes (GASs) are heavyweight and do not support multiple authentications or key-agreement. On the other hand, our protocol, which is based on secret sharing scheme and aggregated message authentication code, is lightweight and provides multiple asynchronous authentications. Furthermore, we implement a simple key refreshing mechanism in which, in each session, a new session-key between an Internet of Things node and the authenticating server is established without the need for redistributing new shares. Our security analysis includes proving that our protocol provides group authentication, message forward secrecy, and prevents several attacks. Additionally, we present a formal automated verification using Verifpal tool. Furthermore, we show that our scheme has better performance than other relative schemes in terms of communication complexity, secret-share redistribution, and session key derivations.
引用
收藏
页码:840 / 854
页数:15
相关论文
共 67 条
[21]   Fast Multivariate-Polynomial-Based Membership Authentication and Key Establishment for Secure Group Communications in WSN [J].
Cheng, Qi ;
Hsu, Chingfang ;
Xia, Zhe ;
Harn, Lein .
IEEE ACCESS, 2020, 8 :71833-71839
[22]   Group Authentication with Multiple Trials and Multiple Authentications [J].
Chien, Hung-Yu .
SECURITY AND COMMUNICATION NETWORKS, 2017,
[23]   Group-Oriented Range-Bound Key Agreement for Internet of Things Scenarios [J].
Chien, Hung-Yu .
IEEE INTERNET OF THINGS JOURNAL, 2018, 5 (03) :1890-1903
[24]  
Chien HY, 2000, IEICE T FUND ELECTR, VE83A, P2762
[25]   Toward Achieving Fine-Grained Access Control of Data in Connected and Autonomous Vehicles [J].
Cui, Jie ;
Chen, Xuelian ;
Zhang, Jing ;
Zhang, Qingyang ;
Zhong, Hong .
IEEE INTERNET OF THINGS JOURNAL, 2021, 8 (10) :7925-7937
[26]   Lightweight Key Management for Group Communication in Body Area Networks through Physical Unclonable Functions [J].
Dong, Penglin ;
Wang, Weichao ;
Shi, Xinghua ;
Qin, Tuanfa .
2017 IEEE/ACM SECOND INTERNATIONAL CONFERENCE ON CONNECTED HEALTH - APPLICATIONS, SYSTEMS AND ENGINEERING TECHNOLOGIES (CHASE), 2017, :102-107
[27]   Fog-Centric Authenticated Key Agreement Scheme Without Trusted Parties [J].
Guo, Yimin ;
Zhang, Zhenfeng ;
Guo, Yajun .
IEEE SYSTEMS JOURNAL, 2021, 15 (04) :5057-5066
[28]   An RFID distance bounding protocol [J].
Hancke, GP ;
Kuhn, MG .
FIRST INTERNATIONAL CONFERENCE ON SECURITY AND PRIVACY FOR EMERGING AREAS IN COMMUNICATIONS NETWORKS, PROCEEDINGS, 2005, :67-73
[29]   Group Authentication [J].
Harn, Lein .
IEEE TRANSACTIONS ON COMPUTERS, 2013, 62 (09) :1893-1898
[30]   MULTISTAGE SECRET SHARING BASED ON ONE-WAY FUNCTION [J].
HE, J ;
DAWSON, E .
ELECTRONICS LETTERS, 1994, 30 (19) :1591-1592