An Effective Multifactor Authentication Mechanism Based on Combiners of Hash Function over Internet of Things

被引:24
作者
Ahmed, Adel Ali [1 ]
Ahmed, Waleed Ali [1 ]
机构
[1] King Abdulaziz Univ, Fac Comp & Informat Technol, Jeddah 25729, Saudi Arabia
关键词
IoT; authentication; hash function; IOT; SECURE; ARCHITECTURE;
D O I
10.3390/s19173663
中图分类号
O65 [分析化学];
学科分类号
070302 ; 081704 ;
摘要
Internet of Thing (IoT) is the most emerging technology in which all the objects in the real world can use the Internet to communicate with each other as parts of a single unified system. This eventually leads to the development of many smart applications such as smart cities, smart homes, smart healthcare, smart transportation, etc. Due to the fact that the IoT devices have limited resources, the cybersecurity approaches that relied on complex and long processing cryptography are not a good fit for these constrained devices. Moreover, the current IoT systems experience critical security vulnerabilities that include identifying which devices were affected, what data or services were accessed or compromised, and which users were impacted. The cybersecurity challenge in IoT systems is to find a solution for handling the identity of the user, things/objects and devices in a secure manner. This paper proposes an effective multifactor authentication (CMA) solution based on robust combiners of the hash functions implemented in the IoT devices. The proposed CMA solution mitigates the authentication vulnerabilities of IoT and defends against several types of attacks. Also, it achieves multi-property robustness and preserves the collision-resistance, the pseudo-randomness, the message authentication code, and the one-wayness. It also ensures the integrity, authenticity and availability of sensed data for the legitimate IoT devices. The simulation results show that CMA outperforms the TOTP in term of the authentication failure rate. Moreover, the evaluation of CMA shows an acceptable QoS measurement in terms of computation time overhead, throughput, and packet loss ratio.
引用
收藏
页数:22
相关论文
共 31 条
[11]   Authentication Handover and Privacy Protection in 5G HetNets Using Software-Defined Networking [J].
Duan, Xiaoyu ;
Wang, Xianbin .
IEEE COMMUNICATIONS MAGAZINE, 2015, 53 (04) :28-35
[12]   Robust Multi-Property Combiners for Hash Functions [J].
Fischlin, Marc ;
Lehmann, Anja ;
Pietrzak, Krzysztof .
JOURNAL OF CRYPTOLOGY, 2014, 27 (03) :397-428
[13]  
Gerber A., TOP 10 IOT SECURITY
[14]   Lightweight and Privacy-Preserving Two-Factor Authentication Scheme for IoT Devices [J].
Gope, Prosanta ;
Sikdar, Biplab .
IEEE INTERNET OF THINGS JOURNAL, 2019, 6 (01) :580-589
[15]  
Hummen R, 2014, IEEE INT CONF SENS, P284, DOI 10.1109/SAHCN.2014.6990364
[16]  
Jadoon I, 2018, IMPROVED IOT DEVICE, P115
[17]  
Khemissa H., 2016, 2016 Wireless Telecommunications Symposium, WTS 2016, London, United Kingdom, April 18-20, 2016, P1, DOI [10.1109/WTS.2016.7482039, DOI 10.1109/WTS.2016.7482039]
[18]   ANCHOR: Logically Centralized Security for Software-Defined Networks [J].
Kreutz, Diego ;
Yu, Jiangshan ;
Ramos, Fernando M. V. ;
Esteves-Verissimo, Paulo .
ACM TRANSACTIONS ON PRIVACY AND SECURITY, 2019, 22 (02)
[19]   A secure authentication scheme based on elliptic curve cryptography for IoT and cloud servers [J].
Kumari, Saru ;
Karuppiah, Marimuthu ;
Das, Ashok Kumar ;
Li, Xiong ;
Wu, Fan ;
Kumar, Neeraj .
JOURNAL OF SUPERCOMPUTING, 2018, 74 (12) :6428-6453
[20]  
Lehmann A, 2010, THESIS