Abstract
Background: In the last decades, the development of Internet activities has been significantly accelerated, particularly with the emergence of the Internet of Things (IoT). Heterogeneous devices in the IoT can seamlessly and feasibly inter-connect with each other without human interaction. Due to this revolution, many applications have been adopted in the arena of smart healthcare, e-commerce, environmental and habitat monitoring, etc. In order to promote and facilitate people's standards of living around the world. However, these unbounded applications bring more challenges to the storage capabilities of devices, and their security and privacy preservation. Moreover, security issues suffer from weak authentication protocols.
Methods: To address these issues, suitable and secure lightweight mutual authentication schemes based on Elliptic Curve Cryptography (ECC) are required for the approval of Identity Management (IDM) of devices in the IoT. In this paper, we will propose an improved mutual authentication scheme based on ECC, coupled with a relevant seminal work considered as a reference in the field. This scheme is combined with U-quark, a lightweight hash function, to guarantee the security needed in the IoT environment.
Results: We will compare our amended protocol with a seminal scheme as an established reference in terms of computation cost, storage cost, and executing CPU time to demonstrate that our version can ensure the most favorable performance during the authentication process.
Conclusion: Finally, our proposed mutual authentication scheme has demonstrated its effectiveness in enhancing the security of IoT devices when compared to the seminal work in the same computational environment.
Graphical Abstract
[http://dx.doi.org/10.3390/s22062087] [PMID: 35336261]
[http://dx.doi.org/10.1007/978-3-319-14971-4_5]
[http://dx.doi.org/10.1145/3591866.3593072]
[http://dx.doi.org/10.1109/ARITH51176.2021.00035]
[http://dx.doi.org/10.1109/SECON.2017.7925274]
[http://dx.doi.org/10.1109/NSITNSW.2015.7176384]
[http://dx.doi.org/10.1016/j.pmcj.2017.09.004]
[http://dx.doi.org/10.1145/358790.358797]
[http://dx.doi.org/10.1109/GLOCOM.2007.190]
[http://dx.doi.org/10.1109/TWC.2008.080128]
[http://dx.doi.org/10.1007/978-3-642-13577-4_5]
[http://dx.doi.org/10.4218/etrij.10.1510.0134]
[http://dx.doi.org/10.1016/j.adhoc.2013.02.004]
[http://dx.doi.org/10.1016/j.adhoc.2014.03.009]
[http://dx.doi.org/10.1016/j.adhoc.2015.05.014]
[http://dx.doi.org/10.1016/j.pmcj.2015.08.001]
[http://dx.doi.org/10.1016/j.pmcj.2015.12.003]
[http://dx.doi.org/10.1109/TrustCom/BigDataSE.2018.00117]
[http://dx.doi.org/10.3390/s19143144] [PMID: 31319567]
p [http://dx.doi.org/10.1088/1757-899X/715/1/012031]
[http://dx.doi.org/10.1002/dac.4849]
[http://dx.doi.org/10.1016/j.iot.2020.100174]
[http://dx.doi.org/10.1109/MCOM.2018.1700330]
[http://dx.doi.org/10.1109/JIOT.2019.2958788]
[http://dx.doi.org/10.1109/JIOT.2023.3309931]
[http://dx.doi.org/10.1109/JIOT.2023.3245360]
[http://dx.doi.org/10.1016/j.adhoc.2019.03.003]
[http://dx.doi.org/10.3390/s110504767] [PMID: 22163874]
[http://dx.doi.org/10.1016/j.adhoc.2020.102159]
[http://dx.doi.org/10.1109/ICMIC.2011.5973767]
[http://dx.doi.org/10.1007/s00145-012-9125-6]
[http://dx.doi.org/10.31559/glm2021.10.2.5]