Your search keyword '"Avispa"' showing total 592 results

1. A novel location and time privacy-preserving approach for mobile cloud based on blockchain.

Author

Merdassi, Imen, Ghazel, Cherif, and Saidane, Leila

Abstract

Location-based services (LBSs) rely on geographic information to offer location-based functionality to users, providing comfort to people’s lives but also being accompanied by privacy leaks. Many of the central verification methods proposed in recent years are not satisfactory, as they pose a significant risk to the user’s privacy. Blockchain technology provides a decentralized, distributed and manipulative solution, providing innovation in data sharing and management, as the technology is employed to enhance data privacy protection through various mechanisms, such as hashing and encryption secure transactions and protect user identities. In this paper, we propose a blockchain-based approach to secure location and time data privacy. We present a novel access control system that leverages location-based policies and multi-authority attributes. This approach allows users to remain anonymous while granting access based on their dynamic location and time. By combining multiple private chains, users’ transaction records can be distributed, which can provide users with stronger on-site privacy protection without affecting service quality. Comparative simulation analysis with state-of-the-art methods using benchmark performance metrics shows that our proposed approach provides improved security, efficiency, and transparency. We use the real or random (ROR) model to verify the security of session keys and mutual authentication of the proposed approach. Finally, theoretical security analysis and informal and formal security verifications show that our approach is secure against multiple attacks. We use the Automated Validation of Internet Security Protocols and Applications (AVISPA) tool to simulate the resistance of the proposed approach to security attacks. Our evaluation is based on the use of the JPBC (Java Pairing-Based Cryptography) library. Furthermore, validation and performance discussion show that decrypting our approach is preferable. [ABSTRACT FROM AUTHOR]

Published

2025

2. An enhanced and verifiable lightweight authentication protocol for securing the Internet of Medical Things (IoMT) based on CP-ABE encryption.

Author

Jebrane, Jihane and Lazaar, Saiida

Subjects

*COVID-19 pandemic, *ELLIPTIC curves, *INTERNET of things, *ACCESS control, *DATA transmission systems, *NEAR field communication

Abstract

The integration of the Internet of Things into patient monitoring devices has garnered significant attention, especially in response to the COVID-19 pandemic's increased focus on telecare services. However, Internet of Medical Things (IoMT) devices are constrained by computational power, memory, and bandwidth, making them vulnerable to security risks associated with data transmissions over public networks. Effective authentication is essential for safeguarding patient data and preventing unauthorized control of medical sensors. Existing IoMT authentication protocols frequently fall short, exposing critical vulnerabilities such as replay and impersonation attacks. This paper extends our prior work on the Improved Lightweight Authentication Protocol (ILAPU-Q), which is based on elliptic curves and the U-Quark hash function. We enhance the ILAPU-Q scheme and present a more secure authentication protocol for embedded medical devices. This enhancement relies on Ciphertext Policy-Attribute Based Encryption (CP-ABE), enabling data sources to protect information by cryptographically enforcing access policies. Implementing CP-ABE within the Telemedicine Information System framework eliminates the need for secure data transmission or storage at a dedicated location. Comprehensive security evaluations, conducted using AVISPA and Burrows-Abadi-Needham logic (BAN Logic), confirm the protocol's resilience against a broad spectrum of attacks. Moreover, performance assessments reveal significant advancements in computational efficiency, communication overhead, and storage requirements. Notably, our protocol demonstrates an efficiency improvement of approximately 95–98% over other protocols. This substantial improvement in security and performance underscores the practical value and potential of our protocol in advancing IoMT security standards. [ABSTRACT FROM AUTHOR]

Published

2024

3. Enhancing Security in Smart Renewable Energy Grids Through Proxy Signcryption Approach.

Author

Patil, Rachana Y., Patil, Yogesh H., Louzazni, Mohamed, Patil, Rajkumar Bhimgonda, Al-Dahidi, Sameer, and Sana Ullah, Jan

Subjects

INTERNET protocols, INTERNET security, RENEWABLE energy sources, ALGORITHMS, CONFIDENTIAL communications

Abstract

The rapid development of smart renewable energy grids (SREGs) has resulted in a vast amount of data that requires efficient access control and secure mechanisms for sharing energy records among stakeholders. This paper proposes a novel approach called the identity‐based proxy signcryption‐based scheme for SREGs (ID‐PSC‐SREGs), which ensures the secure sharing of energy records in SREGs. The ID‐PSC‐SREG scheme integrates the benefits of signature and encryption techniques, merging them into a unified algorithm and providing a comprehensive solution for the confidentiality and authenticity of energy records. Extensive security analysis demonstrates that the scheme achieves provable security against adaptive chosen ciphertext attacks (IND‐ID‐PSC‐SREG‐CCA2) and existential unforgeability against adaptive chosen message attacks (EUF‐ID‐PSC‐SREG‐CMAs) under the decisional Diffie–Hellman problem. In order to further ascertain the security of the ID‐PSC‐SREG scheme, formal verification utilizing the automated validation of internet security protocols and applications (AVISPAs) is performed. The results confirm the scheme's safety under the On‐the‐Fly Model‐Checker (OFMC) and Constraint Logic‐based Attack Searcher (CL‐AtSe). [ABSTRACT FROM AUTHOR]

Published

2024

4. CLAACS‐IOD: Certificate‐embedded lightweight authentication and access control scheme for Internet of Drones.

Author

Sadhukhan, Dipanwita, Ray, Sangram, Dasgupta, Mou, and Rodrigues, Joel J. P. C.

Subjects

INTERNET access control, DIGITAL certificates, ACCESS control, DRONE aircraft, INTERNET

Abstract

In recent era, the unmanned aerial vehicles (UAVs) commonly known as drones has emerged as a one of the most significant and promising tools which has demonstrated its wide range of implementations variating from commercial domain to the field of defense due to its distinct capabilities such as inspection, surveillance, precision and so forth. Internet connected drones provides a propitious trend that boosts the flying safety, and service qualities of the UAVs where numerous low‐altitude drones winged in different flying regions for executing a precise task such as gathering the real‐time information from the unuttered environment to be interpretated by users. Nevertheless, the open‐access insecure communications in hostile environment, the issues like safety and confidentiality threats, various security concerns such as the leakage of flying courses, identities, position, and gathered data by the drones are upstretched. To address these security concerns, access control mechanism provides a potential service in terms of authentication and key agreement for securing the communication between the individual drones within their respective flying regions. This article introduces a robust, efficient, lightweight, and privacy preserving ECC integrated access control approach by employing digital certificate with considering the high dynamicity and mobility of the drones. The designing of this proposed approach, that is, CLAASC‐IoD is influenced by the aim of inter‐drone and drone‐to‐ground station communication in the IoD paradigm. The detailed analysis of security using probabilistic random oracle model as well as simulation using well‐accepted security verification tool AVISPA and comparative performance evaluation supports the claim of robustness, effectiveness, and proficiency. [ABSTRACT FROM AUTHOR]

Published

2024

5. GSFedSec: Group Signature-Based Secure Aggregation for Privacy Preservation in Federated Learning.

Author

Kanchan, Sneha, Jang, Jae Won, Yoon, Jun Yong, and Choi, Bong Jun

Subjects

DATA privacy, FEDERATED learning, INTERNET protocols, INTERNET security, MACHINE learning

Abstract

Privacy must be preserved when working with client data in machine learning. Federated learning (FL) provides a way to preserve user data privacy by aggregating locally trained models without sharing the user data. Still, the privacy of user identity is not preserved. Secure aggregation is a popular technique in FL for aggregating gradients without disclosing individual data. However, it is costly and inaccurate. Therefore, we propose a novel, scalable, cost-effective group signature-based secure aggregation algorithm in FL, called GSFedSec, where secure aggregation helps conceal the user's update while the group signature helps conceal their identity. Our algorithm preserves the data and their source. Our simulation results show that the proposed algorithm does not suffer from a loss of accuracy, handles increases in network size competently, offers computational and communication efficiency, and is secure against various security attacks. We have compared the results of efficiency and security against existing algorithms in FL. Also, the security of the algorithm is verified using Burrows–Abadi–Needham (BAN) logic and simulated via the Automated Validation of Internet Security Protocols and Applications (AVISPA) protocol. [ABSTRACT FROM AUTHOR]

Published

2024

6. RELAKA: Robust ECC based Privacy Preserving Lightweight Authenticated Key Agreement protocol for healthcare applications

Author

R. Kousalya and G.A. Sathish Kumar

Subjects

Internet of Medical Things (IoMT), Elliptic Curve Cryptography (ECC), Authentication, Key Agreement, Denial of Services (DoS), AVISPA, Engineering (General). Civil engineering (General), TA1-2040

Abstract

With the advancement of cutting-edge technologies, the Internet of Medical Things (IoMT) has assisted the healthcare sector by facilitating interaction between healthcare service providers and patients in remote areas. In IoMT, wearable or implantable sensors collect the patient’s record and share the information through a public network. Health-related information about the patient must be protected from a variety of attacks by the adversary since it is sensitive and extremely vulnerable to attacks. The sensor equipment that is implanted in the patient is also resource-constrained and has a low power capacity. The entities involved in the communication must be authenticated with one another in order to protect patients’ health information, anonymity, and reliability. While several authenticated key agreement protocols have been proposed, many suffer from high computational costs and storage cost, making them unsuitable for lightweight applications. This paper proposes a secure three-factor robust Elliptic Curve Cryptography (ECC) based mutually authenticated and key agreement protocol known as RELAKA for the IoMT environment, utilizing the benefits of one-way hash function. In proposed scheme, all entities, including the healthcare service providers and wearable sensors, are authenticated by the medical server. Subsequently, a secret key is established for each communication session and shared between all the entities. Additionally, mechanism for appropriate user revocation and re-registration is integrated to provide additional security in cases where a user’s QR code is tampered with by the attacker. The privacy of the proposed protocol is investigated by the potential use of zero knowledge proof. Furthermore, the efficacy of the authentication is examined by challenge and response mechanism. The informal security analysis demonstrates its resistance to threats such as DoS, impersonation, message modification, password guessing, and so on. The performance evaluation of RELAKA protocol indicates that the execution, communication, and storage costs is reduced by 87.59%, 43% and 60.71% respectively. Moreover, the outcomes of the AVISPA simulation illustrate that the RELAKA successfully evades both active and passive attacks. In addition, real-world testbed environment is developed with Raspberry pi 4 model B and the experimental results verifies the robustness of the proposed protocol. According to theoretical analysis and experimental evaluation, the RELAKA scheme is more secure and efficient than the existing protocols.

Published

2024

7. ECC based certificateless aggregate signature scheme for healthcare wireless sensor networks

Author

Negi, Lalit and Kumar, Devender

Published

2024

8. A signcryption with identity-based authentication for secure EHR sharing in IoMT utilizing ECC

Author

Patil, Rachana Y., Karati, Arijit, and Patil, Yogesh H.

Published

2024

9. Elliptic Curve Cryptography-Based Identity Authentication Scheme Suitable for Metaverse Environment.

Author

Zhai, Haonan, Deng, Miaolei, and Wu, Huanmei

Subjects

*SHARED virtual environments, *INTERNET protocols, *VIRTUAL reality, *INTERNET security, *ELLIPTIC curves

Abstract

Compared to traditional platform environments in the online realm, the metaverse, as a three-dimensional (3D) virtual world, exposes more identity data to the network. Once these data are compromised, it leads to privacy breaches. Therefore, how to ensure identity security in the metaverse environment has become an urgent problem to be solved. Although research on identity authentication schemes can help improve identity security, traditional identity authentication schemes in network environments are studied based on their own environmental characteristics, which makes it difficult to meet the security needs in the metaverse environment. As a result, in this paper we propose an elliptic curve cryptography (ECC)-based identity authentication scheme to address identity authentication issues in the metaverse environment. This scheme ensures secure communication among users, avatars, and platform servers. The security of this scheme was demonstrated through informal security analysis and the automated validation of internet security protocols and applications (AVISPA) formal security analysis tools, and the results showed that it can resist various known attacks. Compared with existing identity authentication schemes, this scheme has lower computational and communication costs. [ABSTRACT FROM AUTHOR]

Published

2024

10. "A lightweight authentication scheme for 6LoWPAN-based Internet-of -things".

Author

Thungon, Leki Chom, Sahana, Subhas Chandra, and Hussain, Iftekhar

Subjects

*PUBLIC key cryptography, *INTERNET protocol version 6

Abstract

IPv6-based IoT networks, i.e. 6LoWPAN network, require authentication for security. The existing authentication schemes on symmetric-key based approaches for 6LoWPAN consume huge computational and processing overhead in the literature. In a large network, pre-deployment of the key leads to huge memory consumption due to storing many keys. Furthermore, in asymmetric key cryptography, operations with the public key are computationally expensive, which is unsuitable for resource-constrained devices. We proposed a lightweight key exchange and authentication scheme for 6LoWPAN to mutually authenticate the sensor nodes, the gateway, and the server with less computational overhead and without compromising any security credentials. The authentication scheme helps to generate a session key without storing any secrets in the 6LoWPAN devices. We utilized a one-way hash function and XOR operation to reduce overhead in multi-hop communication. The AVISPA verification tool and the formal verification show that the proposed method is resistant to well-known attacks. The proposed scheme outperforms relevant methods in computational overhead, communication cost, and computation time. [ABSTRACT FROM AUTHOR]

Published

2024

11. An optimal secure and reliable certificateless proxy signature for industrial internet of things.

Author

Ullah, Rafiq, Mehmood, Amjad, Khan, Muhammad Altaf, Maple, Carsten, and Lloret, Jaime

Subjects

INTERNET of things, ELLIPTIC curves, PROCESS capability, PUBLIC key cryptography, SMART devices, FORGERY

Abstract

Certificateless Proxy Signature (CLPS) offers a comprehensive authentication mechanism to ensure the optimal solutions from modern forgery attacks in Industrial Internet of Things (IIoTs) environment. CLPS is part of certificateless public key cryptography (CL-PKC) and has the benefits of eradicating many issues like key distribution problem. Although costly computational processing capabilities are consumed by smart devices during authentication process. This article proposed an authentication scheme for CLPS by using the mathematical cryptographic curve concepts of Hyper Elliptic Curve (HEC) to provide a secure and optimized communication approach in IIoTs environment. The arises key distribution problem in CLPS is also fixed. The scrutinized security analysis of proxy signature and delegation signature were performed to tackle different attacks like Machine-in-the-middle Attack (MiTM), Replay Attack, Key Replacement Attack, Impersonation Attack, and Chosen Message Attack. Due to HEC-DLP the forgery attack cannot succeeded. Finally, the proposed work is formally verified through the AVISPA tool. The comprehensive performance evaluation shows that the total computational cost is reduced to 49.48% and the communication overhead size is reduced to 49.57% with a comparative analysis of existing schemes. Thus, the proposed approach eradicates key distribution problems with an equal security level of RSA and ECC. [ABSTRACT FROM AUTHOR]

Published

2024

12. A Hybrid Logistic Scroll Chaotic Encryption Algorithm for Ensuring the Cloud Security to Counerfeiting the Attacks.

Author

Swetha, Madireddy and Kathirvelu, Kalaivani

Subjects

CLOUD computing, DATA protection, COMPUTER hacking, FORGERY, ALGORITHMS

Abstract

Cloud computing is meant for storing the huge data using third party that ensures that confidential data cannot be accessed by the other users. But with rapid growth of technologies, data in the cloud normally increases which questions its security in storing in the cloud. Hence the protecting the cloud data seeks the strong security levels to counterfeit the different cloud attack. In order to achieve the highest level of security for cloud data, this study suggests a powerful encryption technique that combines chaotic scrolls and logistic maps. The proposed model exhibits the following advantages over the other algorithms: 1) High dynamic key generation 2) ability to counterfeit the multiple attacks 3) High randomness encrypted data which can provide more confusion of hacking from the intruder’s insight. To prove the strength of the proposed model, NIST National Institute of Science and Technology (NIST) is used for significant experiments. in which different statistical tests were carried out to prove the strength of the proposed model. The level of security of the suggested model is also evaluated and investigated using formal analysis using Burrows-Abadi-Needham Logic (BAN). The given model is thoroughly verified using both the Profverif tool and AVISPA. In terms of communication costs and unpredictability, the suggested model's randomness has also been contrasted with that of another existing algorithm. Results demonstrates that the proposed model shows its ability to provide more potent protection to the cloud data than the other existing encryption algorithms. [ABSTRACT FROM AUTHOR]

Published

2024

13. Cost-Effective Signcryption for Securing IoT: A Novel Signcryption Algorithm Based on Hyperelliptic Curves.

Author

Khan, Junaid, Zhu, Congxu, Ali, Wajid, Asim, Muhammad, and Ahmad, Sadique

Subjects

*DENIAL of service attacks, *ALGORITHMS, *INTERNET of things, *DATA security, *ELLIPTIC curves, *PUBLIC key cryptography, *SHALLOW-water equations

Abstract

Security and efficiency remain a serious concern for Internet of Things (IoT) environments due to the resource-constrained nature and wireless communication. Traditional schemes are based on the main mathematical operations, including pairing, pairing-based scalar multiplication, bilinear pairing, exponential operations, elliptic curve scalar multiplication, and point multiplication operations. These traditional operands are cost-intensive and require high computing power and bandwidth overload, thus affecting efficiency. Due to the cost-intensive nature and high resource requirements, traditional approaches are not feasible and are unsuitable for resource-limited IoT devices. Furthermore, the lack of essential security attributes in traditional schemes, such as unforgeability, public verifiability, non-repudiation, forward secrecy, and resistance to denial-of-service attacks, puts data security at high risk. To overcome these challenges, we have introduced a novel signcryption algorithm based on hyperelliptic curve divisor multiplication, which is much faster than other traditional mathematical operations. Hence, the proposed methodology is based on a hyperelliptic curve, due to which it has enhanced security with smaller key sizes that reduce computational complexity by 38.16% and communication complexity by 62.5%, providing a well-balanced solution by utilizing few resources while meeting the security and efficiency requirements of resource-constrained devices. The proposed strategy also involves formal security validation, which provides confidence for the proposed methodology in practical implementations. [ABSTRACT FROM AUTHOR]

Published

2024

14. Blockchain-Based Secure Mutual Authentication Scheme for Drone-GSS Communication in Internet of Drones Environment

Author

Gupta, Anvita, Jain, Ayushi, Garg, Mehak, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Roy, Nihar Ranjan, editor, Tanwar, Sudeep, editor, and Batra, Usha, editor

Published

2024

15. Proxy signature-based role delegation scheme: formal analysis and simulation

Author

Bannore, Aparna, Patil, Rachana Y., H.Patil, Yogesh, and Deshpande, Himani

Published

2024

16. Provable and secure Two-Party Authenticated Key Agreement (2PAKA) Protocol for Internet of Health Things

Author

Hussain Dar, Ashaq and Tariq Banday, M.

Published

2024

17. Proactive cyber defense through a comprehensive forensic layer for cybercrime attribution

Author

Patil, Rachana Y., Patil, Yogesh H., Despande, Himani, and Bannore, Aparna

Published

2024

18. Formal validation of authentication scheme in 5G-enabled vehicular networks using AVISPA.

Author

Hamdan, Mays A., Maklouf, Amel Meddeb, and Mnif, Hassene

Subjects

VEHICULAR ad hoc networks, INTELLIGENT transportation systems, TRAVEL time (Traffic engineering), TRAFFIC accidents, INTERNET protocols, INTERNET security, TRAFFIC safety

Abstract

Smart transportation may come from 5G-enabled cars. Traffic reports include congestion, roads, and driving. Urbanisation and population growth increase traffic accidents and travel time. Traffic accidents kill and injure most people worldwide. Intelligent transportation systems (ITS) improves driver and pedestrian safety. This study connects the VANET to 5G to create a 5Genabled vehicle network because the road-side unit (RSU) is expensive and unsecure. This study connects numerous automobiles to TA for 5G-BS D2D communication. Data transmissions between autos are risky. Several scholars suggest authentication techniques for safe vehicle-to-vehicle communications. Overhead may enable side-channel attacks with these tactics. A secure and effective efficient and secure authentication-privacy-preserving (ES-APP) system connected TA, 5G-BS, and on-border unit (OBU) was presented. Initialization, vehicle registration, parameter renewal, message signing, single and batch verification are ES-APP steps. The formal evaluation automated verification of internet security protocols and applications (AVISPA) tool with on-the-fly model-checker (OFMC) and attack searcher (ATSE) back-ends secures the suggested ES-APP technique. ES-APP appears impervious to active and passive AVISPA assaults. [ABSTRACT FROM AUTHOR]

Published

2024

19. 3S-ALDDT: A Triple Security Scheme for Authenticating Lightweight Devices and Securing Data Transmission in Internet of Things.

Author

Cherbal, Sarra

Subjects

INTERNET of things, DATA transmission systems, DATA privacy, INTERNET protocols, SMART cards, INTERNET security, ELLIPTIC curve cryptography

Abstract

The Internet of Things (IoT) connect and link objects and people for creating, processing and sharing countless information. The use of IoT is widely spread in important life fields like smart farming, by collecting and transferring data from agricultural environment to cloud servers and farming experts. Ensure the security of the data transferred is always an important issue. Hence, many researchers have proposed secure schemes in IoT systems. However, these schemes still present some flaws and they are vulnerable against some known attacks as impersonation, man in the middle, session key disclosure, password guessing and stolen smart card. Besides, they are not all adaptable to lightweight devices. Therefore, the purpose of this present work is to ensure user's privacy and data confidentiality by authenticating all legitimate network members and securing their communications. Accordingly, we propose three schemes of authentication and key management taking into consideration not only the security requirements but also the resource limit of network devices. A formal security verification of the three schemes is performed using Burrows-Abadi-Needham (BAN) logic, Automated Validation of Internet Security Protocols and Applications (AVISPA) and Scyther verification tool. The results show that each scheme ensures mutual authentication and session key secrecy. They are secure against some known attacks as man in the middle, replay and impersonation. Besides, the performance analysis comparison show the lightness of the proposed schemes regarding recent related schemes and hence they are adaptable to different IoT devices. [ABSTRACT FROM AUTHOR]

Published

2024

20. An efficient lightweight authentication scheme for dew‐assisted IoT networks.

Author

Verma, Upendra and Sohani, Mayank

Subjects

*ELLIPTIC curve cryptography, *DENIAL of service attacks, *INTERNET protocols, *INTERNET of things, *INTERNET security

Abstract

Summary: The dew computing is currently considered as one of the promising technology, due to its ability to give data access in the absence of internet. However, dew computing also brings new challenges, particularly security and privacy issues. In dew computing paradigm, authentication and key agreement pose substantial challenges that must be taken into account. In this context, the present work is to provide a secure authentication scheme for Internet of Things and dew server based on elliptic curve cryptography. Moreover, the performance evaluation of proposed scheme has been assessed in terms of communication and computation cost, which shows the proposed scheme outperforms than existing related schemes. The proposed scheme has also been compared with the related schemes in terms of various security features such as location privacy, anonymity, forward secrecy, mutual authentication, key agreement, forgery attack, replay attack, denial of service attack and replay attack. Furthermore, the formal security evaluation has been verified by automated validation internet security protocols and applications (AVISPA) under on‐the‐fly model‐checker (OFMC) and constraint logic based attack searcher (CL‐AtSE) backends. The OFMC backend analyzed 228 visited nodes with four plies using search time of 0.24 s. The CL‐AtSE analyzed three states with translation time of 0.12 s. The OFMC and CL‐AtSE backends have not identified any attack trace. Therefore, the simulation results demonstrate that the proposed scheme is safe against the security threats. [ABSTRACT FROM AUTHOR]

Published

2024

21. An Efficient and Secure Authentication Scheme with Session Key Negotiation for Timely Application of WSNs.

Author

Jiping Li, Yuanyuan Zhang, Lixiang Shen, Jing Cao, Wenwu Xie, Yi Zheng, and Shouyin Liu

Subjects

NEGOTIATION, WIRELESS sensor networks, INTERNET of things

Abstract

For Internet of Things, it is more preferred to have immediate access to environment information from sensor nodes (SNs) rather than from gateway nodes (GWNs). To fulfill the goal, mutual authentication scheme between user and SNs with session key (SK) negotiation is more suitable. However, this is a challenging task due to the constrained power, computation, communication and storage resources of SNs. Though lots of authentication schemes with SK negotiation have been designed to deal with it, they are still insufficiently secure and/or efficient, and some even have serious vulnerabilities. Therefore, we design an efficient secure authentication scheme with session key negotiation (eSAS2KN) for wireless sensor networks (WSNs) utilizing fuzzy extractor technique, hash function and bitwise exclusive-or lightweight operations. In the eSAS2KN, user and SNs are mutually authenticated with anonymity, and an SK is negotiated for their direct and instant communications subsequently. To prove the security of eSAS2KN, we give detailed informal security analysis, carry out logical verification by applying BAN logic, present formal security proof by employing Real-Or-Random (ROR) model, and implement formal security verification by using AVISPA tool. Finally, computation and communication costs comparison show the eSAS2kN is more efficient and secure for practical application. [ABSTRACT FROM AUTHOR]

Published

2024

22. RCBE-AS: Rabin cryptosystem–based efficient authentication scheme for wireless sensor networks.

Author

Singh, Deepti, Kumar, Bijendra, Singh, Samayveer, Chand, Satish, and Singh, Pradeep Kumar

Abstract

Wireless sensor networks (WSNs) are applicable in numerous fields ranging from very common to those demanding critical security concerns. It is recommended to provide external users a direct access to the data from sensors as per their need for real-time applications. To avoid unauthorized access, user authentication is essential for accessing the services between the nodes. Recently, Tai et al. designed an authentication scheme providing user anonymity, though it is found that Tai et al. are susceptible to attacks like offline password guessing, privileged insider, and known session-specific temporary information. Furthermore, it does not provide user anonymity and the secret key of gateway node is insecure. To address these security concerns, "Rabin cryptosystem"–based authentication scheme is proposed. It considers three factors for authentication, namely key generation, encryption, and decryption. During key generation, it takes two prime numbers as private and public key is computed as product of private keys. For encryption steps, only public key is used. The Blum-Blum-Shub pseudo-random bit generator algorithm and private key are used in the decryption process. The proposed scheme provides better security features because of its strong integer factorization which also increases the efficiency of the encryption and decryption process. It is apparent from security analysis of the RCBE-AS that it is free from attacks. This scheme is also simulated formally with AVISPA that shows that it is safe against cryptographic attacks. The proposed scheme also has less communication cost as compared to other related schemes. This scheme uses a random oracle model and automated tool, AVISPA, for formal security analysis to prove its efficacy. Furthermore, it provides mutual authentication using BAN logic. [ABSTRACT FROM AUTHOR]

Published

2024

23. SEPCVN: Secure and Efficient Protocol for Cloud Vehicular Networking

Author

Vinod Kumar, Seema, Kamal Kumar, Ramakant Prasad, Khalid Almutib, and M. Shamim Hossain

Subjects

Cloud vehicular networking, authentication, security, encryption, AVISPA, random oracle model, Electrical engineering. Electronics. Nuclear engineering, TK1-9971

Abstract

Cloud vehicular networking is a relatively new inter-vehicle communication paradigm. The ability of cloud vehicular networking to address critical safety issues in road traffic is highly rated by operators. This study examines cloud vehicular networking technology, its advantages, problems, and possible remedies. It focuses on overcoming control system issues while placing a stronger emphasis on security. Integrating vehicles into the cloud ecosystem presents numerous security and efficiency challenges. This study thoroughly examines the current protocols and suggests a brand-new, Secure, and Efficient Protocol for Cloud Vehicular Networking (SEPCVN). The proposed protocol aims to improve data transmission efficiency and address security flaws in cloud-connected vehicle networks. We discuss a specialized authentication method for secure vehicle-to-vehicle communication to tackle many challenges. According to the security study, formally and informally, our suggested protocol satisfies the necessary security requirements. Using the Automated Validation of Internet Security Protocols and Applications (AVISPA) tool, a simulation analysis was carried out on the proposed protocol, which is safe from man-in-the-middle and reply attacks. Compared to similar protocols, the proposed framework is computationally and communicably effective. The results indicate that the suggested plan for cloud vehicular networking is both effective and safe.

Published

2024

24. A new species of Dolichurus Latreille (Hymenoptera, Apoidea, Ampulicidae) from Brazil

Author

R. G. Ferreira and V. M. Lopez

Subjects

Neotropical, Cucaracha, Avispa, Ectobiidae, Parasitoide, Zoology, QL1-991

Abstract

Una nueva especie de Dolichurus Latreille (Hymenoptera, Apoidea, Ampilicidae) en el Brasil La descripción de Dolichurus sensei Ferreira y Lopez sp. nov. se basa en un único espécimen hembra recolectado en un fragmento de sabana neotropical de São Carlos, en São Paulo (Brasil). Se incluyen imágenes del holotipo y se ofrecen comentarios adicionales sobre la coloración.

Published

2024

25. SOS-FCI: a secure offloading scheme in fog–cloud-based IoT.

Author

Salami, Yashar, Khajehvand, Vahid, and Zeinali, Esmaeil

Subjects

*END-to-end delay, *INTERNET of things, *INTERNET protocols, *INTERNET security, *FOG, *PROBLEM solving

Abstract

The Internet of Things (IoT) is growing and has significantly impacted today's life. Although the IoT plays an essential role in human life, it has processing limitations, and this has caused it to not perform well in the face of extensive processing. To solve this limitation in the IoT, the offloading technique is used. Due to the nature of wireless networks, which are constantly at risk of active and passive attacks, a third party can attack an IoT device when it wants to send a process to another device for offloading. We use SOS-FCI, a secure mutual authentication scheme for secure offloading using elliptic-curve cryptography, to solve this problem. The SOS-FCI scheme has been formally evaluated through the Automated Validation of Internet Security Protocols and Applications tool and informally. Formal and informal security evaluation results show that the SOS-FCI scheme resists active and passive attacks. The SOS-FCI scheme has been assessed regarding computational and communication costs and security features with a similar scheme. The results show that the security features of the SOS-FCI scheme are superior to a similar scheme, and it has a high-cost ratio in terms of computational and communication costs. We simulated the SOS-FCI scheme with the NS3 tool. The simulation results in different modes show that packet loss, packet delivery, throughput, and end-to-end delay increase as the number of devices increases. [ABSTRACT FROM AUTHOR]

Published

2024

26. Toward design a secure protocol for updating remotely stored credentials of a crypto‐biometric framework for multi‐server environment.

Author

Barman, Subhas, Chattopadhyay, Samiran, and Samanta, Debasis

Subjects

*BIOMETRIC identification, *INTERNET protocols, *INTERNET security, *TELECOMMUNICATION systems, *DATA security

Abstract

Integration of biometric data with cryptography is gaining importance to develop a secure distributed communication system. The main issue with this strategy is updating a biometric template and other credentials (like a cryptographic key) and sharing the same in a secure manner. This paper proposes a novel approach to protect a credential under the security of biometric data using fuzzy commitment so that it can be securely stored on a remote server. Furthermore, a protocol has been proposed to update the cryptographic key and biometric data online and share the same among communicating parties through a network channel. A rigorous security analysis of the scheme establishes the robustness of the scheme against many known attacks. In addition to this, to substantiate that the protocol is provably secure, it has been critically verified with two protocol verification tools, namely, the RO (Random Oracle) Model and the AVISPA (automated validation of Internet Security Protocols and Applications) tool. The proposed protocol is useful to design a multiparty system having a multi‐user and multi‐server environment. [ABSTRACT FROM AUTHOR]

Published

2024

27. Authentication Healthcare Scheme in WBAN.

Author

Rashid, Abdullah Mohammed, Yassin, Ali A., Aldarwish, Abdulla J. Y., Yaseen, Aqeel A., Alasadi, Hamid, Asaad, Ammar, and Mohammed, Alzahraa J.

Subjects

*BODY area networks, *INTERNET protocols, *INTERNET security, *DATA privacy, *MEDICAL care, *SMARTWATCHES, *COMPUTER passwords

Abstract

A wireless body area network (WBAN) connects separate sensors in many places of the human body, such as clothes, under the skin. WBAN can be used in many domains such as health care, sports, and control system. In this paper, a scheme focused on managing a patient’s health care is presented based on building a WBAN that consists of three components, biometric sensors, mobile applications related to the patient, and a remote server. An excellent scheme is proposed for the patient’s device, such as a mobile phone or a smartwatch, which can classify the signal coming from a biometric sensor into two types, normal and abnormal. In an abnormal signal, the device can carry out appropriate activities for the patient without requiring a doctor as a first case. The patient does not respond to the warning message in a critical case sometimes, and the personal device sends an alert to the patient’s family, including his/her location. The proposed scheme can preserve the privacy of the sensitive data of the patient in a protected way and can support several security features such as mutual authentication, key management, anonymous password, and resistance to malicious attacks. These features have been proven depending on the Automated Validation of Internet Security Protocols and Applications. Moreover, the computation and communication costs are efficient compared with other related schemes. [ABSTRACT FROM AUTHOR]

Published

2023

28. E3C: a tool for evaluating communication and computation costs in authentication and key exchange protocol

Author

Salami, Yashar, Khajehvand, Vahid, and Zeinali, Esmaeil

Published

2024

29. VSMAS2HN: Verifiably Secure Mutual Authentication Scheme for Smart Healthcare Network

Author

Batra, Shivangi, Narwal, Bhawna, Mohapatra, Amar Kumar, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Prates, Raquel Oliveira, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Singh, Mayank, editor, Tyagi, Vipin, editor, Gupta, P.K., editor, Flusser, Jan, editor, and Ören, Tuncer, editor

Published

2023

30. A Secure Privacy Preserving Authentication Schema for Remote Server Using Biometric

Author

Sahoo, Shreeya Swagatika, Mohanty, Sujata, Das, Dibyasundar, Filipe, Joaquim, Editorial Board Member, Ghosh, Ashish, Editorial Board Member, Prates, Raquel Oliveira, Editorial Board Member, Zhou, Lizhu, Editorial Board Member, Hong, Wenxing, editor, and Weng, Yang, editor

Published

2023

31. Performance Analysis of User Authentication Schemes in Wireless Sensor Networks

Author

Kumar, Ravi, Singh, Samayveer, Angrisani, Leopoldo, Series Editor, Arteaga, Marco, Series Editor, Panigrahi, Bijaya Ketan, Series Editor, Chakraborty, Samarjit, Series Editor, Chen, Jiming, Series Editor, Chen, Shanben, Series Editor, Chen, Tan Kay, Series Editor, Dillmann, Rüdiger, Series Editor, Duan, Haibin, Series Editor, Ferrari, Gianluigi, Series Editor, Ferre, Manuel, Series Editor, Hirche, Sandra, Series Editor, Jabbari, Faryar, Series Editor, Jia, Limin, Series Editor, Kacprzyk, Janusz, Series Editor, Khamis, Alaa, Series Editor, Kroeger, Torsten, Series Editor, Li, Yong, Series Editor, Liang, Qilian, Series Editor, Martín, Ferran, Series Editor, Ming, Tan Cher, Series Editor, Minker, Wolfgang, Series Editor, Misra, Pradeep, Series Editor, Möller, Sebastian, Series Editor, Mukhopadhyay, Subhas, Series Editor, Ning, Cun-Zheng, Series Editor, Nishida, Toyoaki, Series Editor, Oneto, Luca, Series Editor, Pascucci, Federica, Series Editor, Qin, Yong, Series Editor, Seng, Gan Woon, Series Editor, Speidel, Joachim, Series Editor, Veiga, Germano, Series Editor, Wu, Haitao, Series Editor, Zamboni, Walter, Series Editor, Zhang, Junjie James, Series Editor, Singh, Yashwant, editor, Singh, Pradeep Kumar, editor, Kolekar, Maheshkumar H., editor, Kar, Arpan Kumar, editor, and Gonçalves, Paulo J. Sequeira, editor

Published

2023

32. SASH: Secure Authentication Scheme for Smart Home Environments

Author

Narwal, Bhawna, Dahiya, Vidisha, Bansal, Vidhi, Aggarwal, Priya, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Ranganathan, G., editor, Fernando, Xavier, editor, and Rocha, Álvaro, editor

Published

2023

33. PUASIoT: Password-Based User Authentication Scheme for IoT Services

Author

Narwal, Bhawna, Gandhi, Khushi, Anand, Revika, Ghalyan, Riya, Kacprzyk, Janusz, Series Editor, Gomide, Fernando, Advisory Editor, Kaynak, Okyay, Advisory Editor, Liu, Derong, Advisory Editor, Pedrycz, Witold, Advisory Editor, Polycarpou, Marios M., Advisory Editor, Rudas, Imre J., Advisory Editor, Wang, Jun, Advisory Editor, Pati, Bibudhendu, editor, Panigrahi, Chhabi Rani, editor, Mohapatra, Prasant, editor, and Li, Kuan-Ching, editor

Published

2023

34. An Efficient Key Management and Authentication Protocol for IoT Networks.

Author

Reddy, Alumuru Mahesh and Rao, M. Kameswara

Subjects

COMPUTER network protocols, WIRELESS sensor networks, INTERNET protocols, MULTI-factor authentication, INTERNET security, FEATURE extraction

Abstract

Copyright of Przegląd Elektrotechniczny is the property of Przeglad Elektrotechniczny and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)

Published

2023

35. A Lightweight authentication approach based on linear feedback shift register and majority function for internet of things.

Author

Ebrahimpour, Elham and Babaie, Shahram

Subjects

SHIFT registers, INTERNET of things, INTERNET protocols, TELECOMMUNICATION, INTERNET security

Abstract

Internet of Things (IoT) is a ubiquitous network of connected physical objects with unique identity (ID), which can be controlled through a variety of communication technologies. In this paper, a robust and lightweight three-factor authentication approach based on Linear Feedback Shift Register (LFSR) is proposed for the Internet of things. Moreover, the majority function is utilized to eliminate the linear structure of LFSRs and increase the security of end-to-end devices. The informal security analysis reveals that the proposed approach by providing anonymity property and forward secrecy can resist replay, impersonation, eavesdropping, and man-in-the-middle attacks. In addition, the formal security of the proposed approach has been evaluated through Real-Or-Random (ROR) model, and comprehensive simulations have been performed by the Automated Validation of Internet Security Protocols and Applications (AVISPA) tool to validate its safety. Furthermore, analysis of communication cost and computational cost indicates that the overhead of the proposed approach is negligible. [ABSTRACT FROM AUTHOR]

Published

2023

36. Provably secure signature‐based anonymous user authentication protocol in an Internet of Things‐enabled intelligent precision agricultural environment.

Author

Vangala, Anusha, Das, Ashok Kumar, and Lee, Jong‐Hyouk

Subjects

INTERNET protocols, AGRICULTURE, SMART devices, INTERNET security, ACCESS to information, INTERNET of things

Abstract

User authentication is a promising security solution in which an external user having his/her mobile device can securely access the real‐time information directly from the deployed smart devices in an Internet of Things‐enabled intelligent precision agricultural environment. To achieve this goal, we present a new signature‐based three factor user authentication scheme. The established session key between a user and the accessed smart device is then used to make secure communication among them to fetch the real‐time data of the device. A detailed security analysis including the random‐oracle based formal security, formal security verification using the broadly recognized automated validation of internet security protocols and applications tool and nonmathematical informal security analysis show the robustness of the proposed scheme against a number of potential attacks. In addition, testbed experiments are performed for measuring computational time of various cryptographic primitives that are used for comparative study among the proposed scheme and other related existing competing schemes. The detailed comparative analysis shows that the proposed scheme has a better trade‐off among its offered security and functionality features, and communication and computational overheads as compared with those for other competing schemes. [ABSTRACT FROM AUTHOR]

Published

2023

37. SLMAS: A Secure and Light Weight Mutual Authentication Scheme for the Smart Wheelchair.

Author

Almazroi, Abdulwahab Ali, Liaqat, Misbah, Ali, Rana Liaqat, and Gani, Abdullah

Subjects

NEAR field communication, WHEELCHAIRS, SMART cities, ASSISTIVE technology, INTERNET of things, EDGE computing, ELECTRIC wheelchairs, WIRELESS channels

Abstract

The modern innovation called the Internet of Things (IoT) empowers individuals to connect to anybody and anything at any point, wherever. The application of the IoT in smart cities concerning smart healthcare management can improve patient welfare, user acceptance, the standard of living, and accurate illness monitoring. Powered wheelchairs (PW) with sensors, computers, and other connected assistive technologies are called smart wheelchairs. Smart wheelchairs with sensing abilities are intended to offer universal connectivity using cloud and edge computing technology. Numerous outstanding people were impacted by paralyzing phenomena, including Stephen Hawking and Max Brito. The issue of legitimacy is one of the most important difficulties in e-health applications, because of how sensitive the technology is, and this needs to be appropriately handled. To safeguard the data transport, usage, and interchange between sensor nodes/smart wheelchairs and servers, e-health applications require an authentication method. As all conversations use wireless channels, e-health apps are exposed to various vulnerabilities. Additionally, the IoT has limited computational and power capacity limitations. To combat the various security risks, the present research offers a user authentication technique that is efficient and ensures anonymity. The suggested method creates a safe connection for the authorized entity and forbids unauthorized entities from accessing the Internet of Things sensor nodes. The suggested approach has lower communication and computation overheads than the traditional techniques, making it more effective. In addition, the security verification of the presented protocol is scrutinized through AVISPA. The proposed scheme, on average, requires only 12.4% more computation cost to execute. Compared to the existing approaches, the suggested protocol's extra computational cost can be compensated for by its enhanced security, while the suggested method's communication cost is 46.3% smaller. [ABSTRACT FROM AUTHOR]

Published

2023

38. MFF-IoT: A Multi-Granularity Formal Framework of User Authentication for IoT.

Author

Fei, Yuan, Yin, Jiaqi, and Yan, Lijun

Subjects

INTERNET of things, WIRELESS channels, HAMMING distance

Abstract

The Internet of Things (IoT) generates vast amounts of data from numerous applications. However, since wireless channels are the primary means of communication, IoT networks are vulnerable to several security threats, which can compromise their security and privacy. To address these issues, various user authentication protocols have been proposed. Thus, it is still a challenge to provide multi-granularity verifications for different authentications of the IoT. In this paper, we propose a multi-granularity formal framework of user authentication for the IoT (MFF-IoT). Our framework builds different formal models (specification language HLPSL models, process algebra CSP models, Timed CSP models, and timed automata) to complete multi-granularity formal verification. By using both coarse-grained and fine-grained modeling, we can balance the tradeoff between model complexity and verification accuracy. Specifically, our fine-grained models provide a more detailed representation of the framework's behavior and enable us to perform timing-related probability analysis. As these formal models can be implemented by model-checking tools (AVISPA, PAT with C#, and UPPAAL), important properties and features can be analyzed and verified. We also propose several algorithms for better formal model building and evaluate our framework with a case study to show its practicality and effectiveness. [ABSTRACT FROM AUTHOR]

Published

2023

39. A Secure Vehicle to Everything (V2X) Communication Model for Intelligent Transportation System

Author

Ouaissa, Mariya, Ouaissa, Mariyam, Houmer, Meriem, El Hamdani, Sara, Boulouard, Zakaria, Chlamtac, Imrich, Series Editor, Ouaissa, Mariya, editor, Boulouard, Zakaria, editor, Ouaissa, Mariyam, editor, and Guermah, Bassma, editor

Published

2022

40. Generalized Multi-server Platform-Based Remote User Authentication

Author

Kesarwani, Rohit, Mohit, Prerna, Angrisani, Leopoldo, Series Editor, Arteaga, Marco, Series Editor, Panigrahi, Bijaya Ketan, Series Editor, Chakraborty, Samarjit, Series Editor, Chen, Jiming, Series Editor, Chen, Shanben, Series Editor, Chen, Tan Kay, Series Editor, Dillmann, Rüdiger, Series Editor, Duan, Haibin, Series Editor, Ferrari, Gianluigi, Series Editor, Ferre, Manuel, Series Editor, Hirche, Sandra, Series Editor, Jabbari, Faryar, Series Editor, Jia, Limin, Series Editor, Kacprzyk, Janusz, Series Editor, Khamis, Alaa, Series Editor, Kroeger, Torsten, Series Editor, Li, Yong, Series Editor, Liang, Qilian, Series Editor, Martín, Ferran, Series Editor, Ming, Tan Cher, Series Editor, Minker, Wolfgang, Series Editor, Misra, Pradeep, Series Editor, Möller, Sebastian, Series Editor, Mukhopadhyay, Subhas, Series Editor, Ning, Cun-Zheng, Series Editor, Nishida, Toyoaki, Series Editor, Pascucci, Federica, Series Editor, Qin, Yong, Series Editor, Seng, Gan Woon, Series Editor, Speidel, Joachim, Series Editor, Veiga, Germano, Series Editor, Wu, Haitao, Series Editor, Zamboni, Walter, Series Editor, Zhang, Junjie James, Series Editor, Sikdar, Biplab, editor, Prasad Maity, Santi, editor, Samanta, Jagannath, editor, and Roy, Avisankar, editor

Published

2022

41. Robust Rabin Cryptosystem Biometric Privacy Preserving Authentication Technique for IoT Enabled Devices Over Cloud

Author

Naidu, Devishree and Ray, Niranjan K.

Published

2024

42. An Improved Authentication Scheme for V2I Communication

Author

Suresh, D., Joshi, Prashant V., Parandkar, Parag, and Sudharshan, K. M.

Published

2024

43. Picadura de insecto en la cornea, a propósito de un caso

Author

Gioconda Lourdes Armas Herrera, Luis F. Arévalo-Arévalo, and Eduardo Arenas Archila

Subjects

picadura de insecto en la cornea, córnea, atrofia, iris, avispa, Medicine

Published

2023

44. Software-driven secure framework for mobile healthcare applications in IoMT.

Author

Krishna, T. Bala Murali, Praveen, S. Phani, Ahmed, Shakeel, and Srinivasu, Parvathaneni Naga

Subjects

MOBILE health, MOBILE apps, ELLIPTIC curve cryptography, INTERNET protocols, INTERNET security, CLOUD computing

Abstract

The traditional healthcare systems require more data storage and not a quick responsive mode. The new era of intelligent healthcare systems uses advanced frameworks and devices to work with Internet of things (IoT), Cloud Computing, edge computing devices, and the Internet of Medical Things (IoMT). These technology adoptions may drastically increase healthcare systems performance and are available anytime and anywhere to replace traditional medical methods – the organizations in the network exchange the patient data that has been gathered. The healthcare systems are therefore susceptible to a variety of threats. The attacker may exploit many attacks during the transmission. This paper introduces a novel mechanism of A Secure Robust Privacy-Preserving Authentication and Key Agreement Framework for Mobile Healthcare Applications. The proposed framework collects the patient's data using wearable devices called sensors, and the collected data is shared with various entities using a secure mechanism. The proposed framework uses Elliptic Curve Cryptography (ECC). Digital sign is created and validated through the Elliptic Curve Digital Signature Algorithm (ECDSA). Security properties of the proposed framework are analyzed through standard model checking tool Automated Validation of Internet Security Protocols (AVISPA). The suggested protocol is simple to develop and can withstand network-related threats. [ABSTRACT FROM AUTHOR]

Published

2023

45. A secure communication using multifactor authentication and key agreement techniques in internet of medical things for COVID‐19 patients.

Author

Chunka, Chukhu, Banerjee, Subhasish, and Sachin Kumar, Gupta

Subjects

COVID-19, MULTI-factor authentication, INTERNET of things, KEY agreement protocols (Computer network protocols), CONFIRMATION (Logic), INDUSTRIAL safety, DEVELOPED countries

Abstract

Currently, Internet of Medical Things (IoMT) gained popularity because of an ongoing pandemic. A few developed countries plan to deploy the IoMT for improving the security and safety of frontline workers to decrease the mortality rates of COVID‐19 patients. However, IoMT devices share the information through an open network which leads to increased vulnerability to various attacks. Hence, electronic health management systems remain many security challenges, like recording sensitive patient data, secure communication, transferring patient information to other doctors, providing the data for future medical diagnosis, collecting data from WBAN, etc. In addition, the sensor devices attached to the human body are resource‐limited and have minimal power capacity. Hence, to protect the medical privacy of patients, confidentiality and reliability of the system, the register sensor, doctor and server need to authenticate each other. Therefore, rather than two factors, in this work, a multifactor authentication protocol has been proposed to provide more secure communication. The presented scheme uses biometric and fuzzy extractors for more security purposes. Furthermore, the scheme is proved using informal and formal security verification BAN logic, ProVerif and AVISPA tools. The ProVerif simulation result of the suggested scheme shows that the proposed protocol achieves session key secrecy and mutual authentication [ABSTRACT FROM AUTHOR]

Published

2023

46. Secure and Lightweight Authentication Protocol for Privacy Preserving Communications in Smart City Applications.

Author

Gupta, Sunil, Alharbi, Fares, Alshahrani, Reem, Kumar Arya, Pradeep, Vyas, Sonali, Elkamchouchi, Dalia H., and Soufiene, Ben Othman

Abstract

A smart city is a concept that leverages technology to improve the quality of life for citizens, enhance sustainability, and streamline urban services. The goal of a smart city is to use data and technology to manage resources and assets efficiently, make informed decisions, and create a more livable and thriving city for its residents. Smart cities rely on a range of technologies including the Internet of Things (IoT), Artificial Intelligence (AI), big data analytics, and cloud computing to gather, process, and analyze data from various sources. The aim is to create a city that is more connected, responsive, and sustainable, and that provides its residents with a better quality of life, opportunities, and services. A secure and efficient message communication protocol for sensitive information and real-time communication is critical for the functioning of a smart city environment. The main findings of this paper are to develop a new authentication protocol that meets the specific requirements and constraints of smart city applications. The message communication between smart cities is conducted with the help of a gateway. The challenge in constructing a working, viable infrastructure for a smart city is to provide secure authentication for message communication between the user and gateway node in one network, and the gateway node of one network to the gateway node of the other network. The objective for doing research to develop an authentication protocol that ensures the privacy and security of data transmitted in smart city applications while maintaining a lightweight and efficient design. This paper proposes a secure authentication protocol and key establishment scheme for access to the application in smart cities to make feasible access through the IoT environment. The proposed protocol ensures the mutual authentication between user and gateways, and the security analysis shows that the proposed protocol is effective against energy consumption and have less computational cost. The performance of the proposed method is analyzed and tested using BAN Logic and AVISPA security verification to confirm the authenticity of the security protocol. We do compare with past studies of which our proposed method outperformed. [ABSTRACT FROM AUTHOR]

Published

2023

47. A Secure and Anonymous Authentication Protocol Based on Three-Factor Wireless Medical Sensor Networks.

Author

Lee, JoonYoung, Oh, Jihyeon, and Park, Youngho

Subjects

WIRELESS sensor networks, KEY agreement protocols (Computer network protocols), SMART cards, WIRELESS communications

Abstract

Wireless medical sensor networks (WMSNs), a type of wireless sensor network (WSN), have enabled medical professionals to identify patients' health information in real time to identify and diagnose their conditions. However, since wireless communication is performed through an open channel, an attacker can steal or manipulate the transmitted and received information. Because these attacks are directly related to the patients' lives, it is necessary to prevent these attacks upfront by providing the security of WMSN communication. Although authentication protocols are continuously developed to establish the security of WMSN communication, they are still vulnerable to attacks. Recently, Yuanbing et al. proposed a secure authentication scheme for WMSN. They emphasized that their protocol is able to resist various attacks and can ensure mutual authentication. Unfortunately, this paper demonstrates that Yuanbing et al.'s protocol is vulnerable to smart card stolen attacks, ID/password guessing attacks, and sensor node capture attacks. In order to overcome the weaknesses and effectiveness of existing studies and to ensure secure communication and user anonymity of WMSN, we propose a secure and anonymous authentication protocol. The proposed protocol can prevent sensor capture, guessing, and man-in-the-middle attacks. To demonstrate the security of the proposed protocol, we perform various formal and informal analyses using AVISPA tools, ROR models, and BAN logic. Additionally, we compare the security aspects with related protocols to prove that the proposed protocol has excellent security. We also prove the effectiveness of our proposed protocol compared with related protocols in computation and communication costs. Our protocol has low or comparable computation and communication costs compared to related protocols. Thus, our protocol can provide services in the WMSN environment. [ABSTRACT FROM AUTHOR]

Published

2023

48. Performance analysis of 5GMAKA: lightweight mutual authentication and key agreement scheme for 5G network.

Author

Palit, Sudip Kumar, Chakraborty, Mohuya, and Chakraborty, Subhalaxmi

Subjects

*5G networks, *KEY agreement protocols (Computer network protocols), *INTERNET security, *INTERNET protocols, *COMPUTER network security, *PUBLIC key cryptography

Abstract

In this paper, we have proposed a lightweight mutual authentication and key agreement scheme for 5G (5GMAKA) using the symmetric-key cryptographic framework. The proposed 5GMAKA protocol has been implemented to overcome the problem associated with the 5G authentication and key agreement (5G AKA) protocol suggested by the 3rd generation partnership project (3GPP). 5G AKA is exposed to various sorts of fatal network security attacks and takes excessive time to execute ( ∼ 685.62 milliseconds ) compared to other related authentication and key agreement schemes as per the literature survey. The stability and robustness of the proposed 5GMAKA under safety issues are ensured by the results obtained from the security analysis of the scheme using the well-known rubin logic and automatic validation of internet security protocol applications (AVISPA) simulation tool. The performance analysis of the proposed 5GMAKA shows that this scheme is superior compared to 5G AKA of 3GPP and other standard protocols with respect to enhanced security features, five communication rounds, and shorter execution time ( ∼ 0.72 milliseconds ) which is the lowest among all other related schemes. [ABSTRACT FROM AUTHOR]

Published

2023

49. Machine learning and smart card based two-factor authentication scheme for preserving anonymity in telecare medical information system (TMIS).

Author

Gupta, B. B., Prajapati, Varun, Nedjah, Nadia, Vijayakumar, P., El-Latif, Ahmed A. Abd, and Chang, Xiaojun

Subjects

*SMART cards, *COMPUTERS, *INFORMATION storage & retrieval systems, *MACHINE learning, *MULTI-factor authentication, *ANONYMITY

Abstract

Telecare medical information system (TMIS) is used to connect patients and doctors who are at a different location from each other. The authentication of the user and system is very crucial as the medical data of the user is stored on the server. Many systems have been developed in order to achieve this goal. We show some vulnerabilities of existing systems in this paper. We then propose a secure authentication mechanism to achieve the same goal. Machine learning and the nonce-based system is used for authentication of the entity and to prove the freshness of transmitted messages. Smart card blocking mechanisms have been included in each phase of the proposed system to prevent unauthorized access of data. The proposed system has been evaluated formally with the AVISPA tool. Then the proposed model has also been checked against different attacks and evaluated for different functionalities. We provide relative analysis with some recently proposed models and show our proposed system is relatively more efficient and secure. [ABSTRACT FROM AUTHOR]

Published

2023

50. Provably Secure Mutual Authentication and Key Agreement Scheme Using PUF in Internet of Drones Deployments.

Author

Park, Yohan, Ryu, Daeun, Kwon, Deokkyu, and Park, Youngho

Subjects

*INTERNET protocols, *DRONE warfare, *TRAFFIC monitoring, *INTERNET, *DATA security, *SMART cards

Abstract

Internet of Drones (IoD), designed to coordinate the access of unmanned aerial vehicles (UAVs), is a specific application of the Internet of Things (IoT). Drones are used to control airspace and offer services such as rescue, traffic surveillance, environmental monitoring, delivery and so on. However, IoD continues to suffer from privacy and security issues. Firstly, messages are transmitted over public channels in IoD environments, which compromises data security. Further, sensitive data can also be extracted from stolen mobile devices of remote users. Moreover, drones are susceptible to physical capture and manipulation by adversaries, which are called drone capture attacks. Thus, the development of a secure and lightweight authentication scheme is essential to overcoming these security vulnerabilities, even on resource-constrained drones. In 2021, Akram et al. proposed a secure and lightweight user–drone authentication scheme for drone networks. However, we discovered that Akram et al.'s scheme is susceptible to user and drone impersonation, verification table leakage, and denial of service (DoS) attacks. Furthermore, their scheme cannot provide perfect forward secrecy. To overcome the aforementioned security vulnerabilities, we propose a secure mutual authentication and key agreement scheme between user and drone pairs. The proposed scheme utilizes physical unclonable function (PUF) to give drones uniqueness and resistance against drone stolen attacks. Moreover, the proposed scheme uses a fuzzy extractor to utilize the biometrics of users as secret parameters. We analyze the security of the proposed scheme using informal security analysis, Burrows–Abadi–Needham (BAN) logic, a Real-or-Random (RoR) model, and Automated Verification of Internet Security Protocols and Applications (AVISPA) simulation. We also compared the security features and performance of the proposed scheme and the existing related schemes. Therefore, we demonstrate that the proposed scheme is suitable for IoD environments that can provide users with secure and convenient wireless communications. [ABSTRACT FROM AUTHOR]

Published

2023