Authentication protocols for smart homes

10.32920/ryerson.14652960.v1 ◽

2021 ◽

Author(s):

Maninder Singh Raniyal

Keyword(s):

Smart Home ◽

User Authentication ◽

Mutual Authentication ◽

Smart Homes ◽

Authentication Scheme ◽

Security Requirements ◽

Iot Security ◽

Communication Topology ◽

User Authentication Scheme ◽

Authentication Schemes

One of the IoT's greatest opportunity and application still lies ahead in the form of smart home. In this ubiquitous/automated environment, due to the most likely heterogeneity of objects, communication, topology, security protocols, and the computationally limited na- ture of IoT objects, conventional authentication schemes may not comply with IoT security requirements since they are considered impractical, weak, or outdated. This thesis proposes: (1) The design of a two-factor device-to-device (D2D) Mutual Authentication Scheme for Smart Homes using OTP over Infrared Channel (referred to as D2DA-OTP-IC scheme); (2) The design of two proxy-password protected OTP-based schemes for smart homes, namely, the Password Protected Inter-device OTP-based Authentication scheme over Infrared Chan- nel and the Password Protected Inter-device OTP-based Authentication scheme using public key infrastructure; and (3) The design of a RSA-based two-factor user Authentication scheme for Smart Home using Smart Card.

Download Full-text

A RSA-Biometric Based User Authentication Scheme For Smart-Homes Using Smartphone

10.32920/17122754.v1 ◽

2021 ◽

Author(s):

Amir Mohammadi Bagha

Keyword(s):

User Authentication ◽

Smart Cities ◽

Formal Analysis ◽

Smart Homes ◽

Authentication Scheme ◽

Security Requirements ◽

Computational Time ◽

Automation System ◽

Push Button ◽

User Authentication Scheme

Internet of Things (IoT) is considered as one of the emerging leading technologies that allow the mainstreaming of smart homes and smart cities in the recent years, by creating a communication system for physical objects over the Internet. In a smart home (also called push-button home automation system), devices are not necessarily homogeneous in terms of topology, security protocols, computational power and communication. This nature of the devices causes some incompatibility with conventional authentication methods and the security requirements of IoT standards. This thesis proposes an RSA-Biometric based three-factor User Authentication Scheme for Smart-Homes using Smartphone (called RSA-B-ASH-S scheme). An informal security analysis of the proposed RSA-B-ASH-S scheme is provided, along with its performance evaluation in terms of computational time, storage requirements and communication overload. Furthermore, a formal analysis of the proposed RSA-B-ASH-S scheme using the Burrows-Abadi-Needham (BAN) Logic is described, showing that the proposed scheme achieves the forward secrecy property by utilizing a fresh encryption key for each session and it also satisfies the anonymity of the user by using a one-time token. A proof of concept of the proposed RSA-B-ASH-S scheme is also provided.

Download Full-text

A RSA-Biometric Based User Authentication Scheme For Smart-Homes Using Smartphone

10.32920/17122754 ◽

2021 ◽

Author(s):

Amir Mohammadi Bagha

Keyword(s):

User Authentication ◽

Smart Cities ◽

Formal Analysis ◽

Smart Homes ◽

Authentication Scheme ◽

Security Requirements ◽

Computational Time ◽

Automation System ◽

Push Button ◽

User Authentication Scheme

Internet of Things (IoT) is considered as one of the emerging leading technologies that allow the mainstreaming of smart homes and smart cities in the recent years, by creating a communication system for physical objects over the Internet. In a smart home (also called push-button home automation system), devices are not necessarily homogeneous in terms of topology, security protocols, computational power and communication. This nature of the devices causes some incompatibility with conventional authentication methods and the security requirements of IoT standards. This thesis proposes an RSA-Biometric based three-factor User Authentication Scheme for Smart-Homes using Smartphone (called RSA-B-ASH-S scheme). An informal security analysis of the proposed RSA-B-ASH-S scheme is provided, along with its performance evaluation in terms of computational time, storage requirements and communication overload. Furthermore, a formal analysis of the proposed RSA-B-ASH-S scheme using the Burrows-Abadi-Needham (BAN) Logic is described, showing that the proposed scheme achieves the forward secrecy property by utilizing a fresh encryption key for each session and it also satisfies the anonymity of the user by using a one-time token. A proof of concept of the proposed RSA-B-ASH-S scheme is also provided.

Download Full-text

Security Analysis on “Anonymous Authentication Scheme for Smart Home Environment with Provable Security”

Wireless Communications and Mobile Computing ◽

10.1155/2020/8838363 ◽

2020 ◽

Vol 2020 ◽

pp. 1-4

Author(s):

Meijia Xu ◽

Qiying Dong ◽

Mai Zhou ◽

Chenyu Wang ◽

Yangyang Liu

Keyword(s):

Smart Home ◽

User Authentication ◽

Security Analysis ◽

Authentication Scheme ◽

Dictionary Attack ◽

Anonymous Authentication ◽

Smart Home Environment ◽

User Authentication Scheme ◽

Authentication Schemes ◽

The Internet Of Things

As an important application of the Internet of Things, smart home has greatly facilitated our life. Since the communication channels of smart home are insecure and the transmitted data are usually sensitive, a secure and anonymous user authentication scheme is required. Numerous attempts have been taken to design such authentication schemes. Recently, Shuai et al. (Computer & Security 86(2019):132146) designed an anonymous authentication scheme for smart home using elliptic curve cryptography. They claimed that the proposed scheme is secure against various attacks and provides ideal attributes. However, we show that their scheme cannot resist inside attack and offline dictionary attack and also fails to achieve forward secrecy. Furthermore, we give some suggestions to enhance the security of the scheme. These suggestions also apply to other user authentication schemes with similar flaws.

Download Full-text

DIRECTED USER AUTHENTICATION SCHEME BASED ON DISCRETE LOGARITHM

Journal of Circuits System and Computers ◽

10.1142/s0218126699000244 ◽

1999 ◽

Vol 09 (05n06) ◽

pp. 299-306 ◽

Cited By ~ 2

Author(s):

SHAOHUA TANG ◽

WEIHUA MA

Keyword(s):

User Authentication ◽

Mutual Authentication ◽

Discrete Logarithm ◽

Authentication Scheme ◽

User Authentication Scheme ◽

Authentication Schemes ◽

And Performance

One new concept, "directed" authentication is presented in this letter. By "directed", we mean "of one direction", i.e., only the specified verifier can validate the verifiee's identity, anyone else cannot verify it without the help of this specified verifier. One strong directed authentication scheme based on the discrete logarithm is proposed in this letter, and the security and performance of which are also analyzed. It is shown in this letter that the proposed scheme is secure and the performance is superior to those of the mutual authentication schemes based on ID-based cryptosystems.

Download Full-text

A Robust Two-Factor User Authentication Scheme-Based ECC for Smart Home in IoT

IEEE Systems Journal ◽

10.1109/jsyst.2021.3127438 ◽

2021 ◽

pp. 1-12

Author(s):

Shihong Zou ◽

Qiang Cao ◽

Chenyu Wang ◽

Zifu Huang ◽

Guoai Xu

Keyword(s):

Smart Home ◽

User Authentication ◽

Authentication Scheme ◽

User Authentication Scheme

Download Full-text

Security Enhanced Anonymous Multiserver Authenticated Key Agreement Scheme Using Smart Cards and Biometrics

The Scientific World JOURNAL ◽

10.1155/2014/281305 ◽

2014 ◽

Vol 2014 ◽

pp. 1-15 ◽

Cited By ~ 19

Author(s):

Younsung Choi ◽

Junghyun Nam ◽

Donghoon Lee ◽

Jiye Kim ◽

Jaewook Jung ◽

...

Keyword(s):

Key Agreement ◽

User Authentication ◽

Mutual Authentication ◽

Smart Cards ◽

Security Requirements ◽

Impersonation Attack ◽

Single Server ◽

Authenticated Key Agreement ◽

Session Key ◽

Authentication Schemes

An anonymous user authentication scheme allows a user, who wants to access a remote application server, to achieve mutual authentication and session key establishment with the server in an anonymous manner. To enhance the security of such authentication schemes, recent researches combined user’s biometrics with a password. However, these authentication schemes are designed for single server environment. So when a user wants to access different application servers, the user has to register many times. To solve this problem, Chuang and Chen proposed an anonymous multiserver authenticated key agreement scheme using smart cards together with passwords and biometrics. Chuang and Chen claimed that their scheme not only supports multiple servers but also achieves various security requirements. However, we show that this scheme is vulnerable to a masquerade attack, a smart card attack, a user impersonation attack, and a DoS attack and does not achieve perfect forward secrecy. We also propose a security enhanced anonymous multiserver authenticated key agreement scheme which addresses all the weaknesses identified in Chuang and Chen’s scheme.

Download Full-text

An Efficient and Robust Remote User Authentication Method

10.36227/techrxiv.13588436.v1 ◽

2021 ◽

Author(s):

M Khan

Keyword(s):

User Authentication ◽

Mutual Authentication ◽

Authentication Scheme ◽

Remote Authentication ◽

Remote User Authentication ◽

User Authentication Scheme ◽

Remote System ◽

User Friendly ◽

Remote User ◽

Better Than

<p>Wu-Chieu proposed an enhanced remote user authentication scheme to improve the security of a user-friendly remote user authentication scheme with smart cards. However, we demonstrate that their scheme is vulnerable and susceptible to the attacks and can easily be cryptanalyzed. Their scheme performs only unilateral authentication (only client authentication) and there is no mutual authentication between user and remote system, so their scheme suscepts from the server spoofing attack. Furthermore, their scheme is slower in detecting the wrong input-password, and users cannot change their passwords. This paper proposes an efficient and secure remote authentication scheme to solve the problems found in Wu-Chieu’s scheme. In addition, the computational costs and efficiency of the proposed scheme is better than other related published schemes.</p>

Download Full-text

Biometric-Based Remote Mutual Authentication Scheme for Mobile Device

10.21203/rs.3.rs-454092/v1 ◽

2021 ◽

Author(s):

Sheng-Kai Chen ◽

Jenq-Shiou Leu ◽

Hsieh Wen-Bin ◽

Jui-Tang Wang ◽

Tian Song

Keyword(s):

Smart Card ◽

Mobile Device ◽

Communication Channel ◽

User Authentication ◽

Mutual Authentication ◽

Authentication Scheme ◽

Mobile Payment ◽

Remote Authentication ◽

Authentication Schemes ◽

Remote User

Abstract Remote user authentication schemes provide a system to verify the legitimacy of remote users’ authentication request over insecure communication channel. In last years, many authentication schemes using password and smart card have been proposed. However, password might be revealed or forgotten and smart card might be shared, lost or stolen. In contrast, the biometrics, such as face, ﬁngerprint or iris, have no such weakness. With the trend of mobile payment, more and more applications of mobile payment use biometrics to replace password and smart card. In this paper, we propose a biometric-based remote authentication scheme substituting biometric and mobile device bounded by user for password and smart card. This scheme is more convenient, suitable and securer than the schemes using smart cards on mobile payment environment.

Download Full-text

A Robust User Authentication Scheme for Wireless Sensor Network

10.32920/ryerson.14664549 ◽

2021 ◽

Author(s):

M. Zulfiker Ali

Keyword(s):

Wireless Sensor Network ◽

Sensor Network ◽

Network Architecture ◽

User Authentication ◽

Mutual Authentication ◽

Authentication Scheme ◽

Security Requirements ◽

Wireless Sensor ◽

Second Phase ◽

Functional Requirements

The primary requirements of a secure Wireless Sensor Network architecture are confidentiality, integrity and authentication of users and other participating entities. User Authentication for wireless sensor networks is a fundamental and important issue in designing dependable and secure systems. In this thesis, we have outlined the security model, functional requirements, assumptions and network setup for an authentication scheme in the first phase. Keeping in mind the security requirements as well as the flaws of past authentication schemes, we propose a robust user authentication method that inherits user anonymity, mutual authentication and password changing functionality of previous password-based schemes and improves security by resisting gateway bypass and replay attack, and many logged in user with the same ID threat. Our scheme is a variant of strong password based schemes that does not require strict network synchronization. In the second phase of the thesis, we have analysed our authentication scheme from the perspective of security issues and functional requirements. The proposed scheme is modelled in SystemC. It is evaluated in different attack scenarios. The authentication latency, memory and functional requirements, and computational overhead are the metrics used to evaluate the scheme. The effect of multiple users on authentication latency in our scheme is also studied. Some of the past representative schemes have also been modelled and evaluated in the same environment. A detailed comparison of over-head cost, authentication latency and security features are provided in this thesis. It is verified and confirmed by modeling that our scheme provides enhanced security without adding extra computation at the sensor node.

Download Full-text