Font Size: a A A

The Research On Provably Secure Multi-factor Authentication Protocols In Internet Of Things

Posted on:2023-06-06Degree:DoctorType:Dissertation
Country:ChinaCandidate:Y L ChenFull Text:PDF
GTID:1528307055984399Subject:Applied Mathematics
Abstract/Summary:
As an emerging field,the Internet of Things(Io T)has attracted extensive attention from people all over the world and promoted great changes in smart home,intelligent medical treatment,industrial control and environmental monitoring.In particular,the wide application of Io T has greatly subverted the medical care way and brought great convenience to people’s life.The e-health industry is generating a large amount of data,including personal medical records,clinical data and genomic data.These massive data have great potential in improving medical quality and reducing medical cost.Wireless Sensor Networks(WSN)is another important Io T application.It can help human beings do some heavy and dangerous work.However,due to the sensitivity of medical information and data collected by sensor nodes,the security and privacy issues in the Internet of things system become very important.How to ensure the security and confidentiality of data and avoid public networks from eavesdropping,tampering and other attacks has become a hot spot in academic research.One of the main tasks is to provide mutual authentication between users and service providers to ensure that sensitive data will not be obtained by illegal users.Therefore,it is necessary to design an authentication key agreement(AKA)protocol with high efficiency,low computing time and energy consumption.Based on the elliptic curve cryptography theory,this paper studies the authentication key agreement protocol suitable for the Internet of things.The main contents are as follows:(1)Aiming at the privacy protection problem of e-health cloud,we design a more efficient three-factor authentication protocol with forward security after researching existing related schemes.The three most important advantages of our scheme are:First,in a specific session,if the temporary information is accidentally leaked due to inappropriate erasure and other reasons,the adversary still cannot use the leaked information to break the scheme;Second,even if the adversary intercepts the login information in the communication channel and replays it to the server,it cannot achieve the purpose of the replay attack;Third,when a malicious adversary sends a large amount of useless information to the server,occupies server resources,and wants to cause the server to be paralyzed,our scheme will make this attempt of the adversary fail.With the help of hash function and fuzzy extraction technology,this scheme well protects the user anonymity and untraceability,and successfully resists DOS attack and internal attack.In the security proof,the method we use is the famous BAN logic.Compared with several existing similar schemes,the results show that our scheme has higher efficiency and stronger security.(2)According to the security requirements of telemedicine system,a privacy protected authentication key agreement protocol is designed.Using the famous ROM model,we prove that the protocol is secure.The traditional heuristic discussion shows that the scheme can not only provide perfect forward security and user friendliness,but also resist internal privilege attack and impersonation attack.Finally,we analyze the efficiency of the scheme by comparing with other schemes.The results show that the time cost and communication load of the new scheme are significantly reduced.Moreover,the time consumption on the client side is reduced by 63.5%,the server side is reduced by 60.1%,and the total time consumption is reduced by about 61.9%.(3)Considering the privacy and sensitivity of the data collected by the sensor nodes,once leaked,it will bring serious losses to users.To protect the important data,we design a biometric-based AKA scheme.The scheme does not need to store password and biometric information,which reduces the risk of user privacy disclosure.The combination of fuzzy extraction technology and physically unclonable technology enhances the robustness of the scheme.The security proof under the random oracle model and the traditional heuristic discussion show that the scheme can not only provide authentication and anonymity,but also resist various known attacks.In addition,the analysis of computing time and energy consumption shows that in the existing related work,the new scheme not only improves the security,but also reduces the computing cost and communication overhead.
Keywords/Search Tags:Internet of Things, Data Security, Authenticated Key Agreement Protocol, Elliptic Curve Cryptography, Random Oracle Model
Related items