Design And Implementation Of Group-Based Authentication And Security Mechanism On Narrow-Band Internet Of Things

Because the current Narrow-Band Internet of Things(NB-IoT)communication is still in the initial stage,and the complex services and connection of massive terminals will bring some challenges to NB-IoT communication.In the NB-IoT network,when a large number of terminals are connected to the network at the same time to perform EPS-AKA authentication process,an independent and complete authentication process is carried out in each terminal,and a large number of signaling generated in a short time leads to signaling congestion between some nodes in the network.Meanwhile,in EPS-AKA authentication process,the authentication message triggered by the initial registration network of the terminal is transmitted in the wireless network in the form of clear text,and it is easy to disclose the important information in the authentication message,such as the international mobile identification code(IMSI)of the terminal.In order to relieve the signaling congestion and addresses the unsecurity of authentication messages during wireless transmission,referring to group scheme of IoT terminals proposed by many scholars,an improved Group-based authentication security mechanism based on EPS-AKA authentication mechanism is designed and named as GBAS-AKA authentication mechanism.The mechanism adds a server as a proxy in the network,and the terminals are grouped and managed by the server.Instead of authenticating with one terminal each time,the network authenticates with one group terminals through the server to reduce the total signaling cost of the authentication process and the number of authentication vector bits.In the the mechanism,integrity protection and encryption protection of authentication messages are adopted and ensure the security of authentication messages during wireless transmission.The mechanism is modeled and analyzed on the OMNET++ simulation environment,and a variety of different groups are used for the simulation test of the mechanism.Through the analysis of simulation results,the total signaling cost decreased by 26.6% and the number of authentication vector bits decreased by 20.5%,which achieved the expected design indicators.