A Security Access Mechanism Based On LoRaWAN Against Replay Attacks

The LoRaWAN protocol is an important carrier for Internet of Things technology.With its rapid development,the access security issue of devices has received extensive attentions.Since the join request data is sent in plain text and the encryption key is directly stored by users.If the key has leaked,attackers can use their node to launch attacks to destroy the entire network.This paper proposes an enhanced security mechanism based on LoRaWAN to solve the replay attack when the root key has been leaked.It aims to reduce the loss of the defender from replay attack to find how to defend against replay attacks from the perspective of encryption and transmission.Firstly,the paper gives an improved secure network access architecture design based on the original network access mechanism.Secondly,according to the architecture’s design,a data encryption method based on one-time-one-password and a data packet transmission method based on data salting are given.Based on characteristics of encryption and grouping methods,data verification and data recovery methods are also designed.Thirdly,the paper introduces an adaptive data rate adjustment algorithm to ensure that device energy consumption can maintain at low level during the packet transmission phase.Finally,the paper has used Burrows-Abadi-Needham Logic(Ban Logic)and formal verification tool Scyther for security analysis of data interaction process.It also uses OMNe T ++ simulation test bed and real test bed for performance evaluation experiments.The results show two things:1.Our mechanism can support authentication and confidentiality for transmission data during the interaction process;2.The node which adopting the new mechanism has the ability to resist replay attacks in the case of root key leakage without adding too much energy consumption.This mechanism is not only a supplement to the research on the replay attack defense problem,but also provides a new design for the encryption and transmission process inside the network access.It is a new scheme for sensor network access and a great significance to the security construction of the Internet of Things.