An Enhanced Lightweight IoT-based Authentication Scheme in Cloud Computing Circumstances
With the rapid deployment of the Internet of Things and cloud computing, it is necessary to enhance authentication protocols to reduce attacks and security vulnerabilities which affect the correct performance of applications. In 2019 a new lightweight IoT-based authentication scheme in cloud computi...
Main Authors: | , , , , , , |
---|---|
Format: | Article |
Language: | English |
Published: |
MDPI AG
2019-05-01
|
Series: | Sensors |
Subjects: | |
Online Access: | https://www.mdpi.com/1424-8220/19/9/2098 |
_version_ | 1797999387227455488 |
---|---|
author | Rafael Martínez-Peláez Homero Toral-Cruz Jorge R. Parra-Michel Vicente García Luis J. Mena Vanessa G. Félix Alberto Ochoa-Brust |
author_facet | Rafael Martínez-Peláez Homero Toral-Cruz Jorge R. Parra-Michel Vicente García Luis J. Mena Vanessa G. Félix Alberto Ochoa-Brust |
author_sort | Rafael Martínez-Peláez |
collection | DOAJ |
description | With the rapid deployment of the Internet of Things and cloud computing, it is necessary to enhance authentication protocols to reduce attacks and security vulnerabilities which affect the correct performance of applications. In 2019 a new lightweight IoT-based authentication scheme in cloud computing circumstances was proposed. According to the authors, their protocol is secure and resists very well-known attacks. However, when we evaluated the protocol we found some security vulnerabilities and drawbacks, making the scheme insecure. Therefore, we propose a new version considering login, mutual authentication and key agreement phases to enhance the security. Moreover, we include a sub-phase called evidence of connection attempt which provides proof about the participation of the user and the server. The new scheme achieves the security requirements and resists very well-known attacks, improving previous works. In addition, the performance evaluation demonstrates that the new scheme requires less communication-cost than previous authentication protocols during the registration and login phases. |
first_indexed | 2024-04-11T11:03:57Z |
format | Article |
id | doaj.art-3b02fc7300a141ac83ca6d30787d8f96 |
institution | Directory Open Access Journal |
issn | 1424-8220 |
language | English |
last_indexed | 2024-04-11T11:03:57Z |
publishDate | 2019-05-01 |
publisher | MDPI AG |
record_format | Article |
series | Sensors |
spelling | doaj.art-3b02fc7300a141ac83ca6d30787d8f962022-12-22T04:28:27ZengMDPI AGSensors1424-82202019-05-01199209810.3390/s19092098s19092098An Enhanced Lightweight IoT-based Authentication Scheme in Cloud Computing CircumstancesRafael Martínez-Peláez0Homero Toral-Cruz1Jorge R. Parra-Michel2Vicente García3Luis J. Mena4Vanessa G. Félix5Alberto Ochoa-Brust6Facultad de Tecnologías de Información, Universidad De La Salle Bajío, Av. Universidad 602, León 37150, MexicoDepartment of Sciences and Engineering, University of Quintana Roo, Blvd Bahía S/N, Chetumal 77019, MexicoFacultad de Tecnologías de Información, Universidad De La Salle Bajío, Av. Universidad 602, León 37150, MexicoDepartamento de Ingeniería Eléctrica y Computación, Universidad Autónoma de Ciudad Juárez, Av. José de Jesús Macías Delgado 18100, Cd. Juárez 32310, MexicoUnidad Académica de Computación, Universidad Politécnica de Sinaloa, Ctra. Libre Mazatlán Higueras Km 3, Mazatlán 82199, MexicoUnidad Académica de Computación, Universidad Politécnica de Sinaloa, Ctra. Libre Mazatlán Higueras Km 3, Mazatlán 82199, MexicoFacultad de Ingeniería Mecánica y Eléctrica, Universidad de Colima, Av. Universidad 333, Colima 28040, MexicoWith the rapid deployment of the Internet of Things and cloud computing, it is necessary to enhance authentication protocols to reduce attacks and security vulnerabilities which affect the correct performance of applications. In 2019 a new lightweight IoT-based authentication scheme in cloud computing circumstances was proposed. According to the authors, their protocol is secure and resists very well-known attacks. However, when we evaluated the protocol we found some security vulnerabilities and drawbacks, making the scheme insecure. Therefore, we propose a new version considering login, mutual authentication and key agreement phases to enhance the security. Moreover, we include a sub-phase called evidence of connection attempt which provides proof about the participation of the user and the server. The new scheme achieves the security requirements and resists very well-known attacks, improving previous works. In addition, the performance evaluation demonstrates that the new scheme requires less communication-cost than previous authentication protocols during the registration and login phases.https://www.mdpi.com/1424-8220/19/9/2098authenticationcloud computingInternet of Thingsmutual authenticationsession key agreement |
spellingShingle | Rafael Martínez-Peláez Homero Toral-Cruz Jorge R. Parra-Michel Vicente García Luis J. Mena Vanessa G. Félix Alberto Ochoa-Brust An Enhanced Lightweight IoT-based Authentication Scheme in Cloud Computing Circumstances Sensors authentication cloud computing Internet of Things mutual authentication session key agreement |
title | An Enhanced Lightweight IoT-based Authentication Scheme in Cloud Computing Circumstances |
title_full | An Enhanced Lightweight IoT-based Authentication Scheme in Cloud Computing Circumstances |
title_fullStr | An Enhanced Lightweight IoT-based Authentication Scheme in Cloud Computing Circumstances |
title_full_unstemmed | An Enhanced Lightweight IoT-based Authentication Scheme in Cloud Computing Circumstances |
title_short | An Enhanced Lightweight IoT-based Authentication Scheme in Cloud Computing Circumstances |
title_sort | enhanced lightweight iot based authentication scheme in cloud computing circumstances |
topic | authentication cloud computing Internet of Things mutual authentication session key agreement |
url | https://www.mdpi.com/1424-8220/19/9/2098 |
work_keys_str_mv | AT rafaelmartinezpelaez anenhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT homerotoralcruz anenhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT jorgerparramichel anenhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT vicentegarcia anenhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT luisjmena anenhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT vanessagfelix anenhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT albertoochoabrust anenhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT rafaelmartinezpelaez enhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT homerotoralcruz enhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT jorgerparramichel enhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT vicentegarcia enhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT luisjmena enhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT vanessagfelix enhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances AT albertoochoabrust enhancedlightweightiotbasedauthenticationschemeincloudcomputingcircumstances |