Internet of Things (IoT) utilizes an intelligent technique to facilitate the design and development of smart-urban projects. As the smart devices have limited battery sources, IoT services should initiate its setup with low-power consumption. Most of the existing approaches use Long Range Wide Area Network (LoRa-WAN) as a media access layer. It provides a long-range communication between the smart devices and application systems over Low Power Wide Area Network (LP-WAN). However, it fails to achieve end-to-end security and perfect secrecy to guarantee access security of the channels. An objective of mobile-sink is to solve the problem of data confidentiality, mutual authentication, session-key agreement, and preventing potential attacks. Thus, this paper presents a lightweight based authentication and key management (L-AKM) scheme for Smart IoT-Assisted Systems. To accomplish the key objectives of L-AKM, a lightweight continuous authentication was preferred that adopts the valid authentication period and continuous user authentication session to speed up the authentication process. The performance analysis proves that the L-AKM scheme achieves better security efficiencies to resist various potential attacks such as forgery, replay, password guessing, etc. However, the experimental analysis shows that the proposed L-AKM consumes more transmission delay and throughput rate due to extra authentication phases.

物联网（IoT）利用智能技术来促进智能城市项目的设计和开发。由于智能设备的电池来源有限，因此物联网服务应以低功耗启动其设置。现有的大多数方法都使用远程广域网（LoRa-WAN）作为媒体访问层。它通过低功耗广域网（LP-WAN）在智能设备和应用系统之间提供远程通信。但是，它不能实现端到端的安全性和完美的保密性以保证通道的访问安全性。移动接收器的目标是解决数据机密性，相互认证，会话密钥协议以及防止潜在攻击的问题。从而，本文提出了一种用于智能物联网辅助系统的基于轻量级的身份验证和密钥管理（L-AKM）方案。为了实现L-AKM的关键目标，首选轻量级连续认证，该认证采用有效认证期和连续用户认证会话来加快认证过程。性能分析表明，L-AKM方案具有较高的安全效率，可以抵抗各种潜在的攻击，如伪造，重播，密码猜测等。然而，实验分析表明，所提出的L-AKM消耗更多的传输延迟和吞吐率到额外的身份验证阶段。轻量级的连续身份验证是可取的，它采用有效的身份验证时间段和连续的用户身份验证会话，以加快身份验证过程。性能分析表明，L-AKM方案具有较好的安全性，可以抵抗各种潜在的攻击，如伪造，重播，密码猜测等。然而，实验分析表明，所提出的L-AKM会浪费更多的传输延迟和吞吐率到额外的身份验证阶段。轻量级的连续身份验证是可取的，它采用有效的身份验证时间段和连续的用户身份验证会话，以加快身份验证过程。性能分析表明，L-AKM方案具有较好的安全性，可以抵抗各种潜在的攻击，如伪造，重播，密码猜测等。然而，实验分析表明，所提出的L-AKM会浪费更多的传输延迟和吞吐率到额外的身份验证阶段。