当前位置:
X-MOL 学术
›
IEEE Trans. Ind. Inform.
›
论文详情
Our official English website, www.x-mol.net, welcomes your
feedback! (Note: you will need to create a separate account there.)
A Secure and LoRaWAN Compatible User Authentication Protocol for Critical Applications in the IoT Environment
IEEE Transactions on Industrial Informatics ( IF 11.7 ) Pub Date : 2021-04-26 , DOI: 10.1109/tii.2021.3075440 Abdollah Jabbari , Jamshid Bagherzadeh Mohasefi
IEEE Transactions on Industrial Informatics ( IF 11.7 ) Pub Date : 2021-04-26 , DOI: 10.1109/tii.2021.3075440 Abdollah Jabbari , Jamshid Bagherzadeh Mohasefi
Security and privacy are two main concerns in the critical applications in the Internet of Things environments. Long Range Wide Area Network (LoRaWAN) is a protocol, which effectively allows long-range communication for battery-constrained end devices in IoT environments, and it is accepted and used by individuals and industry. In order to facilitate the use of this technology and gain the trust of users, it is necessary to assure security and privacy for the information collected by end devices. The user authentication and key establishment protocols are very paramount in this regard. Although there are some authentication schemes in the literature, they could not be applied in the LoRaWAN networks. Thus, in this article, we introduce a new secure user authenticated key establishment scheme for LoRaWAN networks. The proposed scheme provides mutual authentication among participants, and it allows a user and an end device to establish a secure session key between themselves without trusting the network server unconditionally and completely. In order to prove that the proposed scheme is secure, we constructed formal proof employing the real-or-random model. Besides, we employed Proverif and automated validation of internet security protocols and applications tool to confirm that it satisfies authentication and security characteristics. Further, we show that our proposal is efficient with respect to computation, communication and storage costs in end devices. Eventually, we exhibit a practical demonstration of our proposal applying the NS2 simulator.
中文翻译:
适用于物联网环境中关键应用的安全且兼容 LoRaWAN 的用户身份验证协议
安全和隐私是物联网环境中关键应用的两个主要问题。远程广域网 (LoRaWAN) 是一种协议,可有效地允许物联网环境中电池受限的终端设备进行远程通信,并且已被个人和行业接受和使用。为了方便该技术的使用并获得用户的信任,有必要确保终端设备收集的信息的安全性和隐私性。在这方面,用户身份验证和密钥建立协议非常重要。尽管文献中有一些认证方案,但它们无法应用于LoRaWAN网络。因此,在本文中,我们为 LoRaWAN 网络引入了一种新的安全用户认证密钥建立方案。所提出的方案提供参与者之间的相互认证,并且它允许用户和终端设备在它们之间建立安全会话密钥,而无需无条件和完全信任网络服务器。为了证明所提出的方案是安全的,我们采用真实或随机模型构建了形式证明。此外,我们还使用Proverif和互联网安全协议和应用工具的自动验证来确认其满足身份验证和安全特性。此外,我们表明我们的建议在终端设备的计算、通信和存储成本方面是有效的。最后,我们展示了应用 NS2 模拟器的实际演示。
更新日期:2021-04-26
中文翻译:
适用于物联网环境中关键应用的安全且兼容 LoRaWAN 的用户身份验证协议
安全和隐私是物联网环境中关键应用的两个主要问题。远程广域网 (LoRaWAN) 是一种协议,可有效地允许物联网环境中电池受限的终端设备进行远程通信,并且已被个人和行业接受和使用。为了方便该技术的使用并获得用户的信任,有必要确保终端设备收集的信息的安全性和隐私性。在这方面,用户身份验证和密钥建立协议非常重要。尽管文献中有一些认证方案,但它们无法应用于LoRaWAN网络。因此,在本文中,我们为 LoRaWAN 网络引入了一种新的安全用户认证密钥建立方案。所提出的方案提供参与者之间的相互认证,并且它允许用户和终端设备在它们之间建立安全会话密钥,而无需无条件和完全信任网络服务器。为了证明所提出的方案是安全的,我们采用真实或随机模型构建了形式证明。此外,我们还使用Proverif和互联网安全协议和应用工具的自动验证来确认其满足身份验证和安全特性。此外,我们表明我们的建议在终端设备的计算、通信和存储成本方面是有效的。最后,我们展示了应用 NS2 模拟器的实际演示。
京公网安备 11010802027423号