LAM-CIoT: Lightweight authentication mechanism in cloud-based IoT environment

Wazid, M; Das, AK; Bhat K, V; Vasilakos, AV

LAM-CIoT: Lightweight authentication mechanism in cloud-based IoT environment

Wazid, M Das, AK Bhat K, V Vasilakos, AV

Permalink

Publisher:: ACADEMIC PRESS LTD- ELSEVIER SCIENCE LTD
Publication Type:: Journal Article
Citation:: Journal of Network and Computer Applications, 2020, 150
Issue Date:: 2020-01-15

Closed Access

	Filename	Description	Size
	1-s2.0-S108480451930356X-main.pdf	Published version	2.82 MB	Adobe PDF	View/Open

Copyright Clearance Process

Recently Added
In Progress
Closed Access

This item is closed access and not available.

Full metadata record

Field	Value	Language
dc.contributor.author	Wazid, M
dc.contributor.author	Das, AK
dc.contributor.author	Bhat K, V
dc.contributor.author	Vasilakos, AV
dc.date.accessioned	2021-02-25T04:59:25Z
dc.date.available	2021-02-25T04:59:25Z
dc.date.issued	2020-01-15
dc.identifier.citation	Journal of Network and Computer Applications, 2020, 150
dc.identifier.issn	1084-8045
dc.identifier.issn	1095-8592
dc.identifier.uri	http://hdl.handle.net/10453/146457
dc.description.abstract	© 2019 Elsevier Ltd Internet of Things (IoT) becomes a new era of the Internet, which consists of several connected physical smart objects (i.e., sensing devices) through the Internet. IoT has different types of applications, such as smart home, wearable devices, smart connected vehicles, industries, and smart cities. Therefore, IoT based applications become the essential parts of our day-to-day life. In a cloud-based IoT environment, cloud platform is used to store the data accessed from the IoT sensors. Such an environment is greatly scalable and it supports real-time event processing which is very important in several scenarios (i.e., IoT sensors based surveillance and monitoring). Since some applications in cloud-based IoT are very critical, the information collected and sent by IoT sensors must not be leaked during the communication. To accord with this, we design a new lightweight authentication mechanism in cloud-based IoT environment, called LAM-CIoT. By using LAM-CIoT, an authenticated user can access the data of IoT sensors remotely. LAM-CIoT applies efficient “one-way cryptographic hash functions” along with “bitwise XOR operations”. In addition, fuzzy extractor mechanism is also employed at the user's end for local biometric verification. LAM-CIoT is methodically analyzed for its security part through the formal security using the broadly-accepted “Real-Or-Random (ROR)” model, formal security verification using the widely-used “Automated Validation of Internet Security Protocols and Applications (AVISPA)” tool as well as the informal security analysis. The performance analysis shows that LAM-CIoT offers better security, and low communication and computation overheads as compared to the closely related authentication schemes. Finally, LAM-CIoT is evaluated using the NS2 network simulator for the measurement of network performance parameters that envisions the impact of LAM-CIoT on the network performance of LAM-CIoT and other schemes.
dc.language	English
dc.publisher	ACADEMIC PRESS LTD- ELSEVIER SCIENCE LTD
dc.relation.ispartof	Journal of Network and Computer Applications
dc.relation.isbasedon	10.1016/j.jnca.2019.102496
dc.rights	info:eu-repo/semantics/closedAccess
dc.subject	0805 Distributed Computing, 1005 Communications Technologies
dc.subject.classification	Networking & Telecommunications
dc.title	LAM-CIoT: Lightweight authentication mechanism in cloud-based IoT environment
dc.type	Journal Article
utslib.citation.volume	150
utslib.for	0805 Distributed Computing
utslib.for	1005 Communications Technologies
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Electrical and Data Engineering
pubs.organisational-group	/University of Technology Sydney
utslib.copyright.status	closed_access	*
dc.date.updated	2021-02-25T04:59:23Z
pubs.publication-status	Published
pubs.volume	150

Abstract:

© 2019 Elsevier Ltd Internet of Things (IoT) becomes a new era of the Internet, which consists of several connected physical smart objects (i.e., sensing devices) through the Internet. IoT has different types of applications, such as smart home, wearable devices, smart connected vehicles, industries, and smart cities. Therefore, IoT based applications become the essential parts of our day-to-day life. In a cloud-based IoT environment, cloud platform is used to store the data accessed from the IoT sensors. Such an environment is greatly scalable and it supports real-time event processing which is very important in several scenarios (i.e., IoT sensors based surveillance and monitoring). Since some applications in cloud-based IoT are very critical, the information collected and sent by IoT sensors must not be leaked during the communication. To accord with this, we design a new lightweight authentication mechanism in cloud-based IoT environment, called LAM-CIoT. By using LAM-CIoT, an authenticated user can access the data of IoT sensors remotely. LAM-CIoT applies efficient “one-way cryptographic hash functions” along with “bitwise XOR operations”. In addition, fuzzy extractor mechanism is also employed at the user's end for local biometric verification. LAM-CIoT is methodically analyzed for its security part through the formal security using the broadly-accepted “Real-Or-Random (ROR)” model, formal security verification using the widely-used “Automated Validation of Internet Security Protocols and Applications (AVISPA)” tool as well as the informal security analysis. The performance analysis shows that LAM-CIoT offers better security, and low communication and computation overheads as compared to the closely related authentication schemes. Finally, LAM-CIoT is evaluated using the NS2 network simulator for the measurement of network performance parameters that envisions the impact of LAM-CIoT on the network performance of LAM-CIoT and other schemes.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/146457