EBAKE-SE: A novel ECC-based authenticated key exchange between industrial IoT devices using secure element

Abstract

Industrial IoT (IIoT) aims to enhance services provided by various industries, such as manufacturing and product processing. IIoT suffers from various challenges, and security is one of the key challenge among those challenges. Authentication and access control are two notable challenges for any IIoT based industrial deployment. Any IoT based Industry 4.0 enterprise designs networks between hundreds of tiny devices such as sensors, actuators, fog devices and gateways. Thus, articulating a secure authentication protocol between sensing devices or a sensing device and user devices is an essential step in IoT security. In this paper, first, we present cryptanalysis for the certificate-based scheme proposed for a similar environment by Das et al. and prove that their scheme is vulnerable to various traditional attacks such as device anonymity, MITM, and DoS. We then put forward an inter-device authentication scheme using an ECC (Elliptic Curve Cryptography) that is highly secure and lightweight compared to other existing schemes for a similar environment. Furthermore, we set forth a formal security analysis using the random oracle-based ROR model and informal security analysis over the Doleve-Yao channel. In this paper, we present comparison of the proposed scheme with existing schemes based on communication cost, computation cost and security index to prove that the proposed EBAKE-SE is highly efficient, reliable, and trustworthy compared to other existing schemes for an inter-device authentication. At long last, we present an implementation for the proposed EBAKE-SE using MQTT protocol.