Abstract
The rapid proliferation of embedded devices has led to the growth of the Internet of Things (IoT) with applications in numerous domains such as home automation, healthcare, education and agriculture. However, many of the connected devices particularly in smart homes are the target of attacks that try to exploit security vulnerabilities such as hard-coded passwords and insecure data transfer. Recent studies show that there is a considerable surge in the number of phishing attacks targeting smart homes during the COVID-19 pandemic. Moreover, many of the existing user authentication protocols in the literature incur additional computational overhead and need to be made more resilient to smart home targeted attacks. In this paper, we propose a novel lightweight and privacy-preserving remote user authentication protocol for securing smart home applications. Our approach is based on Photo Response Non-Uniformity (PRNU) to make our protocol resilient to smart home attacks such as smartphone capture attacks and phishing attacks. In addition, the lightweight nature of our solution is suitable for deployment on heterogeneous and resource constrained IoT devices. Besides, we leverage geometric secret sharing for establishing mutual authentication among the participating entities. We validate the security of the proposed protocol using the AVISPA formal verification tool and prototype it on a Raspberry Pi to analyze the power consumption. Finally, a comparison with existing schemes reveals that our scheme incurs a 20% reduction in communication overhead on smart devices. Furthermore, our proposed scheme is usable as it absolves users from memorizing passwords and carrying smart cards.
Highlights
T HE ubiquity and increasing popularity of Internet of Things (IoT) has led to the proliferation of embedded devices
Our proposed protocol is based on geometric secret sharing and uses face biometric and Photo Response Non-Uniformity (PRNU) [13] to authenticate both users and their smartphones
OUR CONTRIBUTIONS Our contributions to this paper are listed as follows: 1) We propose a novel lightweight and privacy-preserving remote user authentication protocol for smart home environments based on geometric secret sharing
Summary
T HE ubiquity and increasing popularity of Internet of Things (IoT) has led to the proliferation of embedded devices. The security aspects of the IoT devices in smart homes are not always covered holistically making them vulnerable to cyber-attacks. A security breach in smart homes can have high impact because it allows attackers to take control of the devices in smart homes, steal sensitive information and blackmail the occupants at very large scales [12]. We propose a novel lightweight and privacypreserving remote user authentication protocol for smart home environments. Our proposed protocol is based on geometric secret sharing and uses face biometric and Photo Response Non-Uniformity (PRNU) [13] to authenticate both users and their smartphones. We leverage geometric secret sharing to establish mutual authentication among the user, gateway and IoT device. Geometric secret sharing based mutual authentication provides better security than password or shared key based schemes to protect the smart devices. Formal analysis and security properties verification have been done to prove that the proposed protocol is resilient to various known attacks
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
