Passphrase protected device‐to‐device mutual authentication schemes for smart homes

Abstract

Smart home is a promising paradigm and technology for providing the ability to physical objects to operate over the Internet. While this technology provides convenience to its users a number of initiatives across the globe are taken in academia and industry to deal with security issues that it may entail. Among these is the issue of interdevices authentication in the presence of security threats such as vulnerability of session/cookies. In this paper two passphrase protected device‐to‐device (D2D) mutual authentication schemes for smart homes are proposed where the keys are protected using passphrases and a centralized server provides proxy‐passphrase service to smart home devices assuming that the server keeps the database of passphrases as well as the servers' passphrase‐proxy service. The high‐level protocol specification language (HLPSL) language is used to model the proposed two protocols and a security analysis is conducted using the security protocol animator for AVISPA (SPAN)/AVISPA (Automated Validation of Internet Security Protocol and Applications) tool showing that the proposed schemes can achieve the goals of secrecy of secret keys and D2D mutual authentication