Abstract
In recent years, the internet of things has been widely utilized in various fields, such as in smart factories or connected cars. As its domain of application has expanded, it has begun to be employed using multi-server architectures for a more efficient use of resources. However, because users wishing to receive IoT(Internet of Things) services connect to multi-servers over wireless networks, this can expose systems to various attacks and result in serious security risks. To protect systems (and users) from potential security vulnerabilities, a secure authentication technology is necessary. In this paper, we propose a smart card-based authentication protocol, which performs the authentication for each entity by allowing users to go through the authentication process using a smart card transmitted from an authentication server, and to login to a server connected to the IoT. Furthermore, the security of our proposed authentication protocol is verified by simulating a formal verification scenario using AVISPA(Automated Validation of Internet Security Protocols and Applications), a security protocol-verification tool.
Highlights
By enabling devices such as machines to exchange information with embedded software, sensors, and so on via internet networks and enhancing the functionality and Gyunggi-do 16499, South Korea 3 Department of Cyber Security, Ajou University, Suwon, South KoreaMultimed Tools Appl (2020) 79:15793–15811 performance of individual devices, the IoT enables the provision of new intelligent services
If one or more attackers generate a large number of identical login request messages using their smart cards and send them to the server connected to the sensor, there may be a problem in service availability in the server
AVISPA is composed of independently developed modules and the HLPSL, which is used as the input for the protocol specification
Summary
By enabling devices such as machines to exchange information with embedded software, sensors, and so on via internet networks and enhancing the functionality and. In terms of reducing the number of operations, the authentication protocol of a smart card-based multi-server environment involves the operations of one-way functions and the exclusive or (XOR) function. If the multi-server authentication system is vulnerable, attacks such as user impersonation, session key leakages, and replay attacks may occur in the process of connecting to the multi-server where the user stores IoT information over wireless networks [8]. We analyze the threats that may occur in multi-server IoT environment networks during the communication process, and propose a secure authentication protocol that can respond to such security threats.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
