Ya Zhang,Junhua Chen,Shenjin Wang,Kaixuan Ma,Shunfang Hu

DOI: https://doi.org/10.3390/en17184550

IF: 3.2

2024-09-12

Energies

Abstract:The smart grid (SG) is an efficient and reliable framework capable of controlling computers, automation, new technologies, and devices. Advanced metering infrastructure (AMI) is a crucial part of the SG, facilitating two-way communication between users and service providers (SPs). Computation, storage, and communication are extremely limited as the AMI's device is typically deployed outdoors and connected to an open network. Therefore, an authentication and key agreement protocol is necessary to ensure the security and confidentiality of communications. Existing research still does not meet the anonymity, perfect forward secrecy, and resource-limited requirements of the SG environment. To address this issue, we advance a lightweight authentication and key agreement scheme based on elliptic curve cryptography (ECC). The security of the proposed protocol is rigorously proven under the random oracle model (ROM), and was verified by a ProVerif tool. Additionally, performance comparisons validate that the proposed protocol provides enhanced security features at the lowest computation and communication costs.

energy & fuels

Rongxing Lu,Xiaodong Lin,Zhiguo Shi,Xuemin (Sherman) Shen

DOI: https://doi.org/10.1109/wcnc.2013.6554840

2013-01-01

Abstract:The increasing demands for improving transmission reliability and efficiency have brought us a wide interest in smart grid. In current smart grid research, one of challenges is its security issue. If the security is not well addressed, the concept of smart grid cannot be widely accepted. In this paper, in order to simultaneously resolve the security and efficiency challenges in smart grid communications, we propose an efficient aggregate authentication protocol, called EATH, which is characterized by eliminating the Map-To-Hash hash and reducing the pairing operations in aggregation and verification to improve the computational efficiency. Detailed security analysis has shown that the proposed EATH protocol is secure in terms of source authentication and data integrity in smart grid communications. In addition, performance evaluation also demonstrates its efficiency in terms of low computation and communication overheads.

Prarthana J. Mehta,Balu L. Parne,Sankita J. Patel

DOI: https://doi.org/10.1007/s10586-024-04395-6

2024-04-07

Cluster Computing

Abstract:Internet of Things (IoTs) is a promising technology that combines communication and data networking. Integration of Smart Grids (SGs) and IoT will fulfill an increased demand for energy requirements by transforming the reliable and efficient traditional power grids. The SG enables bi-directional transmission between the Service Provider (SP) and Smart Meter (SM) to send and receive information regarding electricity consumption over a public channel. The public channel allows an adversary to intercept the information exchanged between them and tamper with the SM as it is installed outside which leads to forging or modification of the messages and privacy violation. In addition, the SM has limited computational and storage capacity. To protect SM privacy and securely communicate in the SG network, Physically Unclonable Functions (PUFs) based Authentication and Key Agreement (AKA) schemes were suggested in the literature. However, they may suffer from the machine learning modeling attack and several other security issues. Thus, we propose a finite state machine enabled controlled PUF based AKA (PF-AKA) Framework for the IoT based SG (IoT-SG) network. The PF-AKA framework is verified formally using the Real-or-Random (RoR) model, AVISPA tool, and BAN logic. It shows that PF-AKA achieves the security requirements along with protection from the SM physical and modeling attacks. The performance analysis is carried out and it represents that the PF-AKA yields competitive computation and communication costs compared to AKA schemes in the literature for the IoT-SG network.

computer science, information systems, theory & methods

Sahil Garg,Kuljeet Kaur,Georges Kaddoum,François Gagnon,Syed Hassan Ahmed,Dushantha Nalin K. Jayakody

DOI: https://doi.org/10.48550/arXiv.1907.08898

2019-07-21

Abstract:Smart metering infrastructure (SMI) is the core component of the smart grid (SG) which enables two-way communication between consumers and utility companies to control, monitor, and manage the energy consumption data. Despite their salient features, SMIs equipped with information and communication technology are associated with new threats due to their dependency on public communication networks. Therefore, the security of SMI communications raises the need for robust authentication and key agreement primitives that can satisfy the security requirements of the SG. Thus, in order to realize the aforementioned issues, this paper introduces a lightweight and secure authentication protocol, "LiSA", primarily to secure SMIs in SG setups. The protocol employs Elliptic Curve Cryptography at its core to provide various security features such as mutual authentication, anonymity, replay protection, session key security, and resistance against various attacks. Precisely, LiSA exploits the hardness of the Elliptic Curve Qu Vanstone (EVQV) certificate mechanism along with Elliptic Curve Diffie Hellman Problem (ECDHP) and Elliptic Curve Discrete Logarithm Problem (ECDLP). Additionally, LiSA is designed to provide the highest level of security relative to the existing schemes with least computational and communicational overheads. For instance, LiSA incurred barely 11.826 ms and 0.992 ms for executing different passes across the smart meter and the service providers. Further, it required a total of 544 bits for message transmission during each session.

Networking and Internet Architecture,Cryptography and Security

Shunfang Hu,Yanru Chen,Yilong Zheng,Bin Xing,Yang Li,Le Zhang,Liangyin Chen

DOI: https://doi.org/10.1109/tii.2022.3191319

IF: 12.3

2023-03-29

IEEE Transactions on Industrial Informatics

Abstract:Advanced metering infrastructure (AMI) is a vital component of the smart grid (SG) for real-time data access and bidirectional communication. An authentication and key agreement (AKA) protocol is needed for AMI systems to ensure the confidentiality and integrity of communication data. Since the devices are connected to the open network and generally deployed outdoors with limited computation, communication, and storage, designing a suitable AKA protocol is a challenging task. Researchers are still looking for good ways to make the SG secure and efficient simultaneously. To remedy the situation, in this article, we advance a security-enhanced elliptic-curve-cryptography-based AKA protocol, and the security has been proven rigorously under the random oracle model and verified with the ProVerif tool. Furthermore, performance comparison validates the proposed protocol in affording improved security features with lower computation and communication cost. In addition, the proposed scheme is implemented practically on a testbed, which is deployed using Raspberry Pi 3 Model B+ for smart meters.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Huanhuan Ma,Chenyu Wang,Guosheng Xu,Qiang Cao,Guoai Xu,Li Duan

DOI: https://doi.org/10.1109/jsyst.2023.3289492

IF: 4.802

2023-01-01

IEEE Systems Journal

Abstract:Smart grid (SG) achieves more convenient and efficient power transmission through the rapid development of the information and communication technology. In addition to the transmission of electrical energy, the SG system also involves privacy and control information of service providers, which is closely related to people's livelihood. However, at present, the data in the SG system are transmitted in the form of plaintext, which does not have complete protection measures for entity privacy and communication data security. Focusing on preserving entity privacy and data security, this article proposes an anonymous secure authentication protocol (ASAP-SG) for the SG environment. Based on elliptic curve cryptography and physical unclonable function, ASAP-SG can realize authentication and key agreement between smart meters and service providers. The security of ASAP-SG has been verified with proverif tool and proven strictly under the real-or-random model. Furthermore, heuristic analysis manifests that ASAP-SG can successfully resist known security attacks. Finally, a fully comparison with the other five most advanced schemes reveals that ASAP-SG consumes the optimal computation cost on both smart meters and service providers and reduces the communication overhead by 33.3%–45.8%, on the basis of satisfying ten security objectives. These features make ASAP-SG more suitable for resource-constrained SG environment.

computer science, information systems,telecommunications,engineering, electrical & electronic,operations research & management science

Sheng Chai,Haotian Yin,Bin Xing,Zhukun Li,Yunyi Guo,Di Zhang,Xin Zhang,Da He,Jie Zhang,Xiaoling Yu,Wei Wang,Xin Huang

DOI: https://doi.org/10.1109/tsg.2023.3234000

IF: 10.275

2023-09-01

IEEE Transactions on Smart Grid

Abstract:Smart Grid is an indispensable part of the Internet of Things (IoT) and has the potential to revolutionise the electricity energy industry. Smart meters, as an important component of Smart Grid, are responsible for the exchange of information between end consumers and service providers. Smart meters and service providers need to use authentication key exchange protocols (AKE) to establish a secure session for secure information transmission. However, The current state-of-the-art lightweight solutions do not support identity anonymity and mostly have high communication costs. This paper proposes a lightweight and secure mutual authentication scheme, which is particularly designed for devices with limited computing capability to provide identity anonymity such as smart meters, based on the Shangyong Mima 2 (SM2) AKE protocol stipulated by the State Cryptography Administration of China. We conducted formal analysis of the security of the proposed scheme and proved its security. In addition, the computational overhead of the protocol was evaluated through performance analysis. Compared with related lightweight protocols, our scheme can reduce up to 30%-40% computational overhead. The results verified that the proposed scheme is indeed suitable for secure communication involving devices with constrained computing capability.

engineering, electrical & electronic

Cong Wang,Peng Huo,Maode Ma,Tong Zhou,Yiying Zhang

DOI: https://doi.org/10.1007/s00607-023-01188-4

2023-06-28

Computing (Vienna/New York)

Abstract:With the gradual maturity of Smart Grid (SG), security challenges become the most important issues that need to be addressed urgently. In recent years, many schemes adopt mutual authentication and key agreement to ensure secure communication in SG. However, most existing methods have their own shortcomings in either security or efficiency which make them difficult to satisfy the security requirements of SG. In this paper, we propose a provable secure and lightweight authenticated key agreement scheme based on the Elliptic Curve Cryptosystem (ECC) for the cloud-edge-end collaboration SG communication network. The proposed scheme can guarantee the security of the communication and provide anonymity for both the edge server and the smart meters. The anonymity of the smart meters can be provided by a pseudonym mechanism. By rigorous security analysis, the proposed scheme can resist to the typical attacks including replay attacks and identity forgery attacks. The security properties are also evaluated by using the Canetti and Krawczyk (CK) adversary model. The performance simulation results denotes that the proposed scheme not only owns stronger security functions but also improves computation efficiency by 24.5% on average than other four schemes. By simulation results, the proposed scheme has been shown to hold high efficiency.

Khalid Mahmood,Shehzad Ashraf Chaudhry,Husnain Naqvi,Saru Kumari,Xiong Li,Arun Kumar Sangaiah

DOI: https://doi.org/10.1016/j.future.2017.05.002

IF: 7.307

2018-04-01

Future Generation Computer Systems

Abstract:An evolved grid system, Smart Grid, enables appropriate adjustments in the amount of electricity generation by providing the capability to monitor the consumption behavior of customers. This advance grid system can help to promote cultural heritage because it is responsible to provide un-interruptible and reliable power supply in smart way. Smart grid is one of the key component for enabling smart cities and obviously, any city with more smart amenities will ultimately attract visitors to come and visit rich heritage. In smart grid, Supervisory Control and Data Acquisition (SCDA) system is responsible for keeping the underlying communication secure between substations and corresponding control center. While communication between customers and substations needs more enhancements as the existing protocols do not meet the comprehensive security requirements of smart grid. Due to the complex nature of smart grid and diverse security requirements, designing a suitable authentication scheme is a challenging task. For delay sensitive networks like smart grid, an ideal authentication scheme should withstand against all known security attacks, involving lightweight operations with trivial computations. ECC provides same security level with much less key sizes as compared with other security techniques such as RSA, DSA and DH. Keeping in mind the complex and delay sensitive nature of smart grid, a lightweight ECC based authentication scheme is proposed here. The proposed scheme not only provides mutual authentication with low computation and communication cost but also withstand against all known security attacks.

Kehe Wu,Rui Cheng,Wenchao Cui,Wei Li

DOI: https://doi.org/10.1016/j.aej.2020.09.008

IF: 6.626

2021-02-01

Alexandria Engineering Journal

Abstract:With the increasing openness of smart grids, a large quantity of power terminals will be widely applied in systems of smart grids by various access modes (wired, wireless, satellite). In order to ensure the integrity and confidentiality of the data and the security of the communications between power terminals and the smart grid intranet, a lightweight security authentication and key agreement scheme is proposed in this article. The scheme provides mutual authentication based on the SM2 algorithm and key agreement which can prevent various attacks. Furthermore experimental evaluation and comparative analysis is conducted to indicate that the proposed scheme can resist many types of attacks with lower amounts of total computational resources and lower communications bandwidth. The analysis shows that the proposed scheme is suitable for smart grid.

engineering, multidisciplinary

Keyan Abdul-Aziz Mutlaq,Vincent Omollo Nyangaresi,Mohd Adib Omar,Zaid Ameen Abduljabbar,Iman Qays Abduljaleel,Junchao Ma,Mustafa A. Al Sibahee

DOI: https://doi.org/10.1371/journal.pone.0296781

IF: 3.7

2024-01-24

PLoS ONE

Abstract:The incorporation of information and communication technologies in the power grids has greatly enhanced efficiency in the management of demand-responses. In addition, smart grids have seen considerable minimization in energy consumption and enhancement in power supply quality. However, the transmission of control and consumption information over open public communication channels renders the transmitted messages vulnerable to numerous security and privacy violations. Although many authentication and key agreement protocols have been developed to counter these issues, the achievement of ideal security and privacy levels at optimal performance still remains an uphill task. In this paper, we leverage on Hamming distance, elliptic curve cryptography, smart cards and biometrics to develop an authentication protocol. It is formally analyzed using the Burrows-Abadi-Needham (BAN) logic, which shows strong mutual authentication and session key negotiation. Its semantic security analysis demonstrates its robustness under all the assumptions of the Dolev-Yao (DY) and Canetti- Krawczyk (CK) threat models. From the performance perspective, it is shown to incur communication, storage and computation complexities compared with other related state of the art protocols.

multidisciplinary sciences

Hema Shekhawat,Daya Sagar Gupta

DOI: https://doi.org/10.1016/j.pmcj.2024.101919

IF: 3.848

2024-03-20

Pervasive and Mobile Computing

Abstract:In the contemporary landscape of energy infrastructure, the "smart-grid metering infrastructure (SGMI)" emerges as a pivotal entity for efficiently monitoring and regulating electricity generation in response to client behavior. Within this context, SGMI addresses a spectrum of pertinent security and privacy concerns. This study systematically addresses the inherent research problems associated with SGMI and introduces a lattice-based blockchain-assisted certificateless data authentication and key exchange scheme. The primary aim of this scheme is to establish quantum resistance, conditional anonymity, dynamic participation, and the capacity for key updates and revocations, all of which are imperative facets for the robust implementation of mutual authentication within SGMI. Our scheme harnesses blockchain technology to mitigate the vulnerabilities associated with centralized administrative control, thus eliminating the risk of a single-point failure and distributed denial-of-service attacks. Furthermore, our proposed scheme is meticulously designed to accommodate the resource constraints of smart meters, characterized by lightweight operations. Rigorous formal security analysis is conducted within the framework of the quantum-accessible random oracle model, fortified by'history-free reduction,' substantiating its security credentials. Complementing this, simulation orchestration serves to underscore its superiority over existing methodologies, particularly in the realms of energy efficiency, data computation, communication, and the costs associated with private key storage.

computer science, information systems,telecommunications

Fathi Amsaad,Selçuk Köse

DOI: https://doi.org/10.1007/s42979-021-00840-0

2021-09-04

SN Computer Science

Abstract:Smart plug-in electrical vehicles (PEVs) have recently become essential components of the energy storage units (ESUs) in a smart power grid network. ESUs need to frequently communicate with charging stations for authentication before their battery systems are securely and efficiently charged. In this paper, an efficient lightweight hardware-assisted authentication and key management framework for ESU based charging coordination system is proposed. The framework integrates a hybrid lightweight arbiter linear feedback shift register (ALFSR) physical unclonable function and a low-cost advanced encryption standard (AES) for more secure, trusted, and robust secret key scheme. The scheme is implemented and validated on a reprogrammable device using 28 nm Field Programmable Gate Arrays (FPGA) platform. The results demonstrate that our framework can generate inherently unique and reliable secret keys. The proposed scheme is efficient in terms of key storage requirements and satisfies the authentication time of five security levels required by National Institute of Standards and Technology (NIST). Furthermore, the resilience of the proposed ALFSR is analyzed against ML modeling attacks, including k-nearest neighbor (kNN), kernel support vector machines (KernelSVM), and artificial neural network (ANN) which aim to clone the PUF behavior and compromise the secret key. The preliminary results demonstrate that the ALFSR PUF design is less vulnerable to kNN and SVM ML attacks as compared to ANN attacks.

Cong Wang,Xiaohang Li,Maode Ma,Tong Zhou,Guangquan Xu,Naixue Xiong,Yiying Zhang

DOI: https://doi.org/10.1002/ett.4752

IF: 3.6

2023-03-12

Transactions on Emerging Telecommunications Technologies

Abstract:A novel and efficient named as Provably Secure Authenticated Key agreement (PSAK) scheme based on the extended Chebyshev chaotic map for the SG is designed. The proposed PSAK scheme can provide an anonymity protection for the SMs to achieve a perfect forward secrecy with high efficiency. Smart grid (SG) has attracted great attention for its reliability, sustainability, and efficiency, which uses artificial intelligence technology, automation technology, and Internet of Things (IoT) technology. In SG, it is crucial to set up a secure communication between an Aggregator (AG) and a Smart Meter (SM) to achieve mutual authentication and key agreement. However, most previous authentication and key management solutions have their own shortcomings in either security or efficiency, which make them difficult to satisfy the security requirements of SG. In this paper, in order to balance the security and efficiency, we propose an efficient and provably secure authenticated key agreement scheme based on the extended Chebyshev chaotic maps for SG environments. The AG and SM can conduct a mutual authentication and key agreement process by applying the extended Chebyshev polynomial operations to reduce the total calculation delay. The proposed scheme provides anonymity protection for SMs to achieve perfect forward secrecy and can resist to the typical attacks including replay attacks and identity forgery attacks by informal security analysis. The security properties are evaluated by using the Canetti and Krawczyk (CK) adversary model. The performance comparison demonstrates that the proposed scheme is efficient and the required security attributes are not compromised.

telecommunications

Aijuan Wang,Junyang Li,Hai Nan

DOI: https://doi.org/10.1109/access.2022.3228905

IF: 3.9

2023-02-18

IEEE Access

Abstract:There are many security risks in the communication between the various nodes of the smart grid. Among these security risks, data leakage is a common one, which occurs in communicating between any two smart meters. In the existing studies, the data leakage is tackled by proposing various security strategies. In this paper, we propose a novel security communication scheme to ensure the security of transmission data between two smart meters against external malicious attacks. Specifically, an authentication scheme based on chaos theory is proposed for verifying the identity trustworthiness of smart meters. In the authentication phase, we use a chaos algorithm and a hash function to compute a shared session key that is used for authentication of both communicating parties, as well as for encryption of private information. Our proposed scheme implements a one-time session approach, i.e., each round of communication keys are unrelated to each other. In relevant validation experiments, we verify that the chaotic algorithm is sufficiently time efficient and compare the computational efficiency with other literature in terms of communication expenses, and the results prove that the proposed scheme is of lightweight nature. Finally we use the Proverif formal verification tool the BAN logic to verify the security as well as the feasibility of the proposed scheme.

computer science, information systems,telecommunications,engineering, electrical & electronic

Kumar Prateek,Meghashrita Das,Sairaaj Surve,Soumyadev Maity,Ruhul Amin

DOI: https://doi.org/10.1109/tnsm.2024.3357103

2024-01-01

IEEE Transactions on Network and Service Management

Abstract:Smart grids, steering an energy revolution through smart metering infrastructure, face cybersecurity threats and unauthorized access risks. Within these systems, classical authentication protocols validate identities, fostering trust and enabling access to authorized resources, while preventing unauthorized access. However, classical authentication protocols are predominantly dependent on public-key cryptography, rooted in computational hard problems such as integer factorization and discrete logs to uphold security. Nevertheless, these computational hard problems can be easily compromised by quantum adversaries. Furthermore, quantum-resistant smart meter authentication protocols are either deemed impractical or reliant on quantum hard problems, potentially lacking future-proof security. Moreover, maintaining SG entity privacy holds equal significance. Consequently, this article introduces the Quantum-Secure Privacy-Preserving Smart Meter Authentication (Q-Secure-P2-SMA) protocol. It utilizes semi-quantum key distribution and a hash function to facilitate quantum-resistant metering data communication, with a focus on privacy and practicality. The security analysis and performance evaluation conducted for Q-Secure-P2-SMA confirm its resilience against well-known security threats, showcasing improved efficiency compared to existing state-of-art-protocols across computation, communication, and energy overhead. Notably, the Q-Secure-P2-SMA doesn’t necessitate quantum capability among all SG entities, making it more practical and relevant in real-world scenarios.

computer science, information systems

Hala Ali,Irfan Ahmed

DOI: https://doi.org/10.1016/j.cose.2024.103770

IF: 5.105

2024-02-23

Computers & Security

Abstract:Fog computing is a new computing model with limited resources located near the Internet of Things (IoT) devices to provide low transmission delay, mobility, and location awareness services. However, fog technology not only extends the cloud resources but also inherits the cloud properties and its security problems, such as device capture, man-in-the-middle, secret key compromise, identity impersonation, and message replay attacks. These vulnerabilities pose significant risks to the integrity of IoT-fog communications. However, the existing mutual authentication approaches either suffer from high computational overheads or fail to provide secure mutual authentication. To address this gap, this paper introduces LAAKA , a Lightweight Anonymous Authentication and Key Agreement scheme. LAAKA considers the constrained resources of IoT and fog devices through utilizing lightweight operations such as hash function and bitwise XOR. Its main objective is to facilitate mutual authentication and establish secure session keys between IoT devices and fog servers, making it useful for various IoT applications. We validate the robustness of LAAKA against various security threats by conducting comprehensive formal security analysis, including BAN logic and the Random Oracle Model (ROM), as well as informal analysis. The efficacy of our scheme is further demonstrated through evaluation with the Scyther tool. Compared to other proposed authentication approaches, the results demonstrate the superior performance and efficiency of our approach in enhancing the security features, minimizing the computational cost, and optimizing storage utilization.

computer science, information systems

Sushmita Ruj,Amiya Nayak

DOI: https://doi.org/10.1109/tsg.2012.2224389

IF: 10.275

2013-03-01

IEEE Transactions on Smart Grid

Abstract:We propose a decentralized security framework for smart grids that supports data aggregation and access control. Data can be aggregated by home area network (HAN), building area network (BAN), and neighboring area network (NAN) in such a way that the privacy of customers is protected. We use homomorphic encryption technique to achieve this. The consumer data that is collected is sent to the substations where it is monitored by remote terminal units (RTU). The proposed access control mechanism uses attribute-based encryption (ABE) which gives selective access to consumer data stored in data repositories and used by different smart grid users. RTUs and users have attributes and cryptographic keys distributed by several key distribution centers (KDC). RTUs send data encrypted under a set of attributes. Since RTUs are maintained in the substations they are well protected in control rooms and are assumed to be trusted. Users can decrypt information provided they have valid attributes. The access control scheme is distributed in nature and does not rely on a single KDC to distribute the keys which makes the approach robust. To the best of our knowledge, ours is the first work on smart grids, which integrates these two important security components (privacy preserving data aggregation and access control) and the first paper which addresses access control in smart grids.

engineering, electrical & electronic

Xiaojun Zhang,Chao Huang,Chunxiang Xu,Yuan Zhang,Jingwei Zhang,Huaxiong Wang

DOI: https://doi.org/10.1109/jiot.2020.3047958

IF: 10.6

2021-05-15

IEEE Internet of Things Journal

Abstract:In this article, we analyze the inherent characteristics of smart grids, and point out that some electricity consumption data are very sensitive and should be encrypted. However, once the corresponding private key is compromised, the content of encrypted data would be leaked, thereby violating users' privacy. Additionally, since a control center (CC) is always required to conduct accurate statistic analysis on these data for subsequent services, it is highly demanded for CC to check the integrity of encrypted data. To this end, based on a modified Boneh–Goh–Nissim (BGN) cryptosystem, we propose a key-leakage resilient encrypted data aggregation (KLR-EDA) scheme with lightweight verification in fog-assisted smart grids. KLR-EDA enables each fog node to aggregate first-level verifiable encrypted data from smart meters in the same grid area, and forward them to the cloud server (CS) for long-term storage. Upon receiving flexible challenging list of fog nodes from CC, CS produces second-level verifiable encrypted aggregated data and returns the results to CC. KLR-EDA enables CC to check the integrity of encrypted aggregated data efficiently, and further obtain the statistic analysis results on the aggregated data without learning any information of individual user. In particular, even the private key of CC is exposed or compromised, any adversary cannot break users' privacy. We provide security analysis of KLR-EDA, and conduct performance evaluation to demonstrate its lightweight statistical analysis and verification advantages on the CC side.

computer science, information systems,telecommunications,engineering, electrical & electronic

Rajakumar Arul,Gunasekaran Raja,Ali Kashif Bashir,Junaid Chaudry,Amjad Ali

DOI: https://doi.org/10.48550/arXiv.1905.07607

2019-05-18

Networking and Internet Architecture

Abstract:The growing popularity of multimedia applications, pervasive connectivity, higher bandwidth, and euphoric technology penetration among the bulk of the human race that happens to be cellular technology users, has fueled the adaptation to Long Term Evolution (LTE)/ System Architecture Evolution (SAE). The LTE fulfills the resource demands of the next generation applications for now. We identify security issues in the authentication mechanism used in LTE that without countermeasures might give superuser rights to unauthorized users. The LTE uses static LTE Key (LTE-K) to derive the entire key hierarchy such as LTE follows Evolved Packet System-Authentication and Key Agreement (EPS-AKA) based authentication which discloses user identity, location, and other Personally Identifiable Information (PII). To counter this, we propose a public key cryptosystem named International mobile subscriber identity Protected Console Grid-based Authentication and Key Agreement (IPG-AKA) protocol to address the vulnerabilities related to weak key management. From the data obtained from threat modeling and simulation results, we claim that the IPG-AKA scheme not only improves the security of authentication procedures, it also shows improvements in authentication loads and reduction in key generation time. The empirical results and qualitative analysis presented in this paper proves that IPG-AKA improves security in authentication procedure and performance in the LTE.