Yuan Tian,Nanyijia Zhang,Jian Li

DOI: https://doi.org/10.3390/s24247990

IF: 3.9

2024-12-14

Sensors

Abstract:As Internet of Things (IoT) technology continues to advance, there is a growing awareness of IoT security within the industry. Quantum communication technology can potentially significantly improve the communication security of IoT devices. Based on semi-quantum cryptography and utilizing single photons, this paper introduces two semi-quantum secure direct communication (SQSDC) protocols for use in smart door locks. Protocol 1 is more efficient, and the efficiency analysis shows that the communication efficiency is as high as 28.57%. Security analysis demonstrates the asymptotic security of the protocols, effectively resisting intercept–measure–resend attacks and entangle–measure attacks from potential eavesdroppers. The extended SQSDC protocol (protocol 2) builds upon protocol 1 by enabling a single qubit to transmit two bits of information, resulting in a double efficiency outcome.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Yang Zhang,Yu Tang,Chaoyang Li,Hua Zhang,Haseeb Ahmad

DOI: https://doi.org/10.3390/s24134188

IF: 3.9

2024-06-28

Sensors

Abstract:The Internet of Things (IoT) plays an essential role in people's daily lives, such as healthcare, home, traffic, industry, and so on. With the increase in IoT devices, there emerge many security issues of data loss, privacy leakage, and information temper in IoT network applications. Even with the development of quantum computing, most current information systems are weak to quantum attacks with traditional cryptographic algorithms. This paper first establishes a general security model for these IoT network applications, which comprises the blockchain and a post-quantum secure identity-based signature (PQ-IDS) scheme. This model divides these IoT networks into three layers: perceptual, network, and application, which can protect data security and user privacy in the whole data-sharing process. The proposed PQ-IDS scheme is based on lattice cryptography. Bimodal Gaussian distribution and the discrete Gaussian sample algorithm are applied to construct the fundamental difficulty problem of lattice assumption. This assumption can help resist the quantum attack for information exchange among IoT devices. Meanwhile, the signature mechanism with IoT devices' identity can guarantee non-repudiation of information signatures. Then, the security proof shows that the proposed PQ-IDS can obtain the security properties of unforgeability, non-repudiation, and non-transferability. The efficiency comparisons and performance evaluations show that the proposed PQ-IDS has good efficiency and practice in IoT network applications.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Yu-Jen Chen,Chien-Lung Hsu,Tzu-Wei Lin,Jung-San Lee

DOI: https://doi.org/10.3390/electronics13081575

IF: 2.9

2024-04-21

Electronics

Abstract:With the rapid development of Internet of Things (IoT) technology, the number of IoT users is growing year after year. IoT will become a part of our daily lives, so it is likely that the security of these devices will be an important issue in the future. Quantum computing is maturing, and the security threat associated with quantum computing will be faced in the transmissions of IoT devices, which mainly use wireless communication technologies. Therefore, to ensure the protection of transmitted data, a cryptographic algorithm that is efficient in defeating quantum computer attacks needs to be developed. In this paper, we propose a device authentication and secure communication system with post-quantum cryptography (PQC) for AIoT environments using the NTRU and Falcon signature mechanism, which can resist quantum computer attacks and be used in AIoT environments to effectively protect the confidentiality, integrity, and non-repudiation of transmitted data. We also used Raspberry Pi to simulate AIoT devices for implementation.

engineering, electrical & electronic,computer science, information systems,physics, applied

Dongfeng Fang,Yi Qian,Rose Qingyang Hu

DOI: https://doi.org/10.1109/jiot.2020.2970974

IF: 10.6

2020-04-01

IEEE Internet of Things Journal

Abstract:Internet-of-Things (IoT) applications have been rapidly deployed into pervasive environment, where both challenges and opportunities abound. On the one hand, a large number of IoT devices and their rich functions contribute significant volumes of data, which has brought tremendous convenience to the daily lives of end users. On the other hand, the heterogeneous IoT devices and a large amount of private information transmitted through networks also bring serious security and privacy issues. It is a big challenge to model IoT systems and trust relationships between different entities with a large number of heterogeneous IoT devices. In this article, we study a general IoT system architecture with consideration of heterogeneous IoT devices. Different trust models are proposed and analyzed based on the trust relationships between different entities in the IoT system. We propose a flexible and efficient authentication scheme with a consideration of heterogeneous IoT devices based on the least trust-required model. The proposed scheme provides security and privacy to resource-limited IoT devices flexibly and efficiently by utilizing IoT devices with better storage and computational ability. Moreover, secure data transmission is presented with contextual privacy and data integrity services. The proposed scheme achieves not only the mutual authentication, initial session key agreement, and data integrity but also anonymity, contextual privacy, forward security, end-to-end security, and key escrow resilience. Security analysis is presented to provide verification of the proposed protocol and security objectives. Moreover, performance evaluation is presented with comparison to the other schemes in terms of security features, computational overhead, and communication overhead. The performance comparisons show that our proposed scheme provides flexible and efficient security by consideration of heterogeneous IoT devices. With the higher proportion of resource-limited IoT devic-s, our proposed scheme outperforms other similar schemes.

computer science, information systems,telecommunications,engineering, electrical & electronic

Baofeng Ji,Yifan Liu,Ling Xing,Chunguo Li,Gaoyuan Zhang,Congzheng Han,Hong Wen,Shahid Mumtaz

DOI: https://doi.org/10.1109/iotm.001.2100178

2022-01-01

IEEE Internet of Things Magazine

Abstract:The Internet of Things(IoT) with artificial intelligence aims to build a network that enables smart devices to communicate autonomously and efficiently. It is one of the fastest-growing fields in the information era. It encompasses billions of smart devices worldwide. With the explosive growth of the number of Internet of Things access devices, the types of access network devices are also complex and diverse, especially the heterogeneity of the network is becoming more and more prominent. Faced with such a huge and complex network architecture and communication environment, the existing network security architecture is facing huge challenges. The paper first analyzes the existing three-tier architecture of the IoT and possible security issues, including DDoS Attack, Replay Attack, SQL Injection, Man-in-The-Middle Attacks, and illegal Access. Internet security solutions, including Security Framework, Security Routing Protocol, Authentication Protocol, Data Encryption Transfer & Storage, Key Exchange Protocol and Intrusion Detection, and then explore the possible applications of quantum computing and quantum communication in IoT security, including Quantum Security Hardware Used in IoT, Quantum Key Distribution (QKD) in IoT, Intrusion Detection During QKD with Deep Learning (DL) and Data Encryption Protocol in IoT Based On Quantum Walks (QW), and finally discussed the opportunities and trends of existing security solutions for the IoT Challenges, these challenges and trends can be used as potential research directions for future IoT security.

Diksha Chawla,Pawan Singh Mehra

DOI: https://doi.org/10.1002/ett.4957

IF: 3.6

2024-03-13

Transactions on Emerging Telecommunications Technologies

Abstract:Abstract The constant evolution of the Internet of Things (IoT) concept involves the idea that all elements in the global network communication are reachable without the need for human intervention. In this context, the paramount concern is security, aiming to safeguard IoT communication against unauthorized access. According to the analysis, the security of the IoT communication framework relies on traditional cryptographic schemes like the RSA algorithm. Nevertheless, the latest developments in quantum computing and information processing pose a significant threat to these established schemes. Motivated by this fact, in this article, we proposed a novel quantum authentication and key agreement (QAKA) protocol that provides unconditional security against any classical and futuristic quantum threats. Our protocol ensures secure key agreement and mutual authentication based on quantum hashing with quantum passwords and quantum key distribution. The proposed scheme utilizes quantum teleportation and Greenberger–Horne–Zeilinger states for secure data transfer among entities. Our work is simulated using the Automated Validation of Internet Security Protocols and Applications tool to prove our protocol's formal correctness and security. The Burrows, Abadi, and Needham logic is applied to prove the goal of our protocol. Random oracle model for formal security analysis is presented in our work. Our protocol is also informally analyzed, considering the characteristics such as correctness, security against repudiation and the impossibility of cloning. The proposed protocol is compared with the related protocols in terms of various security features such as replay attacks, man‐in‐middle attacks and futuristic quantum attacks. Finally, the performance of the proposed protocol is presented, revealing superior efficacy when compared with classical authentication schemes and quantum protocols.

telecommunications

Song Wang,Yuanzhi Li,Jinhui Ma,Bin Xu,Yuxiang Bian,Wei Chen

DOI: https://doi.org/10.1007/978-981-99-9243-0_38

2024-01-01

Abstract:Quantum identity authentication protocols are designed to address the security weaknesses existing in traditional identity authentication protocols, such as cryptographic attacks and impersonation. Arindam et al. proposed a quantum authentication protocol based on ping-pong technology. This paper is inspired by the work of Arindam et al., an improved quantum identity authentication protocol based on quantum secure direct communication (QSDC) which utilizes the principle that qubits cannot be cloned to realize the secure transmission of qubits sequences is proposed. The authentication process between the two sides of the communication is implemented by ping-pong technology. With longer authentication code and richer measurement bases, the security of our protocol is strengthened. Moreover, the proposed protocol is based on single-particle sequence, it has better operability and simple implementation. Finally, we analyze two cases of attacks against the authentication process, to show whether it is for eavesdropper attack of forged identity or stealing authentication code and then sending attack, the protocol proposed has higher security.

Hongfei Zhu,Yu-an Tan,Liehuang Zhu,Xianmin Wang,Quanxin Zhang,Yuanzhang Li

DOI: https://doi.org/10.3390/s18051663

IF: 3.9

2018-01-01

Sensors

Abstract:With the development of wireless sensor networks, IoT devices are crucial for the Smart City; these devices change people's lives such as e-payment and e-voting systems. However, in these two systems, the state-of-art authentication protocols based on traditional number theory cannot defeat a quantum computer attack. In order to protect user privacy and guarantee trustworthy of big data, we propose a new identity-based blind signature scheme based on number theorem research unit lattice, this scheme mainly uses a rejection sampling theorem instead of constructing a trapdoor. Meanwhile, this scheme does not depend on complex public key infrastructure and can resist quantum computer attack. Then we design an e-payment protocol using the proposed scheme. Furthermore, we prove our scheme is secure in the random oracle, and satisfies confidentiality, integrity, and non-repudiation. Finally, we demonstrate that the proposed scheme outperforms the other traditional existing identity-based blind signature schemes in signing speed and verification speed, outperforms the other lattice-based blind signature in signing speed, verification speed, and signing secret key size.

Teng Cheng,Zexu Wu,Chuansu Wang,Qin Shi,Xing Zhang,Peiling Xu

DOI: https://doi.org/10.1109/tvt.2024.3382100

IF: 6.8

2024-01-01

IEEE Transactions on Vehicular Technology

Abstract:The Internet of Vehicles (IoV) technology has recently emerged as a popular area of research, and vehicle-to-cloud communication forms the basis of the IoV. This process involves uploading a large amount of information related to the vehicle and its location. The security of vehicle-to-cloud communication thus has a significant impact on the safety of the IoV. This paper proposes a vehicle-to-cloud communication system based on lightweight authentication and extended Quantum Key Distribution. The system supports the wireless distribution of session keys between vehicles and the Quantum Cloud Server (QCS) by using a WAN (Wide Area Network), and supports the wired transmission of quantum keys between the QCS and the Telematics Service Provider (TSP) through a LAN (Local Area Network) by using the BB84 protocol. The system can implement encrypted communication based on quantum physical security in a hybrid network. Moreover, we propose a lightweight identity authentication scheme. An analysis of its performance shows that the proposed system requires a small amount of computation and incurs a low communication overhead. This scheme is applicable to most Internet devices with low computing and communication capacity, and can potentially be used in the IoV framework. We conducted simulations of the proposed system and experiments to test its performance. The maximum average delay in communication in experiments was 40.681 ms and the maximum rate of packet loss was 0.1222%. The proposed system can thus ensure safe and efficient IoV communication.

telecommunications,engineering, electrical & electronic,transportation science & technology

Pengbo Xu,Huici Wu,Xiaofeng Tao,Chenyu Wang,Dajiang Chen,Guoshun Nan

DOI: https://doi.org/10.1109/jiot.2024.3353807

IF: 10.6

2024-01-01

IEEE Internet of Things Journal

Abstract:Internet of Things (IoT) is one of the most representative application scenarios in the 5G and 6G era. The concurrent access of massive IoT devices definitely poses enormous communication, computation, and certificate management challenges to the wireless authentication. Moreover, the emergence of quantum computing makes classical cryptography-based authentication protocols, such as 5G-AKA, more easier to be broken. Facing the challenges posed by the massive concurrent authentication and quantum attacks, this paper proposes a lattice cryptography based group authentication scheme, where lattice-based aggregate signature algorithm and identity-based encryption (IBE) are leveraged to achieve simultaneous authentication of concurrent accessed devices. The proposed authentication scheme eliminates the process of public key certificate management, greatly reducing the storage overhead of core network. Moreover, the utilization of lattice cryptography enables the resistance of quantum attacks. The proposed solution does not rely on additional security assumptions such as security channel or trusted group center, making it more flexible to be deployed in actual network scenario. Finally, formal security analysis of the proposed protocol is provided with the tool ProVerif. It is demonstrated that the proposed protocol can satisfy the goals of identity privacy, authentication, data confidentiality and forward secrecy. In addition, compared with existing advanced solutions, the outperformance of the proposed scheme in terms of computation overhead, signaling overhead, communication overhead, and security properties is validated with simulations.

computer science, information systems,telecommunications,engineering, electrical & electronic

Daojing He,Ziming Zhao,Sammy Chan,Mohsen Guizani

DOI: https://doi.org/10.1109/jiot.2022.3204410

IF: 10.6

2022-01-01

IEEE Internet of Things Journal

Abstract:The Internet of Things (IoT) is composed of a large number of miniaturized devices interconnected through the Internet. These devices, equipped with sensing, computing, and communication capabilities, can be used to remotely control the environment or the monitored infrastructure. However, IoT devices usually only have limited resources, and thus designing a lightweight security authentication protocol for them is a challenge. This article proposes an identity authentication protocol between embedded devices and server. The protocol uses the elliptic curve encryption algorithm and realizes the anonymity of the device by hashing their IDs and prevents the server from replay attacks by adding security attributes timestamp. We prove the security of the protocol and its resistance to security attacks and also formally verify it using the AVISPA tool. In addition, through experimental comparison with existing protocols, we demonstrate the performance superiority of the proposed protocol.

Dandan Li,Xiaohong Huang,Wei Huang,Fei Gao,Shen Yan

DOI: https://doi.org/10.1109/jiot.2020.3038928

IF: 10.6

2021-05-01

IEEE Internet of Things Journal

Abstract:The development of the Internet of Things (IoT) has brought various IoT services, which facilitate and enrich human life. All these services are at risk of privacy leakage. The privacy-preserving issue of IoT query, which is a typical service, has attracted much attention. A superior candidate for solving the above issue is classical cryptographic schemes based on the computational difficulty. With the advent of quantum computation, the security of such schemes may be broken by the strong ability of some advanced quantum algorithms. How to design a secure scheme for privacy-preserving query under the threat of quantum computation is crucial. To this end, we construct a general architecture of privacy-preserving query in IoT scenarios. Besides trust or honesty-but-curious models, we present a scheme for privacy-preserving query which is also valid in the scenario of untrusted devices. We provide a detailed security analysis. The result shows our scheme achieves private preservation of both service providers and clients.

computer science, information systems,telecommunications,engineering, electrical & electronic

Yongzhi Chen,Xiaojun Wen,Zhiwei Sun,Zoe L. Jiang,Junbin Fang

DOI: https://doi.org/10.1177/1550147718808487

IF: 1.938

2018-01-01

International Journal of Distributed Sensor Networks

Abstract:At present, wearable devices are in the ascendant in the field of personal smart communication terminals across the globe, but their information security issues deserve attention. We hereby propose a secure transmission solution that addresses the special requirements of wearable devices in information security. It is based on the principle of quantum secure communication and works well to protect sensitive information on wearable devices. The solution utilizes the coherence properties of quantum entanglement and uses quantum information security techniques such as quantum key distribution and non-orthogonal base measurement to realize secure transmission of sensitive information on wearable devices. Unlike traditional encryption methods based on the complexity of the mathematical algorithm, the solution has unconditional security.

Mohamed Shaban,Muhammad Ismail

2023-12-10

Abstract:Quantum Internet signifies a remarkable advancement in communication technology, harnessing the principles of quantum entanglement and superposition to facilitate unparalleled levels of security and efficient computations. Quantum communication can be achieved through the utilization of quantum entanglement. Through the exchange of entangled pairs between two entities, quantum communication becomes feasible, enabled by the process of quantum teleportation. Given the lossy nature of the channels and the exponential decoherence of the transmitted photons, a set of intermediate nodes can serve as quantum repeaters to perform entanglement swapping and directly entangle two distant nodes. Such quantum repeaters may be malicious and by setting up malicious entanglements, intermediate nodes can jeopardize the confidentiality of the quantum information exchanged between the two communication nodes. Hence, this paper proposes a quantum identity authentication protocol that protects quantum networks from malicious entanglements. Unlike the existing protocols, the proposed quantum authentication protocol does not require periodic refreshments of the shared secret keys. Simulation results demonstrate that the proposed protocol can detect malicious entanglements with a 100% probability after an average of 4 authentication rounds.

Quantum Physics,Cryptography and Security,Networking and Internet Architecture

Bai Liu,Xiangyi Zhang,Runhua Shi,Mingwu Zhang,Guoxing Zhang

DOI: https://doi.org/10.3390/math10122120

IF: 2.4

2022-01-01

Mathematics

Abstract:The rapid development of the Internet of Things (IoT), big data and artificial intelligence (AI) technology has brought extensive IoT services to entities. However, most IoT services carry the risk of leaking privacy. Privacy-preserving set intersection in IoT is used for a wide range of basic services, and its privacy protection issues have received widespread attention. The traditional candidate protocols to solve the privacy-preserving set intersection are classical encryption protocols based on computational difficulty. With the emergence of quantum computing, some advanced quantum algorithms may undermine the security and reliability of traditional protocols. Therefore, it is important to design more secure privacy-preserving set intersection protocols. In addition, identity information is also very important compared to data security. To this end, we propose a quantum privacy-preserving set intersection protocol for IoT scenarios, which has higher security and linear communication efficiency. This protocol can protect identity anonymity while protecting private data.

Shuailiang Zhang,Xiujuan Du,Xin Liu

DOI: https://doi.org/10.1007/s11276-023-03342-4

2023-01-01

Abstract:Handover authentication and key agreement protocol is extremely essential to ensure the security of the Internet of Things (IoT), and it enables mobile devices to access roaming services in the trust domain of the foreign agent. The energy and computing capabilities of mobile devices are extremely limited, and the requirements for storage and computing efficiency are higher in IoT. The problem of large integer decomposition and discrete logarithm can be solved in polynomial time on a quantum computer, which makes the massive traditional handover authentication and key agreement protocols based on bilinear pairing and elliptic curve cryptography no longer safe. Due to the participation of the home agent, the traditional handover authentication protocol has a long communication delay and is vulnerable to the session key compromise attacks. Moreover, the session key between the foreign agent and the home agent is randomly specified in advance, and its generation process is not given, which has poor security and is easy to cause the leakage of the session key. Lattice cipher based on NTRU is the lightweight public key primitive that can resist quantum attacks and has a faster calculation speed and smaller key length, which is more suitable for IoT. Therefore, we proposed a secure and lightweight two-party handover authentication protocol based on NTRU for the mobile device without the home agent to prevent these deficiencies. We employ the BAN logic to validate the correctness of the proposed protocol and utilize the random oracle model to evaluate the security of the proposed protocol. In contrast with other current handover authentication protocols, the proposed protocol has greater security, higher efficiency, and lower communication overhead.

Susovan Chanda,Ashish Kr. Luhach,J. Sharmila Anand Francis,Indranil Sengupta,Diptendu Sinha Roy

DOI: https://doi.org/10.1155/2024/5998163

2024-03-23

Wireless Communications and Mobile Computing

Abstract:The exponential growth of the Internet of Things (IoT) has led to a surge in data generation, critical for business decisions. Ensuring data authenticity and integrity over unsecured channels is vital, especially due to potential catastrophic consequences of tampered data. However, IoT's resource constraints and heterogeneous ecosystem present unique security challenges. Traditional public key infrastructure offers strong security but is resource intensive, while existing cloud-based solutions lack comprehensive security and rise to latency and unwanted wastage of energy. In this paper, we propose a universal authentication scheme using edge computing, incorporating fully hashed Elliptic Curve Menezes–Qu–Vanstone (ECMQV) and PUF. This approach provides a scalable and reliable solution. It also provides security against active attacks, addressing man-in-the-middle and impersonation threats. Experimental validation on a Zybo board confirms its effectiveness, offering a robust security solution for the IoT landscape.

computer science, information systems,telecommunications,engineering, electrical & electronic

Daojing He,Yanchang Cai,Shanshan Zhu,Ziming Zhao,Sammy Chan,Mohsen Guizani

DOI: https://doi.org/10.1109/twc.2023.3257028

IF: 10.4

2023-01-01

IEEE Transactions on Wireless Communications

Abstract:The number of IoT devices is growing rapidly, and the interaction between devices and servers is also more frequent. However, IoT devices are often at the edge of the network, which leads their communications with the server to be completely exposed, making it more vulnerable to attacks. Moreover, IoT devices have limited energy and computational resources. Therefore, we propose in this paper a lightweight authentication and key exchange protocol with anonymity for IoT devices. The proposed scheme supports mutual authentication between IoT devices and the server. We verify the security of the protocol through formal and informal analyses. Finally, we compare security and performance with other protocols, which shows that our protocol has the advantages of being lightweight and secure.

Sujit Biswas,Rajat Subhra Goswami,K. Hemant Kumar Reddy

DOI: https://doi.org/10.1007/s10586-024-04429-z

2024-04-23

Cluster Computing

Abstract:Smart cities, fueled by the Internet of Things (IoT), promise urban efficiency and convenience. However, it has also exposed vulnerabilities in the security and privacy of sensitive data transmitted and stored within these interconnected networks. The increasing frequency of cyberattacks and data breaches underscores the pressing need for innovative solutions to enhance the security of smart city IoT systems. This paper introduces a novel approach to bolstering IoT security in smart cities by adapting quantum cryptography principles. Leveraging quantum steganography, we conceal sensitive data within quantum streams. The proposed model provides a comprehensive solution that ensures the confidentiality, integrity, and authenticity of data within smart city IoT ecosystems. By combining quantum steganography, reversible decoding, customized encryption, privacy amplification, and cryptographic verification, this protocol fosters trust among stakeholders and supports the secure evolution of urban environments. This research offers a blueprint for securing IoT in smart cities, fostering trust, and enabling the safe evolution of urban environments.

computer science, information systems, theory & methods

Alawi A Al-Saggaf,Tarek Sheltami,Hoda Alkhzaimi,Gamil Ahmed

DOI: https://doi.org/10.1007/s13369-022-07235-0

Abstract:The healthcare ecosystem is migrating from legacy systems to the Internet of Things (IoT), resulting in a digital environment. This transformation has increased importance on demanding both secure and usable user authentication methods. Recently, a post-quantum fuzzy commitment scheme (PQFC) has been constructed as a reliable and efficient method of biometric template protection. This paper presents a new two-factor-based user authentication protocol for the IoT-enabled healthcare ecosystem in post-quantum computing environments using the PQFC scheme. The proposed protocol is proved to be secure using random oracle model. Furthermore, the functionality and security of the proposed protocol are analyzed, showing that memoryless-effortless, user anonymity, mutual authentication, and resistance to biometric templates tampering and stolen attacks, stolen smart card attack, privileged interior attack are fulfilled. The costs of storage requirement, computation, communication and storage are estimated. The results demonstrate that the proposed protocol is more efficient than Mukherjee et al., Chaudhary et al., and Gupta et al. protocols.