Alshomrani, Shrooq and Li, Shancang
2022.
PUFDCA: A Zero-trust based IoT device continuous authentication protocol.
Wireless Communications and Mobile Computing
2022
, 6367579.
10.1155/2022/6367579
|
Preview |
PDF
- Published Version
Available under License Creative Commons Attribution. Download (585kB) | Preview |
Abstract
It is very challenging to secure the Internet of Things (IoT) systems, which demands an end-to-end approach from the edge devices to cloud or hybrid service. The exponential growth besides the simple and low-cost nature of IoT devices has made IoT system an attractive target for several types of security attacks such as {\it impersonation, spoofing, DDoD, etc.} attacks. This work aims to enhance the IoT security using a Zero-Trust (ZT) approach by proposing a Physical Unclonable Function based Device Continuous Authentication (PUFDCA). The PUFDCA provides two kinds of authentications to verify the identity of the IoT device, static authentication to verify the identity before starting the session using PUF technology and continuous authentication to verify the location of the device during the session to ensure the authenticated device is not changed. The security analysis and verification tool results demonstrate that the proposed protocol is secure against a range of common IoT attacks. In addition, PUFDCA considered lightweight and consumes low energy and storage.
| Item Type: | Article |
|---|---|
| Date Type: | Publication |
| Status: | Published |
| Schools: | Computer Science & Informatics |
| Additional Information: | Published in Special Issue - Zero-trust Security for Industry 4.0 |
| Publisher: | Hindawi |
| ISSN: | 1530-8669 |
| Date of First Compliant Deposit: | 2 November 2022 |
| Date of Acceptance: | 9 September 2022 |
| Last Modified: | 08 May 2023 22:50 |
| URI: | https://orca.cardiff.ac.uk/id/eprint/153958 |
Actions (repository staff only)
 |
Edit Item |
Altmetric
Altmetric
Cardiff University Information Services