Cardiff University | Prifysgol Caerdydd ORCA
Online Research @ Cardiff 
WelshClear Cookie - decide language by browser settings

PUFDCA: A Zero-trust based IoT device continuous authentication protocol

Alshomrani, Shrooq and Li, Shancang 2022. PUFDCA: A Zero-trust based IoT device continuous authentication protocol. Wireless Communications and Mobile Computing

[thumbnail of WCMC_PUFDCA_Accept.pdf]
Preview
PDF - Accepted Post-Print Version
Available under License Creative Commons Attribution.

Download (686kB) | Preview

Abstract

It is very challenging to secure the Internet of Things (IoT) systems, which demands an end-to-end approach from the edge devices to cloud or hybrid service. The exponential growth besides the simple and low-cost nature of IoT devices has made IoT system an attractive target for several types of security attacks such as {\it impersonation, spoofing, DDoD, etc.} attacks. This work aims to enhance the IoT security using a Zero-Trust (ZT) approach by proposing a Physical Unclonable Function based Device Continuous Authentication (PUFDCA). The PUFDCA provides two kinds of authentications to verify the identity of the IoT device, static authentication to verify the identity before starting the session using PUF technology and continuous authentication to verify the location of the device during the session to ensure the authenticated device is not changed. The security analysis and verification tool results demonstrate that the proposed protocol is secure against a range of common IoT attacks. In addition, PUFDCA considered lightweight and consumes low energy and storage.

Item Type: Article
Status: In Press
Schools: Computer Science & Informatics
Publisher: Hindawi
ISSN: 1530-8669
Date of First Compliant Deposit: 2 November 2022
Last Modified: 03 Nov 2022 15:34
URI: https://orca.cardiff.ac.uk/id/eprint/153958

Actions (repository staff only)

Edit Item Edit Item

Downloads

Downloads per month over past year

View more statistics