Lightweight and Secure Password Based Smart Home Authentication Protocol: LSP-SHAP

Remote control his smart home from his mobile device is highly desirable for a mobile user. But, the sensor devices and the user mobile device communicate over an insecure communication channel. Therefore, various attacks are possible, such as impersonation attack, privileged-insider attack, mobile...

Full description

Saved in:
Bibliographic Details
Published in:Journal of network and systems management 2019-10, Vol.27 (4), p.1020-1042
Main Authors: Naoui, Sarra, Elhdhili, Mohamed Elhoucine, Saidane, Leila Azouz
Format: Article
Language:English
Subjects:
Authentication
Communications Engineering
Computer Communication Networks
Computer Science
Computer Systems Organization and Communication Networks
Cryptography
Curves
Cybersecurity
Data encryption
Denial of service attacks
Electronic devices
Information Systems and Communication Service
Lightweight
Mobile communication systems
Networks
Operations Research/Decision Theory
Performance evaluation
Remote control
Robustness (mathematics)
Sensors
Service introduction
Smart buildings
Smart houses
Weight reduction
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Remote control his smart home from his mobile device is highly desirable for a mobile user. But, the sensor devices and the user mobile device communicate over an insecure communication channel. Therefore, various attacks are possible, such as impersonation attack, privileged-insider attack, mobile device stolen attack, and the denial of service attack. In this case, an illegal user may gain access to the data sent by the smart devices. In the literature, most of the existing schemes for the remote user authentication are not secure enough with respect to the aforementioned attacks. In addition, they are not enough lightweight at the sensor device side. Therefore, there is a need to design a new secure and lightweight remote user authentication scheme, where only the authorized users may have access to the home sensor devices. So, in this paper, we propose a new secure and lightweight remote user authentication scheme for a smart home environment. For the derivation of a robust session key, we propose to use Elliptic Curve Cryptography. The solution is lightweight for resource-constrained devices with limited resources as the gateway node will assist in deriving the session key to the sensor device. The security of the proposed solution is proved using a formal security evaluation via the Scyther tool. Also, a performance evaluation is performed to show the effectiveness of our solution.
ISSN:1064-7570
1573-7705
DOI:10.1007/s10922-019-09496-x