Abstract
Internet of things is an evolving technology which connects multiple embedded devices with a remote server over Internet. Due to limited capacity of embedded devices, it is important to delegate resources from third-party platform. Lots of research is going on to connect IoT devices to a wide resource pool such as cloud. This integration of IoT with cloud services has enormous possibility for future as resource-intensive processes can be delegated to cloud platform instead of executing in IoT node. This paper proposes a lightweight three-way authentication scheme for IoT in cloud where mutual authentication between IoT node and user’s smart device is performed by remote IoT gateway in cloud. The proposed scheme uses a three-factor user authentication to prevent device theft attack and ECC-based communication protocols to ensure less computation and communication overhead. Moreover, the proposed scheme is analysed to show that it is secure against existing relevant cryptographic attacks.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
A. Botta, W. De Donato, V. Persico, A. Pescapé, Integration of cloud computing and internet of things: a survey. Future Gener. Comput. Syst. 56, 684–700 (2016)
R.H. Weber, R. Weber, in Internet of Things, vol. 12 (Springer, New York, NY, USA) (2010)
P. Mell, T. Grance, in The NIST Definition of Cloud Computing (2011)
T. Bhattasali, R. Chaki, N. Chaki, in Secure and Trusted Cloud of Things. Annual IEEE In India Conference (INDICON) (2013), pp. 1–6
J. Zhou, T. Leppanen, E. Harjula, M. Ylianttila, T. Ojala, C. Yu, L.T. Yang, in CloudOfThings: A Common Architecture for Integrating the Internet of Things with Cloud Computing. IEEE 17th International Conference Computer Supported Cooperative Work in Design (CSCWD) (2013), pp. 651–657
B. Kantarci, H.T. Mouftah, Trustworthy sensing for public safety in cloud-centric internet of things. IEEE Internet Things J. 1(4), 360–368 (2014)
C. Paar, J. Pelzl, in Understanding Cryptography: A Textbook for Students and Practitioners (Springer Science & Business Media, 2009)
D. Hankerson, A.J. Menezes, S. Vanstone, in Guide to Elliptic Curve Cryptography (Springer Science and Business Media, 2006)
V.S. Miller,in Use of Elliptic Curves in Cryptography. Conference on the Theory and Application of Cryptographic Techniques (Springer, Berlin, Heidelberg, 1985), pp. 417–426
N. Koblitz, Elliptic curve cryptosystems. Math. Comput. 48(177), 203–209 (1987)
L. Lamport, Password authentication with insecure communication. Commun. ACM 24(11), 770–772 (1981)
C.J. Mitchell, L. Chen, Comments on the S/KEY user authentication scheme. ACM SIGOPS Operating Syst. Rev. 30(4), 12–16 (1996)
M.L. Das, Two-factor user authentication in wireless sensor networks. IEEE Trans. Wireless Commun. 8(3), 1086–1090 (2009)
D. He, Y. Gao, S. Chan, C. Chen, J. Bu, An enhanced two-factor user authentication scheme in wireless sensor networks. Ad hoc Sens. Wireless Netw. 10(4), 361–371 (2010)
H. Khemissa, D. Tandjaoui, in A Novel Lightweight Authentication Scheme for Heterogeneous Wireless Sensor Networks in the Context of Internet of Things. Wireless Telecommunications Symposium (WTS) (IEEE, 2016), pp. 1–6
P.K. Dhillon, S. Kalra, A lightweight biometrics based remote user authentication scheme for IoT services. J. Inf. Secur. Appl. (2017)
A. Esfahani, G. Mantas, R. Matischek, F. B. Saghezchi, J. Rodriguez, A. Bicaku, J. Bastos, A lightweight authentication mechanism for M2M communications in industrial IoT environment. IEEE Internet Things J. (2017)
M.J. Dworkin, SHA-3 standard: Permutation-based hash and extendable-output functions. Fed. Inf. Process. Stds. (NIST FIPS)-202 (2015)
R. Venkatesan, S.M. Koon, M.H. Jakubowski, P. Moulin, in Robust Image Hashing. Proceedings of IEEE International Conference Image Processing, vol. 3 (2000), pp. 664–666
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Chatterjee, S., Samaddar, S.G. (2020). A Robust Lightweight ECC-Based Three-Way Authentication Scheme for IoT in Cloud. In: Elçi, A., Sa, P., Modi, C., Olague, G., Sahoo, M., Bakshi, S. (eds) Smart Computing Paradigms: New Progresses and Challenges. Advances in Intelligent Systems and Computing, vol 767. Springer, Singapore. https://doi.org/10.1007/978-981-13-9680-9_7
Download citation
DOI: https://doi.org/10.1007/978-981-13-9680-9_7
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-13-9679-3
Online ISBN: 978-981-13-9680-9
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)