期刊
COMPUTER NETWORKS
卷 101, 期 -, 页码 42-62出版社
ELSEVIER
DOI: 10.1016/j.comnet.2016.01.006
关键词
Anonymity preserving; Key exchange protocol; Wireless sensor network; Internet of Things; Sensor node; Gateway node
类别
资金
- Indian School of Mines, Dhanbad, India
- OPERA award, BITS Pilani, Rajasthan, India
- Deanship of Scientific Research at King Saud University [PRG-1436-16]
- National Natural Science Foundation of China [61305010]
- Science and Technology Research Project of Education Department of Jiangxi Province [GJJ150715]
- Voyage Project of Jiangxi Province [201450]
- Open Foundation of Key Laboratory of Jiangxi Province for Image Processing and Pattern Recognition
- Key Foundation of Sichuan Development Research Center of Cultural Industries [WHCY2014A9]
Recently, Farash et al. pointed out some security weaknesses of Turkanovic et al.'s protocol, which they extended to enhance its security. However, we found some problems with Farash et al.'s protocol, such as a known session-specific temporary information attack, an off-line password-guessing attack using a stolen-smartcard, a new-smartcard-issue attack, and a user-impersonation attack. Additionally, their protocol cannot preserve user anonymity, and the secret key of the gateway node is insecure. The main intention of this paper is to design an efficient and robust smartcard-based user authentication and session key agreement protocol for wireless sensor networks that use the Internet of Things. We analyze its security, proving that our protocol not only overcomes the weaknesses of Farash et al.'s protocol, but also preserves additional security attributes, such as the identity change and smartcard revocation phases. Moreover, the results of a simulation using AVISPA show that our protocol is secure against active and passive attacks. The security and performance of our work are also compared with a number of related protocols. (C) 2016 Elsevier B.V. All rights reserved.
作者
我是这篇论文的作者
点击您的名字以认领此论文并将其添加到您的个人资料中。
推荐
暂无数据