Sage Journals: Discover world-class research

Abstract

At present, Internet of Things (IoT) finds valuable application in the field of smart cards, smart grid, and intelligent transportation. However, security is a major concern of these IoT networks and there is a possibility for the information drip in the network. Thus, the major concerns in IoT networks are secure authentication and data integrity such that authentication and authorization are the two major countermeasures in the security paradigm, which manages, controls, and communicates a device. Accordingly, a multi-level authentication was proposed based on the memory and machine attributes-based profiling and elliptic curve cryptography. Additionally, adaptive level of authorization was developed based on data importance and feedback. Thus, this paper deliberates a systematic study and investigation of the authentication and authorization protocol. For evaluating the robustness of the method, various attacks, such as Distributed Denial of Service (DDOS), Denial of Service (DOS), Man in Middle, Reply Attack, Server Spoofing attack, stolen verifier attack, and Impersonation attack, are considered. The simulation of the methods is done using these attacks, and the analysis is progressed based on detection rate and detection time. The comparative analysis reveals the effectiveness of the methods against various attacks, discussing the security and the detection time.

Keywords

IoT networks authentication authorization attack analysis security

Get full access to this article

View all access options for this article.

References

Kinikar

and Terdal

, Implementation of open authentication protocol for IoT based application, in: Proceedings of the International Conference on Inventive Computation Technologies (ICICT), 2016, pp. 1–4.

Patel

D.R.

and Navik

A.P.

, Energy efficient integrated authentication and access control mechanisms for Internet of Things, in: Proceedings of the International Conference on Internet of Things and Applications (IOTA), 2016, pp. 304–309.

Bate

K.O.

Kumar

and Khatri

S.K.

, Framework for authentication and access control in IoT, in: Proceedings of the 2nd International Conference on Telecommunication and Networks (TEL-NET), 2017, pp. 1–6.

El-hajj

Chamoun

Fadlallah

and Serhrouchni

, Taxonomy of authentication techniques in Internet of Things (IoT), in: Proceedings of the 2017 IEEE 15th Student Conference on Research and Development (SCOReD), 2017, pp. 67–71.

El-hajj

Chamoun

Fadlallah

and Serhrouchni

, Analysis of authentication techniques in Internet of Things (IoT), in: Proceedings of the 1st Cyber Security in Networking Conference (CSNet), 2017, pp. 1–3.

Bernabe

J.B.

Ramos

J.L.H.

and Gomez

A.F.S.

, TACIoT: Multidimensional trust-aware access control system for the Internet of Things, Soft Computing 20 (2016), 1763–1779.

Gao

Guo

Cui

Hao

and Shi

, A communication protocol of RFID systems in internet of things, International Journal of Security and Its Applications 6 (2012), 91–102.

Zhao

L.K.

, A survey on the Internet of Things security, Computational Intelligence and Security 9 (2013), 663–667.

Granjal

Monteiro

and Silva

J.S.

, Security for the internet of things: A survey of existing protocols and open research issues, IEEE Communications Surveys and Tutorials 17 (2015), 1294–1312.

10.

Sathyadevan

Vejesh

Doss

and Pan

, Portguard – an authentication tool for securing ports in an IoT gateway, in: 2017 IEEE International Conference on Pervasive Computing and Communications Workshops (PerCom Workshops), 2017, pp. 624–629.

11.

Santos

G.L.

Guimarães

V.T.

Rodrigues

G.C.

Granville

L.Z.

and Tarouco

L.M.R.

, A DTLS-based security architecture for the Internet of Things, in: Proceedings of the Computers and Communication (ISCC), Larnaca, Cyprus, 2015, pp. 809–815.

12.

Mahmoud

Yousuf

Aloul

and Zualkernan

, Internet of Things (IoT) security: Current status, challenges and prospective measures, in: Proceedings of the 10𝑡ℎ International Conference for Internet Technology and Secured Transactions, London, 2015.

13.

Nastase

, Security in the Internet of Things: A survey on application layer protocols, in: Proceedings of the IEEE 21st International Conference on Control Systems and Computer Science (CSCS), Bucharest, Romania, 2017, pp. 659–666.

14.

Jog

V.V.

and Murugan

T.S.

, Memory and machine attributes-based profiling and elliptic curve cryptography-based multi-level authentication for the security of Internet of Things, International Journal of Intelligent Computing and Cybernetics 10 (2017), 241–256.

15.

Jog

V.V.

and Murugan

T.S.

, Data importance and feedback based adaptive level of authorization for the security of Internet of Things, Communicated.

16.

Wang

Zhao

and Long

, An improved mutual authentication and key update scheme for multi-hop relay in Internet of Things, in: Proceedings of 7th IEEE Conference on Industrial Electronics and Applications (ICIEA), 2017, pp. 1024–1029.

17.

Hummen

Shafagh

Razaz

and Voigt

, Delegation-based authentication and authorization for the IP-based Internet of Things, in: Proceedings of IEEE International Conference on Sensing, Communication, and Networking, 2014, pp. 284–292.

18.

Moosavi

S.R.

Gia

T.N.

and Rahmani

, SEA: A secure and efficient authentication and authorization architecture for IoT-based healthcare using smart gateways, Procedia Computer Science 52 (2015), 452–459.

19.

Ning

Liu

and Yang

L.T.

, Aggregated-proof based hierarchical authentication scheme for the Internet of Things, IEEE Transactions on Parallel and Distributed Systems 26 (2015), 657–667.

Systematic investigation and performance study of authentication and authorization techniques of Internet of Things

Abstract

Keywords

Get full access to this article

References