nach oben

International Journal of Information Security

Erschienen in:

07.05.2022 | regular contribution

Security analysis on “Three-factor authentication protocol using physical unclonable function for IoV”

verfasst von: Ilyes Ahmim, Nacira Ghoualmi-Zine, Ahmed Ahmim, Marwa Ahmim

Erschienen in: International Journal of Information Security | Ausgabe 5/2022

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

The advent of the Internet of Things has enriched the network field with new themes, among which we find the Internet of Vehicles (IoV). IoV improved the various smart traffic applications for management or security. It makes vehicles autonomously deal with the unexpected by sharing various resources like critical information, computing resources, etc. Nonetheless and as a user of current network technologies, IoV suffers from the same vulnerabilities of these technologies, which makes it vulnerable to various kinds of attacks that affect security and privacy. To overcome these new challenges, researchers have considered different IoV authentication protocols. However, most of them are compromised and contain real security problems. Dealing with IoV authentication protocol security flaws is a real challenge. Recently, Jiang et al. (Comput Commun 173:45–55, 2021) designed a three-factor authentication protocol for IoV environment. The proposed protocol combines lightweight operations that include elliptic curve cryptography, hash function, physically unclonable function, concatenation on one side, and XOR operation on the other side. Contrariwise, it contains several flaws. In this paper, we detailed the security analysis of Jiang et al. protocol that proves the limit of security guarantees between only user and data center due to the possibility for an adversary to deduce a session key shared between vehicle sensor and data center and between vehicle sensor and user. Moreover, regarding these limitations, we propose an improvement to remedy all the said security pitfalls.

Vorheriger Artikel BitCracker: BitLocker meets GPUs

Nächster Artikel Algorithm substitution attacks against receivers

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Qureshi, K.N., Din, S., Jeon, G., Piccialli, F.: Internet of vehicles: key technologies, network model, solutions and challenges with future aspects. IEEE Trans. Intell. Transp. Syst. 22(3), 1777–1786 (2021). https://doi.org/10.1109/TITS.2020.2994972CrossRef

Zhou, J., Tian, D., Wang, Y., Sheng, Z., Duan, X., Leung, V.C.: Reliability-optimal cooperative communication and computing in connected vehicle systems. IEEE Trans. Mob. Comput. 19(5), 1216–1232 (2020). https://doi.org/10.1109/TMC.2019.2907491CrossRef

Jiang, Q., Zhang, X., Zhang, N., Tian, Y., Ma, X., Ma, J.: Three-factor authentication protocol using physical unclonable function for IoV. Comput. Commun. 173, 45–55 (2021)CrossRef

Cheng, J., Yuan, G., Zhou, M., Gao, S., Liu, C., Duan, H., Zeng, Q.: Accessibility analysis and modeling for IoV in an urban scene. IEEE Trans. Veh. Technol. 69(4), 4246–4256 (2020). https://doi.org/10.1109/TVT.2020.2970553CrossRef

Wang, J., Jiang, C., Han, Z., Ren, Y., Hanzo, L.: Internet of vehicles: sensing-aided transportation information collection and diffusion. IEEE Trans. Veh. Technol. 67(5), 3813–3825 (2018). https://doi.org/10.1109/TVT.2018.2796443CrossRef

Saleem, M.A., Mahmood, K., Kumari, S.: Comments on “AKM-IoV: authenticated key management protocol in fog computing-based internet of vehicles deployment”. IEEE Internet Things J. 7(5), 4671–4675 (2020). https://doi.org/10.1109/JIOT.2020.2975207

Saleem, M.A., Hamshad, S., Ahmed, S., Ghaffar, Z., Mahmood, K.: Security analysis on “A secure three-factor user authentication protocol with forward secrecy for wireless medical sensor network systems’’. IEEE Syst J 2, 1–3 (2021). https://doi.org/10.1109/JSYST.2021.3073537CrossRef

Mahmood, K., Shamshad, S., Kumari, S., Khan, M.K., Obaidat, M.S.: Comment on “lightweight secure message broadcasting protocol for vehicle-to-vehicle communication’’. IEEE Syst. J. 15(1), 1366–1368 (2021). https://doi.org/10.1109/JSYST.2020.3029895CrossRef

Akram, M.A., Mahmood, K., Kumari, S., Xiong, H.: Comments on “toward secure and provable authentication for internet of things: realizing industry 4.0. IEEE Internet Things J 7(5), 4676–4681 (2020). https://doi.org/10.1109/JIOT.2020.2977475CrossRef

10.

Shamshad, S., Mahmood, K., Kumari, S., Khan, M.K.: Comments on “Insider attack protection: Lightweight password-based authentication techniques using ECC’’. IEEE Syst. J. 15(1), 877–880 (2021). https://doi.org/10.1109/JSYST.2020.2986377CrossRef

11.

Wazid, M., Bagga, P., Das, A.K., Shetty, S., Rodrigues, J.J.P.C., Park, Y.: AKM-IoV: authenticated key management protocol in fog computing-based internet of vehicles deployment. IEEE Internet Things J. 6(5), 8804–8817 (2019). https://doi.org/10.1109/JIOT.2019.2923611CrossRef

12.

Butun, I., Österberg, P., Song, H.: Security of the internet of things: vulnerabilities, attacks, and countermeasures. IEEE Commun. Surv. Tutor. 22(1), 616–644 (2020). https://doi.org/10.1109/COMST.2019.2953364CrossRef

13.

Masood, A., Lakew, D.S., Cho, S.: Security and privacy challenges in connected vehicular cloud computing. IEEE Commun. Surv. Tutor. 22(4), 2725–2764 (2020). https://doi.org/10.1109/COMST.2020.3012961CrossRef

Titel: Security analysis on “Three-factor authentication protocol using physical unclonable function for IoV”
verfasst von: Ilyes Ahmim
Nacira Ghoualmi-Zine
Ahmed Ahmim
Marwa Ahmim
Publikationsdatum: 07.05.2022
Verlag: Springer Berlin Heidelberg
Erschienen in: International Journal of Information Security / Ausgabe 5/2022
Print ISSN: 1615-5262
Elektronische ISSN: 1615-5270
DOI: https://doi.org/10.1007/s10207-022-00595-6

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Technik"

Springer Professional "Wirtschaft+Technik"

Springer Professional "Wirtschaft"

Weitere Artikel der Ausgabe 5/2022

BitCracker: BitLocker meets GPUs

The SAINT observatory subsystem: an open-source intelligence tool for uncovering cybersecurity threats

Highly private blockchain-based management system for digital COVID-19 certificates

ANS-based compression and encryption with 128-bit security

An anonymous and unlinkable electronic toll collection system

Lib2Desc: automatic generation of security-centric Android app descriptions using third-party libraries

Premium Partner