<p>The integration of NIST-standardized lattice-based cryptographic algorithms (ML-KEM and ML-DSA) into TLS&#xa0;1.3 enables post-quantum secure authentication for Industrial IoT (IIoT) environments. This work implements these algorithms within the X.509 certificate infrastructure and evaluates their performance on resource-constrained IIoT hardware (Raspberry Pi 4). Experimental measurements covering key generation, encapsulation, decapsulation, and signature operations were obtained using a liboqs-enabled TLS&#xa0;1.3 stack. The results show that PQ TLS&#xa0;1.3 achieves comparable handshake latency to conventional TLS on IIoT-class gateways, with certificate size identified as the dominant overhead. These findings confirm the practicality of post-quantum authentication in IIoT systems while acknowledging limitations related to the hardware scope and simulated networking. Future work will extend validation to field deployments and additional PQC candidates.</p>

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Post-quantum cryptographic authentication protocol for industrial IoT using lattice-based cryptography

  • Abdul Basit Shahid,
  • Khwaja Mansoor,
  • Yawar Abbas Bangash,
  • Waseem Iqbal,
  • Shynar Mussiraliyeva

摘要

The integration of NIST-standardized lattice-based cryptographic algorithms (ML-KEM and ML-DSA) into TLS 1.3 enables post-quantum secure authentication for Industrial IoT (IIoT) environments. This work implements these algorithms within the X.509 certificate infrastructure and evaluates their performance on resource-constrained IIoT hardware (Raspberry Pi 4). Experimental measurements covering key generation, encapsulation, decapsulation, and signature operations were obtained using a liboqs-enabled TLS 1.3 stack. The results show that PQ TLS 1.3 achieves comparable handshake latency to conventional TLS on IIoT-class gateways, with certificate size identified as the dominant overhead. These findings confirm the practicality of post-quantum authentication in IIoT systems while acknowledging limitations related to the hardware scope and simulated networking. Future work will extend validation to field deployments and additional PQC candidates.