Post-quantum cryptographic authentication protocol for industrial IoT using lattice-based cryptography
摘要
The integration of NIST-standardized lattice-based cryptographic algorithms (ML-KEM and ML-DSA) into TLS 1.3 enables post-quantum secure authentication for Industrial IoT (IIoT) environments. This work implements these algorithms within the X.509 certificate infrastructure and evaluates their performance on resource-constrained IIoT hardware (Raspberry Pi 4). Experimental measurements covering key generation, encapsulation, decapsulation, and signature operations were obtained using a liboqs-enabled TLS 1.3 stack. The results show that PQ TLS 1.3 achieves comparable handshake latency to conventional TLS on IIoT-class gateways, with certificate size identified as the dominant overhead. These findings confirm the practicality of post-quantum authentication in IIoT systems while acknowledging limitations related to the hardware scope and simulated networking. Future work will extend validation to field deployments and additional PQC candidates.