With the evolution of the Internet of Things (IoT), Elliptic Curve Cryptography (ECC) appears to be a highly effective solution for securing devices with limited resources. Since authentication helps prevent unauthorized access and misuse of data exchanged between IoT devices, numerous lightweight IoT authentication protocols have been introduced by researchers. Many IoT authentication schemes that rely on two-factor authentication often fall short in achieving important security goals. To address this challenge, we introduce a robust three-factor authentication scheme based on ECC to authenticate both ends of the communication. We validate the security of our scheme through informal analysis and formal verification using the AVISPA tool, demonstrating its resilience against known attacks. A comparative analysis reveals that our protocol outperforms existing schemes by offering higher functionality and enhanced security, all while maintaining minimal computational cost.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

An Efficient Multi-factor Authentication Scheme Based on Elliptic Curve Cryptography for Secure IoT Communication

  • Amal Benqassmi,
  • Mohamed Badiy,
  • Fatima Amounas,
  • Mourade Azrour,
  • Salma Bendaoud,
  • Hind Timouhin,
  • Ibtissam Essadik

摘要

With the evolution of the Internet of Things (IoT), Elliptic Curve Cryptography (ECC) appears to be a highly effective solution for securing devices with limited resources. Since authentication helps prevent unauthorized access and misuse of data exchanged between IoT devices, numerous lightweight IoT authentication protocols have been introduced by researchers. Many IoT authentication schemes that rely on two-factor authentication often fall short in achieving important security goals. To address this challenge, we introduce a robust three-factor authentication scheme based on ECC to authenticate both ends of the communication. We validate the security of our scheme through informal analysis and formal verification using the AVISPA tool, demonstrating its resilience against known attacks. A comparative analysis reveals that our protocol outperforms existing schemes by offering higher functionality and enhanced security, all while maintaining minimal computational cost.