A network-independent tool-based usable authentication system for Internet of Things devices
- 주제(키워드) Authentication system , DigitalSeal , Gateway security , Internet of Things (IoT) , IoT security
- 관리정보기술 faculty
- 등재 SCIE, SCOPUS
- 발행기관 Elsevier Ltd
- 발행년도 2021
- 세부유형 리뷰
- URI http://www.dcollection.net/handler/ewha/000000182146
- 본문언어 영어
- Published As http://dx.doi.org/10.1016/j.cose.2021.102338
- 저작권 이화여자대학교 논문은 저작권에 의해 보호받습니다.
초록/요약
In this paper, we introduce a hardware-based system with a protocol realization to authenticate Internet of Things (IoT) devices. DigitalSeal is a novel standalone network-independent authentication tool implemented using an Arduino UNO and various components. DigitalSeal ’s I/O elements read a barcode and display a barcode data and its corresponding HMAC, which are used for authentication. DigitalSeal can manage cryptographic keys securely and provide a data integrity in order to defend against Man-in-the-Middle (MitM) and Man-in-the-Browser (MitB) attacks. Moreover, DigitalSeal can be used in various applications, such as an authentication system or protocol, an online/offline transaction, a login session, and an IoT device authentication. Using DigitalSeal, we propose a new protocol for IoT device authentication, providing various security benefits and reducing the burden of key maintenance for a large number of IoT devices. Our authentication protocol realization with DigitalSeal provides a convenient method for securely managing password for multiple IoT devices, prevents unauthorized IoT devices from connecting to the user's gateway (an IoT home/enterprise network), and secures the communication between the IoT device and the gateway. Our system and associated protocol are both cost-effective and usable. According to our experiments, most users are able to obtain the authentication credential (the HMAC) within 3 seconds with more than 93% accuracy using DigitalSeal. © 2021
more