Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

AEAKA: An Adaptive and Efficient Authentication and Key Agreement Scheme for IoT in Cloud-Edge-Device Collaborative Environments

Kexian Liu, Jianfeng Guan, Xiaolong Hu, Jing Zhang, Jianli Liu, Hongke Zhang

TL;DR

An adaptive and efficient authentication and key agreement scheme (AEAKA) for Cloud-Edge-Device IoT environments is proposed, capable of automatically and dynamically initiating different authentication methods based on device requirements, and employs an edge-assisted authentication approach to reduce the load on third-party trust authorities.

Abstract

To meet the diverse needs of users, the rapid advancement of cloud-edge-device collaboration has become a standard practice. However, this complex environment, particularly in untrusted (non-collaborative) scenarios, presents numerous security challenges. Authentication acts as the first line of defense and is fundamental to addressing these issues. Although many authentication and key agreement schemes exist, they often face limitations, such as being tailored to overly specific scenarios where devices authenticate solely with either the edge or the cloud, or being unsuitable for resource-constrained devices. To address these challenges, we propose an adaptive and efficient authentication and key agreement scheme (AEAKA) for Cloud-Edge-Device IoT environments. This scheme is highly adaptive and scalable, capable of automatically and dynamically initiating different authentication methods based on device requirements. Additionally, it employs an edge-assisted authentication approach to reduce the load on third-party trust authorities. Furthermore, we introduce a hash-based algorithm for the authentication protocol, ensuring a lightweight method suitable for a wide range of resource-constrained devices while maintaining security. AEAKA ensures that entities use associated authentication credentials, enhancing the privacy of the authentication process. Security proofs and performance analyses demonstrate that AEAKA outperforms other methods in terms of security and authentication efficiency.

AEAKA: An Adaptive and Efficient Authentication and Key Agreement Scheme for IoT in Cloud-Edge-Device Collaborative Environments

TL;DR

An adaptive and efficient authentication and key agreement scheme (AEAKA) for Cloud-Edge-Device IoT environments is proposed, capable of automatically and dynamically initiating different authentication methods based on device requirements, and employs an edge-assisted authentication approach to reduce the load on third-party trust authorities.

Abstract

To meet the diverse needs of users, the rapid advancement of cloud-edge-device collaboration has become a standard practice. However, this complex environment, particularly in untrusted (non-collaborative) scenarios, presents numerous security challenges. Authentication acts as the first line of defense and is fundamental to addressing these issues. Although many authentication and key agreement schemes exist, they often face limitations, such as being tailored to overly specific scenarios where devices authenticate solely with either the edge or the cloud, or being unsuitable for resource-constrained devices. To address these challenges, we propose an adaptive and efficient authentication and key agreement scheme (AEAKA) for Cloud-Edge-Device IoT environments. This scheme is highly adaptive and scalable, capable of automatically and dynamically initiating different authentication methods based on device requirements. Additionally, it employs an edge-assisted authentication approach to reduce the load on third-party trust authorities. Furthermore, we introduce a hash-based algorithm for the authentication protocol, ensuring a lightweight method suitable for a wide range of resource-constrained devices while maintaining security. AEAKA ensures that entities use associated authentication credentials, enhancing the privacy of the authentication process. Security proofs and performance analyses demonstrate that AEAKA outperforms other methods in terms of security and authentication efficiency.

Paper Structure

This paper contains 24 sections, 9 equations, 8 figures, 6 tables.

Table of Contents

  1. Introduction
  2. Related work
  3. Device-to-Edge Authentication and Key Agreement
  4. Device-to-Cloud Authentication and Key Agreement
  5. SYSTEM MODEL
  6. Network Model and Assumptions
  7. Security Objectives
  8. Threat Model
  9. OUR PROPOSED SCHEME
  10. Setup Process
  11. Registration Process
  12. User Login
  13. Authentication and Key Agreement
  14. Password Update
  15. SECURITY PROOF AND ANALYSIS
  16. ...and 9 more sections

Figures (8)

  • Figure 1: Cloud-Edge-Device architecture overview.
  • Figure 2: AEAKA system model.
  • Figure 3: CS registration.
  • Figure 4: ES registration.
  • Figure 5: User and device registration.
  • ...and 3 more figures