| Authentication protocols play an important role in ensuring user data and privacy security in the smart home environment.However,there are great challenges in authentication protocols for smart home.On the one hand,due to the openness and heterogeneity of smart home network,it is vulnerable to various security threats such as man-in-the-middle attacks,eavesdropping attacks and so on.Meanwhile,there are also many security threats,such as simple password setting,authentication credentials lost,the lack of message encryption mechanism in smart home.The existing authentication protocols cannot meet the security requirements for smart home.On the other hand,the devices resources are limited that the highly complex cryptographic primitives are not suitable for user authentication in smart home.It is necessary to adopt lightweight cryptographic primitives to ensure the security of the authentication protocol.However,the existing authentication protocols fail to reduce the resource overhead on the basis of ensuring the communication security in smart home.The paper aims to design a secure and efficient multi-factor user authentication scheme to achieve the security protection of user data and privacy in the smart home.The main contribution of the paper are as follows:(1)In smart home,the device resources are generally limited,authentication mechanism is incomplete,user privacy information is easily disclosed.To solve the above the problems,a multi-factor user authentication protocol that supports privacy protection is proposed.The protocol adopts one-to-one structure,based on the Chebyshev chaotic map,a secure and efficient multi-factor authentication mechanism is proposed in the smart home.The security and efficiency of the authentication protocol are both guaranteed.Also,the physical unclonable function is utilized to encrypt the data,which can protect the data security in the smart devices.From the results of the security analysis and performance comparison,the proposed multi-factor authentication protocol is lightweight to be suitable for smart home environment,and can resist various known attacks,such as reply attack,man-in-the-middle attack,impersonation attack and so on.(2)When the number of devices in the smart home is large and the load of the home gateway is high,the group authentication structure can be utilized to authenticate multiple devices at one time.However,existing group authentication protocols for smart home cannot effectively identify malicious participants,do not support dynamic device updates,and are not fault-tolerant.In response to solve the above problems,a lightweight group authentication protocol that supports dynamic device updates is proposed.Chinese remainder theorem is introduced into the protocol design,and a secure and efficient group authentication mechanism is constructed based on the threshold secret sharing technology,which realizes the identification and rapid elimination of malicious devices in the group,and supports the dynamic update of devices.It can be concluded from the security analysis and performance comparison that the proposed group authentication protocol can effectively reduce the computation and communication overhead,and meet the needs of user data and privacy protection in smart homes,and can resist impersonation attacks,replay attacks,etc.The proposed protocol is suitable for efficient authentication with a stable group structure in the smart home environment. |
PDF Full Text Request