A Survey on Key Agreement and Authentication Protocol for Internet of Things Application

Mohammad Kamrul Hasan; Zhou Weichen; Nurhizam Safie; Fatima Rayan Awad Ahmed; Taher M. Ghazal

doi:10.1109/ACCESS.2024.3393567

IEEE Access (Jan 2024)

A Survey on Key Agreement and Authentication Protocol for Internet of Things Application

Mohammad Kamrul Hasan,
Zhou Weichen,
Nurhizam Safie,
Fatima Rayan Awad Ahmed,
Taher M. Ghazal

Affiliations

Mohammad Kamrul Hasan: ORCiD; Center for Cyber Security, Faculty of Information Science and Technology, Universiti Kebangsaan Malaysia (UKM), Bangi, Selangor, Malaysia
Zhou Weichen: ORCiD; Center for Cyber Security, Faculty of Information Science and Technology, Universiti Kebangsaan Malaysia (UKM), Bangi, Selangor, Malaysia
Nurhizam Safie: Center for Software Technology and Management, Faculty of Information Science and Technology, Universiti Kebangsaan Malaysia (UKM), Bangi, Selangor, Malaysia
Fatima Rayan Awad Ahmed: Computer Science Department, College of Computer Engineering and Science, Prince Sattam Bin Abdulaziz University, Al-Kharj, Saudi Arabia
Taher M. Ghazal: ORCiD; Center for Cyber Security, Faculty of Information Science and Technology, Universiti Kebangsaan Malaysia (UKM), Bangi, Selangor, Malaysia

DOI: https://doi.org/10.1109/ACCESS.2024.3393567
Journal volume & issue: Vol. 12
pp. 61642 – 61666

Abstract

Read online

The Internet of Things (IoT) represents a dynamic infrastructure, leveraging sensing and network communication technology to establish ubiquitous connectivity among people, machines, and objects. Due to its end devices’ limited computing resources and storage space, it is not feasible to merely transpose traditional internet security technologies directly to IoT endpoints. Maintaining security while concurrently ensuring performance is a particularly challenging endeavor. This paper provides a review of key agreements and authentication protocols pivotal to the security of IoT. First, this survey discusses the applications that need authentication and key agreement to strengthen their security and current research on these application fields. Subsequently, this paper engages in an in-depth exploration of the phase involved in the scheme of authentication and key agreement, including an examination of the cryptographic techniques employed within these processes. This survey also thoroughly studies the scheme’s security services, potential attacks, formal analysis and informal analysis to ensure resilience against such threats. This study aims to provide a profound understanding of the recent research on authentication and key agreement in IoT applications. It strives to contribute towards strengthening security systems for IoT applications, ensuring their sustainability in the face of evolving threats.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords