IEEE Access (Jan 2024)

Mechanism for Device Authentication and Session Key Generation in Industrial Internet of Things Networks

  • Akshay Kumar,
  • Usha Jain,
  • Muzzammil Hussain,
  • Mohammad Khalid Imam Rahmani,
  • Abdulbasid S. Banga

DOI
https://doi.org/10.1109/ACCESS.2024.3435688
Journal volume & issue
Vol. 12
pp. 108770 – 108785

Abstract

Read online

Industrial Internet of Things (IIoT), also known as Industry 4.0 is a major revolution in the industry and it is designed for enhancement of productivity and reliability. Security is a prime concern in the implementation of IIoT technology along with other concerns like patch management. An inefficient or insecure security mechanism would permit rogue (illegitimate) devices to access crucial data and resources in the network. In order to reduce the involvement of malicious devices in IIoT networks and ensure the security of crucial data, we suggest a device authentication and session key generation scheme for devices in IIoT networks. The proposed mechanism is based on the bitwise XOR operation, one-way hash function, and concatenation operation. In this scheme, the server and node generate the session key independently, and it cannot be generated by any third entity. The proposed mechanism is scrutinized for its security using AVISPA and ProVerif tools (automatically) and BAN logic (mathematically) and it has been determined from the generated results that the proposed scheme is safe and immune to any security threats. Performance of the proposed scheme has been verified through experimental analysis and from the result generated. It has been proved that it consumes less resources with maximum throughput. Hence it is efficient and secure.

Keywords