A Novel Revocable Lightweight Authentication Scheme for Resource-Constrained Devices in Cyber-Physical Power Systems

Xue Li, Cheng Jiang, Dajun Du, Minrui Fei, Lei Wu

Research output: Contribution to journalArticlepeer-review

13 Scopus citations

Abstract

The existing identity security schemes (e.g., based on bilinear pairing) have high computational complexity and large bytes of variables, which results in high computation and communication costs. It is difficult to apply the schemes to resource-constrained (i.e., computation and communication) devices. Moreover, most of these schemes adopt a fixed cycle key update strategy compromising the security of authentication schemes or dynamic (real-time) key update strategy with high computational cost. To solve these issues, this article explores a novel revocable lightweight authentication scheme for resource-constrained devices in cyber-physical power systems (CPPSs). First, a lightweight authentication scheme combined elliptic-curve cryptography (ECC) and certificateless cryptography (CLC) is proposed to negotiate a secure session key, which can achieve mutual authentication with low computation and communication costs. Second, aiming at security problem caused by key leakage, a real-time key update strategy with low computational cost is designed to improve the security of identity authentication. Third, according to a hardness assumption of the elliptic-curve discrete logarithm problem (ECDLP), theoretical analysis rigorously proves that the proposed authentication scheme ensures the security with respect to existential unforgeability against adaptively chosen message attacks (EUF-CMAs). Finally, experimental results confirm the feasibility and effectiveness of the proposed authentication scheme.

Original languageEnglish
Pages (from-to)5280-5292
Number of pages13
JournalIEEE Internet of Things Journal
Volume10
Issue number6
DOIs
StatePublished - 15 Mar 2023

Keywords

  • Certificateless authentication
  • constrained resource
  • cyber-physical power systems (CPPSs)
  • elliptic-curve cryptography (ECC)
  • provable security
  • revocation

Fingerprint

Dive into the research topics of 'A Novel Revocable Lightweight Authentication Scheme for Resource-Constrained Devices in Cyber-Physical Power Systems'. Together they form a unique fingerprint.

Cite this