A Secure Mutual authentication approach to fog computing environment. Issue 111 (December 2021)
- Record Type:
- Journal Article
- Title:
- A Secure Mutual authentication approach to fog computing environment. Issue 111 (December 2021)
- Main Title:
- A Secure Mutual authentication approach to fog computing environment
- Authors:
- Kalaria, Rudri
Kayes, A.S.M.
Rahayu, Wenny
Pardede, Eric - Abstract:
- Abstract: Fog computing is a new emerging technology that complements the cloud and extends the services of cloud computing to be closer to the end devices. The cloud is usually located far from the devices which use their services and some of the recent research suggests that using a fog server as a nearby lightweight middleware can bridge the gap and provides rich resources closer to the end devices. Security is a crucial factor for the appropriate functioning of fog computing. In particular, authentication and key exchange are significant challenges which need to be taken into consideration in fog computing. Ensuring secure mutual authentication is very important for the security of fog computing since fog servers provide services to number of end users. However, the existing mutual authentication schemes are either having large computational overheads or are not able to achieve secure mutual authentication. In this paper, we propose a fog-based mutual authentication scheme using low-cost primitives such as Elliptic Curve Cryptography (ECC) and one-way hash functions. We also present the formal security analysis of our authentication approach to show that it protects all the interacting entities against various known cyber attacks. In addition, we validate our authentication scheme using the SPAN of AVISPA tool to confirm that it protects end users against several attacks. We evaluate our proposed authentication approach by comparing it against state-of-the-artAbstract: Fog computing is a new emerging technology that complements the cloud and extends the services of cloud computing to be closer to the end devices. The cloud is usually located far from the devices which use their services and some of the recent research suggests that using a fog server as a nearby lightweight middleware can bridge the gap and provides rich resources closer to the end devices. Security is a crucial factor for the appropriate functioning of fog computing. In particular, authentication and key exchange are significant challenges which need to be taken into consideration in fog computing. Ensuring secure mutual authentication is very important for the security of fog computing since fog servers provide services to number of end users. However, the existing mutual authentication schemes are either having large computational overheads or are not able to achieve secure mutual authentication. In this paper, we propose a fog-based mutual authentication scheme using low-cost primitives such as Elliptic Curve Cryptography (ECC) and one-way hash functions. We also present the formal security analysis of our authentication approach to show that it protects all the interacting entities against various known cyber attacks. In addition, we validate our authentication scheme using the SPAN of AVISPA tool to confirm that it protects end users against several attacks. We evaluate our proposed authentication approach by comparing it against state-of-the-art authentication schemes. Finally, through a case study and performance evaluation, we illustrate that our approach provides a secure and lightweight mutual key exchange protocol between three parties: the cloud, fog and edge devices. … (more)
- Is Part Of:
- Computers & security. Issue 111(2021)
- Journal:
- Computers & security
- Issue:
- Issue 111(2021)
- Issue Display:
- Volume 111, Issue 111 (2021)
- Year:
- 2021
- Volume:
- 111
- Issue:
- 111
- Issue Sort Value:
- 2021-0111-0111-0000
- Page Start:
- Page End:
- Publication Date:
- 2021-12
- Subjects:
- Mutual authentication approach -- Fog computing -- Cloud computing -- End devices -- Fog server -- Lightweight -- Low-Complexity -- Elliptic curve cryptography -- Cyber attacks
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2021.102483 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 19827.xml