زهرا فراهاني

The Internet of Things is the next generation of communication devices. It is also a network that combines a large number of devices including sensors, radio frequency identification and actuators. This technology aims to provide better services to humans by enabling smart homes, smart healthcare, smart industries. The Internet of Things is a heterogeneous environment that connects billions of devices. Therefore, it is a very valuable target for attackers and suffers from several threats, especially during session impersonation attacks.The limitation of computing resources and battery and storage space in IoT devices is one of the characteristics of IoT devices, which has made the security and privacy of devices challenging in this environment. Due to the mentioned limitations, IoT devices cannot provide security properly. In addition, the heterogeneous nature of the IoT environment makes traditional authentication methods impractical. Continuous authentication solves the session hijacking attack because it verifies the user’s identity throughout the session. Several continuous authentication schemes have been proposed to authenticate users in IoT devices, while device-to-device continuous authentication so that both IoT sensors authenticate each other continuously and peer-to-peer has been used in most of the works. In this field, it has been ignored or less investigated. Therefore, authentication of devices is essential because if one device is compromised, the entire system is at risk. Continuous device-to-device authentication differs from user-to-device authentication in that it cannot rely on bio metrics and passwords. Therefore, providing a device-to-device continuous authentication system so that both IoT sensors can authenticate each other continuously and device-to-device while being lightweight is a requirement. In this thesis, a device-to-device continuous authentication system is proposed in the Internet of Things. Since the proposed protocol uses lightweight operators such as Hash, random number generation, and HMAC in this protocol, it is a lightweight protocol that provides resistance to conventional attacks and threats to the Internet of Things. In fact, the proposed protocol by performing device-to-device continuous authentication causes both devices or sensors to continuously authenticate each other in a time slot. This causes the computational overhead and communication cost to be significantly reduced and the authentication speed to be increased. The proposed method has been eva‎luated by simulating an Internet of Things environment and authentication and deviceto- device communication between two Internet of Things sensors, and the eva‎luation results and comparison with previous work show that this method reduces the computing cost by 47% and the communication cost by 71%. The percentage improves compared to the previous work. Also, to eva‎luate the security of the proposed protocol, the Scyther security eva‎luation and verification tool has been used. The security verification results show that the proposed protocol is secure and resistant to attacks.

اينترنت اشياء , احراز هويت پيوسته , دستگاه به دستگاه , سبك وزني

Internet of Things , Continuous Authentication , Device-to-Device , Lightweight

Zahra Farahani

dr.Mohammad Abdollahi Azgomi