Authentication in Internet of Things, protocols, attacks, and open issues: a systematic literature review

IF 2.4 4区计算机科学 Q3 COMPUTER SCIENCE, INFORMATION SYSTEMS

International Journal of Information Security Pub Date : 2024-01-12 DOI:10.1007/s10207-023-00806-8

Elham Ebrahimpour, Shahram Babaie

{"title":"Authentication in Internet of Things, protocols, attacks, and open issues: a systematic literature review","authors":"Elham Ebrahimpour, Shahram Babaie","doi":"10.1007/s10207-023-00806-8","DOIUrl":null,"url":null,"abstract":"<p>Internet of Things (IoT) as an emerging technology is based on the idea that smart things can connect to the Internet and exchange the collected data in a peer-to-peer paradigm. Due to its inherent features, IoT can be utilized in real-world scenarios and its expansion can improve human well-being. Internet of things is applied quite closely to humans and transmits serious information such as healthcare information, financial data, and private information through an insecure communication platform. Since almost all tasks are performed with minimal human intervention, and adversary may deploy its nodes among other legitimate elements of IoT, providing an effective mutual authentication is vital. In this Systematic Literature Review, authentication of IoT and its literature are reviewed systematically. In particular, it has endeavored that the collected literature covers the papers conducted from 2018 to 2022. Moreover, this study seeks to provide a comprehensive answer to six important Research Questions in the context of authentication of IoT that often engage the minds of scholars. It is hoped that this survey will be an effective guide for future research by addressing the relevant challenges, analyzing open issues, and providing future research directions.</p>","PeriodicalId":50316,"journal":{"name":"International Journal of Information Security","volume":"241 1","pages":""},"PeriodicalIF":2.4000,"publicationDate":"2024-01-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Information Security","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.1007/s10207-023-00806-8","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Internet of Things (IoT) as an emerging technology is based on the idea that smart things can connect to the Internet and exchange the collected data in a peer-to-peer paradigm. Due to its inherent features, IoT can be utilized in real-world scenarios and its expansion can improve human well-being. Internet of things is applied quite closely to humans and transmits serious information such as healthcare information, financial data, and private information through an insecure communication platform. Since almost all tasks are performed with minimal human intervention, and adversary may deploy its nodes among other legitimate elements of IoT, providing an effective mutual authentication is vital. In this Systematic Literature Review, authentication of IoT and its literature are reviewed systematically. In particular, it has endeavored that the collected literature covers the papers conducted from 2018 to 2022. Moreover, this study seeks to provide a comprehensive answer to six important Research Questions in the context of authentication of IoT that often engage the minds of scholars. It is hoped that this survey will be an effective guide for future research by addressing the relevant challenges, analyzing open issues, and providing future research directions.

Abstract Image

查看原文本刊更多论文

物联网中的身份验证、协议、攻击和开放性问题：系统性文献综述

物联网（IoT）作为一种新兴技术，其理念是智能事物可以连接到互联网，并以点对点模式交换收集到的数据。由于其固有的特点，物联网可以应用于现实世界的各种场景，其扩展可以改善人类的福祉。物联网与人类的应用相当密切，通过不安全的通信平台传输医疗保健信息、金融数据和私人信息等重要信息。由于几乎所有的任务都是在极少人为干预的情况下执行的，而对手可能会在物联网的其他合法元素中部署自己的节点，因此提供有效的相互认证至关重要。在本系统文献综述中，对物联网的身份验证及其文献进行了系统综述。特别是，它努力使收集的文献涵盖从 2018 年到 2022 年进行的论文。此外，本研究还力图全面回答物联网身份验证背景下的六个重要研究问题，这些问题常常牵动着学者们的心。希望本调查能通过应对相关挑战、分析未决问题和提供未来研究方向，为未来研究提供有效指导。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

International Journal of Information Security 工程技术-计算机：理论方法

CiteScore

6.30

自引率

3.10%

发文量

审稿时长

12 months

期刊介绍： The International Journal of Information Security is an English language periodical on research in information security which offers prompt publication of important technical work, whether theoretical, applicable, or related to implementation. Coverage includes system security: intrusion detection, secure end systems, secure operating systems, database security, security infrastructures, security evaluation; network security: Internet security, firewalls, mobile security, security agents, protocols, anti-virus and anti-hacker measures; content protection: watermarking, software protection, tamper resistant software; applications: electronic commerce, government, health, telecommunications, mobility.