A post-quantum secure PUF based cross-domain authentication mechanism for Internet of drones

IF 5.8 2区计算机科学 Q1 TELECOMMUNICATIONS

Vehicular Communications Pub Date : 2024-04-25 DOI:10.1016/j.vehcom.2024.100780

Aiswarya S. Nair , Sabu M. Thampi , Jafeel V.

{"title":"A post-quantum secure PUF based cross-domain authentication mechanism for Internet of drones","authors":"Aiswarya S. Nair , Sabu M. Thampi , Jafeel V.","doi":"10.1016/j.vehcom.2024.100780","DOIUrl":null,"url":null,"abstract":"<div><p>With the increasing prevalence of drones, guaranteeing their authentication and secure communication has become paramount in drone networks to mitigate unauthorized access and malicious attacks. Cross-domain authentication is crucial in the context of the Internet of Drones (IoD) for safely verifying and establishing trust between diverse drones and their respective control stations, which may belong to different regions or organizations. Effectively accessing resources or services in another domain while maintaining security and efficiency poses a significant challenge. Conventional authentication mechanisms relying on challenging problems like discrete logarithm and integer factorization might not be sufficient to guarantee the security and effectiveness of drone-based systems in the post-quantum era. To address this, we propose a distributed post-quantum cryptography and Physical Unclonable Function (PUF) based cross-domain authentication protocol for IoD. Key contributions of this work include the elimination of secret key storage on drones, mutual authentication, emphasis on hardware security, incorporation of post-quantum security measures, efficient cross-domain authentication and resilience against cyber attacks such as eavesdropping, impersonation, replay attack, untraceability, and PUF-modeling attack. The performance of the proposed protocol is assessed utilizing metrics like processing time, communication cost and storage utilization. In operations associated to the blockchain ledger, variables such as latency, throughput, CPU utilization, and memory utilization are also examined. The protocol shows a reduced computation time and zero sensitive data storage in drone memory, despite a slightly higher communication cost that is manageable with 5G-enabled drones. Comparative analysis against existing solutions in the domain highlights the superior security of the proposed protocol, positioning it as a promising solution for the evolving quantum landscape.</p></div>","PeriodicalId":54346,"journal":{"name":"Vehicular Communications","volume":"47 ","pages":"Article 100780"},"PeriodicalIF":5.8000,"publicationDate":"2024-04-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Vehicular Communications","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S221420962400055X","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"TELECOMMUNICATIONS","Score":null,"Total":0}

引用次数: 0

Abstract

With the increasing prevalence of drones, guaranteeing their authentication and secure communication has become paramount in drone networks to mitigate unauthorized access and malicious attacks. Cross-domain authentication is crucial in the context of the Internet of Drones (IoD) for safely verifying and establishing trust between diverse drones and their respective control stations, which may belong to different regions or organizations. Effectively accessing resources or services in another domain while maintaining security and efficiency poses a significant challenge. Conventional authentication mechanisms relying on challenging problems like discrete logarithm and integer factorization might not be sufficient to guarantee the security and effectiveness of drone-based systems in the post-quantum era. To address this, we propose a distributed post-quantum cryptography and Physical Unclonable Function (PUF) based cross-domain authentication protocol for IoD. Key contributions of this work include the elimination of secret key storage on drones, mutual authentication, emphasis on hardware security, incorporation of post-quantum security measures, efficient cross-domain authentication and resilience against cyber attacks such as eavesdropping, impersonation, replay attack, untraceability, and PUF-modeling attack. The performance of the proposed protocol is assessed utilizing metrics like processing time, communication cost and storage utilization. In operations associated to the blockchain ledger, variables such as latency, throughput, CPU utilization, and memory utilization are also examined. The protocol shows a reduced computation time and zero sensitive data storage in drone memory, despite a slightly higher communication cost that is manageable with 5G-enabled drones. Comparative analysis against existing solutions in the domain highlights the superior security of the proposed protocol, positioning it as a promising solution for the evolving quantum landscape.

查看原文本刊更多论文

基于后量子安全 PUF 的无人机互联网跨域身份验证机制

随着无人机的日益普及，保证无人机的身份验证和安全通信已成为无人机网络减少未经授权访问和恶意攻击的关键。在无人机互联网（IoD）的背景下，跨域身份验证对于安全验证和建立不同无人机及其各自控制站（可能属于不同地区或组织）之间的信任至关重要。有效访问另一域的资源或服务，同时保持安全性和效率是一项重大挑战。传统的认证机制依赖于离散对数和整数因式分解等挑战性问题，在后量子时代可能不足以保证基于无人机的系统的安全性和有效性。为此，我们提出了一种基于分布式后量子密码学和物理不可克隆函数（PUF）的 IoD 跨域身份验证协议。这项工作的主要贡献包括消除无人机上的秘钥存储、相互验证、强调硬件安全、纳入后量子安全措施、高效跨域验证以及抵御网络攻击（如窃听、冒充、重放攻击、不可追踪和 PUF 建模攻击）。利用处理时间、通信成本和存储利用率等指标对所提协议的性能进行了评估。在与区块链账本相关的操作中，还考察了延迟、吞吐量、CPU 利用率和内存利用率等变量。该协议缩短了计算时间，无人机内存中的敏感数据存储量为零，尽管通信成本略高，但支持 5G 的无人机可以应对。与该领域现有解决方案的对比分析凸显了所提协议的卓越安全性，使其成为不断发展的量子领域的一个有前途的解决方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Vehicular Communications Engineering-Electrical and Electronic Engineering

CiteScore

12.70

自引率

10.40%

发文量

审稿时长

62 days

期刊介绍： Vehicular communications is a growing area of communications between vehicles and including roadside communication infrastructure. Advances in wireless communications are making possible sharing of information through real time communications between vehicles and infrastructure. This has led to applications to increase safety of vehicles and communication between passengers and the Internet. Standardization efforts on vehicular communication are also underway to make vehicular transportation safer, greener and easier. The aim of the journal is to publish high quality peer–reviewed papers in the area of vehicular communications. The scope encompasses all types of communications involving vehicles, including vehicle–to–vehicle and vehicle–to–infrastructure. The scope includes (but not limited to) the following topics related to vehicular communications: Vehicle to vehicle and vehicle to infrastructure communications Channel modelling, modulating and coding Congestion Control and scalability issues Protocol design, testing and verification Routing in vehicular networks Security issues and countermeasures Deployment and field testing Reducing energy consumption and enhancing safety of vehicles Wireless in–car networks Data collection and dissemination methods Mobility and handover issues Safety and driver assistance applications UAV Underwater communications Autonomous cooperative driving Social networks Internet of vehicles Standardization of protocols.