关于“利用ARM Cortex-M微控制器实现智能电表和邻里网关通信的超轻量级安全方案”的安全性

IF 1.3 4区计算机科学 Q3 COMPUTER SCIENCE, INFORMATION SYSTEMS

IET Information Security Pub Date : 2023-01-13 DOI:10.1049/ise2.12108

Sonia Miri, Masoud Kaveh, Hadi Shahriar Shahhoseini, Mohammad Reza Mosavi, Saeed Aghapour

{"title":"关于“利用ARM Cortex-M微控制器实现智能电表和邻里网关通信的超轻量级安全方案”的安全性","authors":"Sonia Miri, Masoud Kaveh, Hadi Shahriar Shahhoseini, Mohammad Reza Mosavi, Saeed Aghapour","doi":"10.1049/ise2.12108","DOIUrl":null,"url":null,"abstract":"<p>In 2018, Abbasinezhad-Mood and Nikooghadam (IEEE Transaction on Smart Grid, pp 6194–6205, 9(6), 2018) proposed an ultra-lightweight secure scheme for neighbourhood area network (<math>\n <semantics>\n <mrow>\n <mi>N</mi>\n <mi>A</mi>\n <mi>N</mi>\n </mrow>\n <annotation> $\\boldsymbol{N}\\boldsymbol{A}\\boldsymbol{N}$</annotation>\n </semantics></math>) communications in smart grid. They have claimed that their protocol is secure against all known attacks in <math>\n <semantics>\n <mrow>\n <mi>N</mi>\n <mi>A</mi>\n <mi>N</mi>\n </mrow>\n <annotation> $\\boldsymbol{N}\\boldsymbol{A}\\boldsymbol{N}$</annotation>\n </semantics></math> environment by providing informal security analysis besides a formal analysis which was done by using an automatic verification tool. However, by performing several attacks, this study shows that their scheme has serious security flaws. After performing each attack, lightweight countermeasures is proposed for securing their protocol against that attack.</p>","PeriodicalId":50380,"journal":{"name":"IET Information Security","volume":"17 3","pages":"544-551"},"PeriodicalIF":1.3000,"publicationDate":"2023-01-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://onlinelibrary.wiley.com/doi/epdf/10.1049/ise2.12108","citationCount":"2","resultStr":"{\"title\":\"On the security of ‘an ultra-lightweight and secure scheme for communications of smart metres and neighbourhood gateways by utilisation of an ARM Cortex-M microcontroller’\",\"authors\":\"Sonia Miri, Masoud Kaveh, Hadi Shahriar Shahhoseini, Mohammad Reza Mosavi, Saeed Aghapour\",\"doi\":\"10.1049/ise2.12108\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<p>In 2018, Abbasinezhad-Mood and Nikooghadam (IEEE Transaction on Smart Grid, pp 6194–6205, 9(6), 2018) proposed an ultra-lightweight secure scheme for neighbourhood area network (<math>\\n <semantics>\\n <mrow>\\n <mi>N</mi>\\n <mi>A</mi>\\n <mi>N</mi>\\n </mrow>\\n <annotation> $\\\\boldsymbol{N}\\\\boldsymbol{A}\\\\boldsymbol{N}$</annotation>\\n </semantics></math>) communications in smart grid. They have claimed that their protocol is secure against all known attacks in <math>\\n <semantics>\\n <mrow>\\n <mi>N</mi>\\n <mi>A</mi>\\n <mi>N</mi>\\n </mrow>\\n <annotation> $\\\\boldsymbol{N}\\\\boldsymbol{A}\\\\boldsymbol{N}$</annotation>\\n </semantics></math> environment by providing informal security analysis besides a formal analysis which was done by using an automatic verification tool. However, by performing several attacks, this study shows that their scheme has serious security flaws. After performing each attack, lightweight countermeasures is proposed for securing their protocol against that attack.</p>\",\"PeriodicalId\":50380,\"journal\":{\"name\":\"IET Information Security\",\"volume\":\"17 3\",\"pages\":\"544-551\"},\"PeriodicalIF\":1.3000,\"publicationDate\":\"2023-01-13\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://onlinelibrary.wiley.com/doi/epdf/10.1049/ise2.12108\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IET Information Security\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://onlinelibrary.wiley.com/doi/10.1049/ise2.12108\",\"RegionNum\":4,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q3\",\"JCRName\":\"COMPUTER SCIENCE, INFORMATION SYSTEMS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IET Information Security","FirstCategoryId":"94","ListUrlMain":"https://onlinelibrary.wiley.com/doi/10.1049/ise2.12108","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 2

摘要

2018年，Abbasinezhad Mood和Nikooghadam（IEEE智能电网交易，第6194–6205页，9（6），2018）提出了一种用于智能电网中邻域网络（N A N$\boldsymbol｛N｝\boldsymbol{A｝\bold symbol｛N｝$）通信的超轻量级安全方案。他们声称，他们的协议除了通过使用自动验证工具。然而，通过多次攻击，本研究表明他们的方案存在严重的安全缺陷。在执行每一次攻击之后，都会提出轻量级对策来保护他们的协议免受该攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

On the security of ‘an ultra-lightweight and secure scheme for communications of smart metres and neighbourhood gateways by utilisation of an ARM Cortex-M microcontroller’

查看原文本刊更多论文

On the security of ‘an ultra-lightweight and secure scheme for communications of smart metres and neighbourhood gateways by utilisation of an ARM Cortex-M microcontroller’

In 2018, Abbasinezhad-Mood and Nikooghadam (IEEE Transaction on Smart Grid, pp 6194–6205, 9(6), 2018) proposed an ultra-lightweight secure scheme for neighbourhood area network ( $N A N$ ) communications in smart grid. They have claimed that their protocol is secure against all known attacks in $N A N$ environment by providing informal security analysis besides a formal analysis which was done by using an automatic verification tool. However, by performing several attacks, this study shows that their scheme has serious security flaws. After performing each attack, lightweight countermeasures is proposed for securing their protocol against that attack.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

IET Information Security 工程技术-计算机：理论方法

CiteScore

3.80

自引率

7.10%

发文量

审稿时长

8.6 months

期刊介绍： IET Information Security publishes original research papers in the following areas of information security and cryptography. Submitting authors should specify clearly in their covering statement the area into which their paper falls. Scope: Access Control and Database Security Ad-Hoc Network Aspects Anonymity and E-Voting Authentication Block Ciphers and Hash Functions Blockchain, Bitcoin (Technical aspects only) Broadcast Encryption and Traitor Tracing Combinatorial Aspects Covert Channels and Information Flow Critical Infrastructures Cryptanalysis Dependability Digital Rights Management Digital Signature Schemes Digital Steganography Economic Aspects of Information Security Elliptic Curve Cryptography and Number Theory Embedded Systems Aspects Embedded Systems Security and Forensics Financial Cryptography Firewall Security Formal Methods and Security Verification Human Aspects Information Warfare and Survivability Intrusion Detection Java and XML Security Key Distribution Key Management Malware Multi-Party Computation and Threshold Cryptography Peer-to-peer Security PKIs Public-Key and Hybrid Encryption Quantum Cryptography Risks of using Computers Robust Networks Secret Sharing Secure Electronic Commerce Software Obfuscation Stream Ciphers Trust Models Watermarking and Fingerprinting Special Issues. Current Call for Papers: Security on Mobile and IoT devices - https://digital-library.theiet.org/files/IET_IFS_SMID_CFP.pdf