Permissioned Blockchain-Based Multifactor Authentication Scheme for Internet of Things Devices Using Physical Unclonable Functions

Permissioned Blockchain-Based Multifactor Authentication Scheme for Internet of Things Devices Using Physical Unclonable Functions

연구 분야: Verification

학회: International Ethical Hacking Conference

This paper presents a novel multifactor mutual authentication scheme for authenticating Internet of Things (IoT) devices using the power of both the permissioned blockchain smart contract and Physical Unclonable Function (PUF). The authentication capability of an IoT device can be enhanced by combining a permissioned blockchain-based smart contract, a computer program that runs automatically as and when the terms of the contract or agreement are met, and PUF, which gives a response or a unique identifier for a given input and challenge. The work's novelty is in the method it recommends for building a peer-to-peer network that enables every user to unswervingly communicate with the data stored in the safe distributed ledger. As a result, a participant's need to submit relevant data is much diminished under this proposed approach. Security analysis of the proposed framework using Automated Validation of Internet Security Protocols and Applications (AVISPA) shows its potential to combat numerous attack scenarios like man-in-the-middle, spoofing, and replay attacks along with better authentication due to the uniqueness of the physical microstructure of PUF. Comparative analysis of the schemes using Elliptic Curve Cryptography (ECC) and without using ECC have been made, which shows the efficiency of the former regarding security.