Towards a Lightweight Continuous Authentication Protocol for Device-to-Device Communication

TL;DR

This paper introduces a lightweight, secure continuous authentication protocol for device-to-device communication in IoT, addressing the limitations of human-centric CA methods and existing protocols.

Contribution

A novel CA protocol leveraging communication channel properties and a tunable mathematical function for dynamic session key generation, suitable for resource-constrained IoT devices.

Findings

Resistant to known attack vectors

Potential for deployment in critical IoT infrastructure

Lightweight and computationally feasible for IoT devices

Abstract

Continuous Authentication (CA) has been proposed as a potential solution to counter complex cybersecurity attacks that exploit conventional static authentication mechanisms that authenticate users only at an ingress point. However, widely researched human user characteristics-based CA mechanisms cannot be extended to continuously authenticate Internet of Things (IoT) devices. The challenges are exacerbated with increased adoption of device-to-device (d2d) communication in critical infrastructures. Existing d2d authentication protocols proposed in the literature are either prone to subversion or are computationally infeasible to be deployed on constrained IoT devices. In view of these challenges, we propose a novel, lightweight, and secure CA protocol that leverages communication channel properties and a tunable mathematical function to generate dynamically changing session keys. Our preliminary informal protocol analysis suggests that the proposed protocol is resistant to known attack vectors and thus has strong potential for deployment in securing critical and resource-constrained d2d communication.