Research output: Contribution to Journal/Magazine › Journal article › peer-review
Research output: Contribution to Journal/Magazine › Journal article › peer-review
}
TY - JOUR
T1 - SUSIC
T2 - A Secure User Access Control mechanism for SDN-enabled IIoT and Cyber Physical Systems
AU - Irshad, Azeem
AU - Mallah, Ghulam Ali
AU - Bilal, Muhammad
AU - Chaudhry, Shehzad Ashraf
AU - Shafiq, Muhammad
AU - Song, Houbing
PY - 2023/9/15
Y1 - 2023/9/15
N2 - The integration of thriving information and communications technology (ICT) and cyber-physical systems (CPSs) has spawned several innovative applications, such as remote healthcare, smart and intelligent transportation, smart logistics, smart grids, and public safety. An emerging software-defined networks (SDNs) technology further enabled to optimize the communication among Industrial IoT (IIoT) and CPS entities. Nonetheless, the communication on public channel among different IIoT entities in an SDN-enabled environment may be exposed to various security threats due to wireless and insecure communication channels. To counter these security challenges in the way of wider CPS or IIoT adoption, we propose a novel three-factor authenticated key exchange mechanism (SUSIC) for SDN-enabled IIoT ecosystem. The SUSIC enables a registered user to access real-time data from physical IIoT environment directly after having mutual authentication performed through SDN-enabled controller node. The scheme is proved to be secure under rigorous formal and informal security analysis. Moreover, the simulation results and performance evaluation signifies toward achieving a better tradeoff between security functionalities and computational overheads comparatively.
AB - The integration of thriving information and communications technology (ICT) and cyber-physical systems (CPSs) has spawned several innovative applications, such as remote healthcare, smart and intelligent transportation, smart logistics, smart grids, and public safety. An emerging software-defined networks (SDNs) technology further enabled to optimize the communication among Industrial IoT (IIoT) and CPS entities. Nonetheless, the communication on public channel among different IIoT entities in an SDN-enabled environment may be exposed to various security threats due to wireless and insecure communication channels. To counter these security challenges in the way of wider CPS or IIoT adoption, we propose a novel three-factor authenticated key exchange mechanism (SUSIC) for SDN-enabled IIoT ecosystem. The SUSIC enables a registered user to access real-time data from physical IIoT environment directly after having mutual authentication performed through SDN-enabled controller node. The scheme is proved to be secure under rigorous formal and informal security analysis. Moreover, the simulation results and performance evaluation signifies toward achieving a better tradeoff between security functionalities and computational overheads comparatively.
KW - Authenticated key agreement
KW - Industrial IoT (IIoT)
KW - cyber-physical system (CPS)
KW - industry 4.0
KW - software defined network (SDN)
U2 - 10.1109/JIOT.2023.3268474
DO - 10.1109/JIOT.2023.3268474
M3 - Journal article
AN - SCOPUS:85153505118
VL - 10
SP - 16504
EP - 16515
JO - IEEE Internet of Things Journal
JF - IEEE Internet of Things Journal
SN - 2327-4662
IS - 18
M1 - 18
ER -