Affiliations 

  • 1 Department of Computer Science and Software Engineering, Jaramogi Oginga Odinga University of Science and Technology, Bondo, 40601, Kenya
  • 2 Department of Computer Science, College of Education for Pure Sciences, University of Basrah, Basrah, 61004, Iraq. zaid.ameen@uobasrah.edu.iq
  • 3 IT and Communications Center, University of Basrah, Basrah, 61004, Iraq
  • 4 Directorate General of Education Basra, Ministry of Education, Basra, 61004, Iraq
  • 5 College of Big Data and Internet, Shenzhen Technology University, Shenzhen, 518118, China. majunchao@sztu.edu.cn
  • 6 Department of Computer Science, College of Education for Pure Sciences, University of Basrah, Basrah, 61004, Iraq
  • 7 National Engineering Laboratory for Big Data System Computing Technology, Shenzhen University, Shenzhen, 518060, China
  • 8 Mechatronics Department, Faculty of Engineering, University of Debrecen, Ótemető U. 4-5, Debrecen, 4028, Hungary
Sci Rep, 2024 Jul 13;14(1):16223.
PMID: 39003319 DOI: 10.1038/s41598-024-67064-z

Abstract

Advancements in cloud computing, flying ad-hoc networks, wireless sensor networks, artificial intelligence, big data, 5th generation mobile network and internet of things have led to the development of smart cities. Owing to their massive interconnectedness, high volumes of data are collected and exchanged over the public internet. Therefore, the exchanged messages are susceptible to numerous security and privacy threats across these open public channels. Although many security techniques have been designed to address this issue, most of them are still vulnerable to attacks while some deploy computationally extensive cryptographic operations such as bilinear pairings and blockchain. In this paper, we leverage on biometrics, error correction codes and fuzzy commitment schemes to develop a secure and energy efficient authentication scheme for the smart cities. This is informed by the fact that biometric data is cumbersome to reproduce and hence attacks such as side-channeling are thwarted. We formally analyze the security of our protocol using the Burrows-Abadi-Needham logic logic, which shows that our scheme achieves strong mutual authentication among the communicating entities. The semantic analysis of our protocol shows that it mitigates attacks such as de-synchronization, eavesdropping, session hijacking, forgery and side-channeling. In addition, its formal security analysis demonstrates that it is secure under the Canetti and Krawczyk attack model. In terms of performance, our scheme is shown to reduce the computation overheads by 20.7% and hence is the most efficient among the state-of-the-art protocols.

* Title and MeSH Headings from MEDLINE®/PubMed®, a database of the U.S. National Library of Medicine.