Password authentication key exchange based on key consensus for IoT security

• Published in: Cluster computing Vol. 26; no. 1; pp. 1 - 12
• Main Authors: Zhao, Zongqu, Ma, Shaoti, Qin, Panke
• Format: Journal Article
• Language: English
• Published: New York Springer US 01.02.2023; Springer Nature B.V
• Subjects: Algorithms; Authentication; Communication; Computational efficiency; Computer Communication Networks; Computer Science; Computing costs; Cryptography; Cybersecurity; Design; Efficiency; Error correction & detection; Exchanging; Hash based algorithms; Internet of Things; Operating Systems; Passwords; Processor Architectures; Protocol; Storage capacity; Key consensus; Approximate smooth projection hash; Password authentication key exchange; Internet of Things
• ISSN: 1386-7857; 1573-7543
• DOI: 10.1007/s10586-022-03665-5

Due to the limitation of the computing power and storage capacity of the device, the authentication key exchange protocol of the Internet of Things has higher requirements on the computation efficiency and communication efficiency. This paper proposes a lattice-based password authentication key exchange protocol based on key consensus, which can greatly reduce the time of key exchange. The proposed protocol uses the approximate smooth projection hash function and key consensus to design an asymmetric key agreement structure, which enables the device to realize key exchange while storing less authentication information. Compared with the existing password authentication key exchange protocols, the proposed protocol reduces the number of communications and the computation of the device during the protocol operation. In the paper, the computational cost of the prover is reduced to O(mn), and the amount of calculation on the device is cut in half. Finally, a longer session key can be generated by using this scheme. In addition, the security of the proposed protocol is based on the LWE difficulty problem, it can theoretically resist the attacks of the existing quantum algorithms.