An Inter-device Authentication Scheme for Smart Homes Using One-Time-Password Over Infrared Channel

摘要

Internet of Things (IoT) is an emerging paradigm which enables physical objects to operate over the Internet, and collect and share the data that describe the real physical world. In this ubiquitous environment, due to the heterogeneity of objects, communication, topology, security protocols, and the computationally limited nature of IoT objects, conventional authentication schemes may not meet the IoT security requirements since they are considered impractical, weak, or outdated. In this paper, a two-factor inter device mutual authentication scheme for smart home is proposed, where in the first level, the key exchange is performed using the Diffie-Hellman protocol and a public key cryptography in order to validate the identity of devices; and the second level relies on the use of infrared communication to distribute the One-Time Passwords (OTPs) among devices for authentication purpose. The HLPSL language is used to model the proposed protocol, and a security analysis is conducted using the SPAN (Security Protocol Animator for AVISPA (SPAN)/AVISPA (Automated Validation of Internet Security Protocol and Applications) tool, showing that the proposed scheme can achieve the goals of secrecy of secret keys and mutual authentication. A proof-of-concept in the form of a hardware design is also proposed using Raspberry-Pi, Linux Infrared Remote Control (LIRC), Infrared circuit and a public-key-infrastructure. Experimentally, it is shown that this hardware design can achieve secure device-to-device authentication.