A secure authentication scheme with forward secrecy for industrial internet of things using Rabin cryptosystem

Abstract Industrial Internet of Things (IIoT) is a non-negligible subset of IoT, which focuses on solving special requirements in industrial applications. In IIoT environments, remote monitoring based on wireless sensor networks (WSNs) is an important application instance, which facilitates the user like professional to manage the factory remotely. The sensitive data collected from industrial sensor nodes is very important for real-time decisions. Since the user and the industrial sensor nodes communicate over insecure communication channels, the transmitted information may be intercepted and altered easily by a malicious adversary, and any modifications on these parameters may have negative effect on decisions. Therefore, there is a great need to design a secure authentication scheme to protect the transmitted information from unauthorized access. Most of the existing schemes reported in the literature are vulnerable to various known attacks, especially the inability to provide forward secrecy between gateway node and the sensor nodes. In allusion to the above problems, in this paper, we propose a new secure authentication scheme with forward secrecy for IIoT systems, in which Rabin cryptosystem is employed and the password verification table is avoided. The rigorous formal proof and heuristic analysis demonstrate that the proposed scheme provides the desired security and functional features. Compared with nine related schemes, the proposed scheme achieves a delicate balance between security and efficiency, and it is more suitable for realistic scenarios.