Enhancing Security in ZigBee Wireless Sensor Networks: A New Approach and Mutual Authentication Scheme for D2D Communication

The latest version of ZigBee offers improvements in various aspects, including its low power consumption, flexibility, and cost-effective deployment. However, the challenges persist, as the upgraded protocol continues to suffer from a wide range of security weaknesses. Constrained wireless sensor ne...

Descripción completa

Detalles Bibliográficos
Autores principales: Allakany, Alaa, Saber, Abeer, Mostafa, Samih M., Alsabaan, Maazen, Ibrahem, Mohamed I., Elwahsh, Haitham
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2023
Materias:
Article
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10305095/
https://www.ncbi.nlm.nih.gov/pubmed/37420868
http://dx.doi.org/10.3390/s23125703
_version_ 1785065652513406976
author Allakany, Alaa
Saber, Abeer
Mostafa, Samih M.
Alsabaan, Maazen
Ibrahem, Mohamed I.
Elwahsh, Haitham
author_facet Allakany, Alaa
Saber, Abeer
Mostafa, Samih M.
Alsabaan, Maazen
Ibrahem, Mohamed I.
Elwahsh, Haitham
author_sort Allakany, Alaa
collection PubMed
description The latest version of ZigBee offers improvements in various aspects, including its low power consumption, flexibility, and cost-effective deployment. However, the challenges persist, as the upgraded protocol continues to suffer from a wide range of security weaknesses. Constrained wireless sensor network devices cannot use standard security protocols such as asymmetric cryptography mechanisms, which are resource-intensive and unsuitable for wireless sensor networks. ZigBee uses the Advanced Encryption Standard (AES), which is the best recommended symmetric key block cipher for securing data of sensitive networks and applications. However, AES is expected to be vulnerable to some attacks in the near future. Moreover, symmetric cryptosystems have key management and authentication issues. To address these concerns in wireless sensor networks, particularly in ZigBee communications, in this paper, we propose a mutual authentication scheme that can dynamically update the secret key value of device-to-trust center (D2TC) and device-to-device (D2D) communications. In addition, the suggested solution improves the cryptographic strength of ZigBee communications by improving the encryption process of a regular AES without the need for asymmetric cryptography. To achieve that, we use a secure one-way hash function operation when D2TC and D2D mutually authenticate each other, along with bitwise exclusive OR operations to enhance cryptography. Once authentication is accomplished, the ZigBee-based participants can mutually agree upon a shared session key and exchange a secure value. This secure value is then integrated with the sensed data from the devices and utilized as input for regular AES encryption. By adopting this technique, the encrypted data gains robust protection against potential cryptanalysis attacks. Finally, a comparative analysis is conducted to illustrate how the proposed scheme effectively maintains efficiency in comparison to eight competitive schemes. This analysis evaluates the scheme’s performance across various factors, including security features, communication, and computational cost.
format Online
Article
Text
id pubmed-10305095
institution National Center for Biotechnology Information
language English
publishDate 2023
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-103050952023-06-29 Enhancing Security in ZigBee Wireless Sensor Networks: A New Approach and Mutual Authentication Scheme for D2D Communication Allakany, Alaa Saber, Abeer Mostafa, Samih M. Alsabaan, Maazen Ibrahem, Mohamed I. Elwahsh, Haitham Sensors (Basel) Article The latest version of ZigBee offers improvements in various aspects, including its low power consumption, flexibility, and cost-effective deployment. However, the challenges persist, as the upgraded protocol continues to suffer from a wide range of security weaknesses. Constrained wireless sensor network devices cannot use standard security protocols such as asymmetric cryptography mechanisms, which are resource-intensive and unsuitable for wireless sensor networks. ZigBee uses the Advanced Encryption Standard (AES), which is the best recommended symmetric key block cipher for securing data of sensitive networks and applications. However, AES is expected to be vulnerable to some attacks in the near future. Moreover, symmetric cryptosystems have key management and authentication issues. To address these concerns in wireless sensor networks, particularly in ZigBee communications, in this paper, we propose a mutual authentication scheme that can dynamically update the secret key value of device-to-trust center (D2TC) and device-to-device (D2D) communications. In addition, the suggested solution improves the cryptographic strength of ZigBee communications by improving the encryption process of a regular AES without the need for asymmetric cryptography. To achieve that, we use a secure one-way hash function operation when D2TC and D2D mutually authenticate each other, along with bitwise exclusive OR operations to enhance cryptography. Once authentication is accomplished, the ZigBee-based participants can mutually agree upon a shared session key and exchange a secure value. This secure value is then integrated with the sensed data from the devices and utilized as input for regular AES encryption. By adopting this technique, the encrypted data gains robust protection against potential cryptanalysis attacks. Finally, a comparative analysis is conducted to illustrate how the proposed scheme effectively maintains efficiency in comparison to eight competitive schemes. This analysis evaluates the scheme’s performance across various factors, including security features, communication, and computational cost. MDPI 2023-06-19 /pmc/articles/PMC10305095/ /pubmed/37420868 http://dx.doi.org/10.3390/s23125703 Text en © 2023 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Allakany, Alaa
Saber, Abeer
Mostafa, Samih M.
Alsabaan, Maazen
Ibrahem, Mohamed I.
Elwahsh, Haitham
Enhancing Security in ZigBee Wireless Sensor Networks: A New Approach and Mutual Authentication Scheme for D2D Communication
title Enhancing Security in ZigBee Wireless Sensor Networks: A New Approach and Mutual Authentication Scheme for D2D Communication
title_full Enhancing Security in ZigBee Wireless Sensor Networks: A New Approach and Mutual Authentication Scheme for D2D Communication
title_fullStr Enhancing Security in ZigBee Wireless Sensor Networks: A New Approach and Mutual Authentication Scheme for D2D Communication
title_full_unstemmed Enhancing Security in ZigBee Wireless Sensor Networks: A New Approach and Mutual Authentication Scheme for D2D Communication
title_short Enhancing Security in ZigBee Wireless Sensor Networks: A New Approach and Mutual Authentication Scheme for D2D Communication
title_sort enhancing security in zigbee wireless sensor networks: a new approach and mutual authentication scheme for d2d communication
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC10305095/
https://www.ncbi.nlm.nih.gov/pubmed/37420868
http://dx.doi.org/10.3390/s23125703
work_keys_str_mv AT allakanyalaa enhancingsecurityinzigbeewirelesssensornetworksanewapproachandmutualauthenticationschemeford2dcommunication
AT saberabeer enhancingsecurityinzigbeewirelesssensornetworksanewapproachandmutualauthenticationschemeford2dcommunication
AT mostafasamihm enhancingsecurityinzigbeewirelesssensornetworksanewapproachandmutualauthenticationschemeford2dcommunication
AT alsabaanmaazen enhancingsecurityinzigbeewirelesssensornetworksanewapproachandmutualauthenticationschemeford2dcommunication
AT ibrahemmohamedi enhancingsecurityinzigbeewirelesssensornetworksanewapproachandmutualauthenticationschemeford2dcommunication
AT elwahshhaitham enhancingsecurityinzigbeewirelesssensornetworksanewapproachandmutualauthenticationschemeford2dcommunication

Ejemplares similares