@article{ART003280525},
author={Mi-Og Park},
title={A Secure and Efficient User Authentication Protocol for IoT Environments},
journal={Journal of The Korea Society of Computer and Information},
issn={1598-849X},
year={2025},
volume={30},
number={12},
pages={205-213}
TY - JOUR
AU - Mi-Og Park
TI - A Secure and Efficient User Authentication Protocol for IoT Environments
JO - Journal of The Korea Society of Computer and Information
PY - 2025
VL - 30
IS - 12
PB - The Korean Society Of Computer And Information
SP - 205
EP - 213
SN - 1598-849X
AB - In this paper, the security limitations and design flaws of the Li protocol proposed in 2023 are analyzed, and a new authentication protocol is proposed that addresses these concerns is proposed. The Li protocol analyzed in this paper contains a structural flaw that allows all legitimate users to directly access the server's secret key, which compromises the integrity of authentication and the confidentiality of the entire system, posing a critical security threat. Furthermore, the protocol is vulnerable to attacks such as smart-card lost attack, forward secrecy, session key exposure, ephemeral secret leakage attack, and key impersonation attack. This paper improves upon these issues and proposes a lightweight authentication protocol suitable for IoT environments. The proposed protocol, through security and performance analysis compared with related protocols, satisfies high security attributes while minimizing both computational and communication costs. Therefore this study is well-suited as a secure and practical IoT security authentication protocol.
KW - Server key exposure;Forward secrecy;Smart-card lost attack;;Ephemeral secret leakage attack;IoT environments
DO -
UR -
ER -
Mi-Og Park. (2025). A Secure and Efficient User Authentication Protocol for IoT Environments. Journal of The Korea Society of Computer and Information, 30(12), 205-213.
Mi-Og Park. 2025, "A Secure and Efficient User Authentication Protocol for IoT Environments", Journal of The Korea Society of Computer and Information, vol.30, no.12 pp.205-213.
Mi-Og Park "A Secure and Efficient User Authentication Protocol for IoT Environments" Journal of The Korea Society of Computer and Information 30.12 pp.205-213 (2025) : 205.
Mi-Og Park. A Secure and Efficient User Authentication Protocol for IoT Environments. 2025; 30(12), 205-213.
Mi-Og Park. "A Secure and Efficient User Authentication Protocol for IoT Environments" Journal of The Korea Society of Computer and Information 30, no.12 (2025) : 205-213.
Mi-Og Park. A Secure and Efficient User Authentication Protocol for IoT Environments. Journal of The Korea Society of Computer and Information, 30(12), 205-213.
Mi-Og Park. A Secure and Efficient User Authentication Protocol for IoT Environments. Journal of The Korea Society of Computer and Information. 2025; 30(12) 205-213.
Mi-Og Park. A Secure and Efficient User Authentication Protocol for IoT Environments. 2025; 30(12), 205-213.
Mi-Og Park. "A Secure and Efficient User Authentication Protocol for IoT Environments" Journal of The Korea Society of Computer and Information 30, no.12 (2025) : 205-213.
