{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,11]],"date-time":"2026-05-11T08:12:51Z","timestamp":1778487171277,"version":"3.51.4"},"reference-count":35,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2026,5,11]],"date-time":"2026-05-11T00:00:00Z","timestamp":1778457600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2026,5,11]],"date-time":"2026-05-11T00:00:00Z","timestamp":1778457600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"name":"National Key Research and Development Program of China","award":["2024YFB3108901"],"award-info":[{"award-number":["2024YFB3108901"]}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["U21B2021, 62472015, 62202027, 62572037"],"award-info":[{"award-number":["U21B2021, 62472015, 62202027, 62572037"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Open Research Fund of The State Key Laboratory of Blockchain and Data Security, Zhejiang University"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Cybersecurity"],"abstract":"Abstract<\/jats:title>\n Unmanned aerial vehicles (UAVs) have been increasingly integrated into diverse domains such as environmental monitoring, intelligent transportation, border surveillance, and military reconnaissance, giving rise to the broader concept of the Internet of Drones (IoD). However, this rapid proliferation also underscores the urgent need for secure and efficient communication mechanisms, as UAVs typically operate over public channels that are highly vulnerable to various security and privacy threats. To address these issues, authentication and key agreement (AKA) protocols have been introduced to enhance secure communication. However, most of the existing AKA protocols either incur high computation cost due to complex cryptographic primitives, or fail to provide resilience against attacks such as replay, impersonation, and ephemeral secret leakage. In this paper, we propose an ultra-lightweight AKA protocol that integrates physical unclonable function (PUF) with the lightweight authenticated encryption with associated data (AEAD) primitive ASCON. The protocol supports UAV registration over open channels, achieves mutual authentication between UAV and ground station, and extends to secure UAV-UAV communication with the assistance of the ground station. A formal proof under the real-or-random (ROR) model demonstrates the semantic security of the proposed protocol, while informal analysis confirms robustness against diverse attacks. Comprehensive performance evaluation shows that the total computation cost of the proposed protocol is approximately 2.391 ms, which is the lowest among the compared schemes. Specifically, it reduces computation cost by up to 69.0% compared with representative IoD authentication protocols and remains approximately 10.9% lower than existing ultra-lightweight designs. These results demonstrate that the proposed protocol achieves a superior balance between security strength and resource efficiency, making it particularly suitable for resource-constrained IoD environments.<\/jats:p>","DOI":"10.1186\/s42400-026-00594-3","type":"journal-article","created":{"date-parts":[[2026,5,11]],"date-time":"2026-05-11T08:04:59Z","timestamp":1778486699000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["An ultra-lightweight PUF and ASCON-based authentication and key agreement protocol for UAV-ground station and UAV-UAV communication"],"prefix":"10.1186","volume":"9","author":[{"ORCID":"https:\/\/orcid.org\/0009-0000-0334-5379","authenticated-orcid":false,"given":"Sijia","family":"Li","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hua","family":"Guo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jianwei","family":"Liu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yiran","family":"Han","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hutao","family":"Song","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2026,5,11]]},"reference":[{"issue":"2","key":"594_CR1","doi-asserted-by":"publisher","first-page":"1123","DOI":"10.1109\/COMST.2015.2495297","volume":"18","author":"L Gupta","year":"2015","unstructured":"Gupta L, Jain R, Vaszkun G (2015) Survey of important issues in uav communication networks. IEEE Commun Surv Tutorials 18(2):1123\u20131152","journal-title":"IEEE Commun Surv Tutorials"},{"issue":"4","key":"594_CR2","doi-asserted-by":"publisher","first-page":"3417","DOI":"10.1109\/COMST.2019.2906228","volume":"21","author":"A Fotouhi","year":"2019","unstructured":"Fotouhi A, Qiang H, Ding M, Hassan M, Giordano LG, Garcia-Rodriguez A, Yuan J (2019) Survey on uav cellular communications: practical aspects, standardization advancements, regulation, and security challenges. IEEE Commun Surv Tutorials 21(4):3417\u20133442","journal-title":"IEEE Commun Surv Tutorials"},{"issue":"3","key":"594_CR3","doi-asserted-by":"publisher","first-page":"224","DOI":"10.1504\/IJCSM.2022.124685","volume":"15","author":"S Ashraf","year":"2022","unstructured":"Ashraf S, Saleem S, Ahmed T, Arfeen ZA (2022) Succulent link selection strategy for underwater sensor network. Int J Comput Sci Math 15(3):224\u2013242","journal-title":"Int J Comput Sci Math"},{"issue":"5","key":"594_CR4","doi-asserted-by":"publisher","first-page":"6178","DOI":"10.1109\/TMC.2023.3319544","volume":"23","author":"R Karmakar","year":"2023","unstructured":"Karmakar R, Kaddoum G, Akhrif O (2023) A blockchain-based distributed and intelligent clustering-enabled authentication protocol for uav swarms. IEEE Trans Mob Comput 23(5):6178\u20136195","journal-title":"IEEE Trans Mob Comput"},{"issue":"2","key":"594_CR5","doi-asserted-by":"publisher","first-page":"1339","DOI":"10.1109\/JIOT.2021.3084946","volume":"9","author":"M Tanveer","year":"2021","unstructured":"Tanveer M, Kumar N, Hassan MM et al (2021) Ramp-iod: a robust authenticated key management protocol for the internet of drones. IEEE Internet Things J 9(2):1339\u20131353","journal-title":"IEEE Internet Things J"},{"key":"594_CR6","doi-asserted-by":"crossref","unstructured":"Badshah A, Abbas G, Waqas M, Tu S, Abbas ZH, Muhammad F, Chen S (2024) Usaf-iod: ultralightweight and secure authenticated key agreement framework for internet of drones environment. IEEE Transactions on Vehicular Technology","DOI":"10.1109\/TVT.2024.3375758"},{"issue":"10","key":"594_CR7","doi-asserted-by":"publisher","first-page":"10374","DOI":"10.1109\/TVT.2022.3188769","volume":"71","author":"Yu Sungjin","year":"2022","unstructured":"Sungjin Yu, Das AK, Park Y, Lorenz P (2022) Slap-iod: secure and lightweight authentication protocol using physical unclonable functions for internet of drones in smart city environments. IEEE Trans Veh Technol 71(10):10374\u201310388","journal-title":"IEEE Trans Veh Technol"},{"key":"594_CR8","doi-asserted-by":"crossref","unstructured":"Wang D, Cao Y, Lam K-Y, Hu Y, Kaiwartya O (2024) Authentication and key agreement based on three factors and puf for uavs-assisted post-disaster emergency communication. IEEE Internet of Things Journal","DOI":"10.1109\/JIOT.2024.3371101"},{"key":"594_CR9","doi-asserted-by":"publisher","first-page":"110118","DOI":"10.1016\/j.comnet.2023.110118","volume":"238","author":"Z Zhang","year":"2024","unstructured":"Zhang Z, Hsu C, Man Ho A, Harn L, Cui J, Xia Z, Zhao Z (2024) Prlap-iod: a puf-based robust and lightweight authentication protocol for internet of drones. Comput Netw 238:110118","journal-title":"Comput Netw"},{"issue":"3","key":"594_CR10","doi-asserted-by":"publisher","first-page":"4431","DOI":"10.1109\/JSYST.2021.3057047","volume":"15","author":"S Hussain","year":"2021","unstructured":"Hussain S, Chaudhry SA, Alomari OA, Alsharif MH, Khan MK, Kumar N (2021) Amassing the security: an ecc-based authentication scheme for internet of drones. IEEE Syst J 15(3):4431\u20134438","journal-title":"IEEE Syst J"},{"issue":"4","key":"594_CR11","doi-asserted-by":"publisher","first-page":"6425","DOI":"10.1109\/JSYST.2022.3162604","volume":"16","author":"M Zhang","year":"2022","unstructured":"Zhang M, Chunxiang X, Li S, Jiang C (2022) On the security of an ecc-based authentication scheme for internet of drones. IEEE Syst J 16(4):6425\u20136428","journal-title":"IEEE Syst J"},{"issue":"1","key":"594_CR12","doi-asserted-by":"publisher","first-page":"232","DOI":"10.1109\/TVT.2023.3306813","volume":"73","author":"M Tanveer","year":"2023","unstructured":"Tanveer M, Alasmary H, Kumar N, Nayak A (2023) Saaf-iod: secure and anonymous authentication framework for the internet of drones. IEEE Trans Veh Technol 73(1):232\u2013244","journal-title":"IEEE Trans Veh Technol"},{"key":"594_CR13","unstructured":"Pu C, Choo K-KR, Kora\u0107 D (2024) A lightweight and anonymous application-aware authentication and key agreement protocol for the internet of drones. IEEE Internet of Things Journal"},{"issue":"5","key":"594_CR14","doi-asserted-by":"publisher","first-page":"3858","DOI":"10.1109\/TMC.2023.3284216","volume":"23","author":"R Karmakar","year":"2023","unstructured":"Karmakar R, Kaddoum G, Akhrif O (2023) A puf and fuzzy extractor-based uav-ground station and uav-uav authentication mechanism with intelligent adaptation of secure sessions. IEEE Trans Mob Comput 23(5):3858\u20133875","journal-title":"IEEE Trans Mob Comput"},{"key":"594_CR15","doi-asserted-by":"crossref","unstructured":"Zhao R, Wang L, Zhang X (2024) Casar: cross uc-domain authentication scheme with attack resistance for sunet. In GLOBECOM 2024-2024 IEEE Global Communications Conference, pp. 3601\u20133606. IEEE","DOI":"10.1109\/GLOBECOM52923.2024.10901636"},{"issue":"12","key":"594_CR16","doi-asserted-by":"publisher","first-page":"15068","DOI":"10.1109\/TVT.2020.3033060","volume":"69","author":"T Alladi","year":"2020","unstructured":"Alladi T, Bansal G, Chamola V, Guizani M et al (2020) Secauthuav: a novel authentication scheme for uav-ground station and uav-uav communication. IEEE Trans Veh Technol 69(12):15068\u201315077","journal-title":"IEEE Trans Veh Technol"},{"key":"594_CR17","doi-asserted-by":"crossref","unstructured":"Benssalah M, Drouiche K (2023) On the security of the novel authentication scheme for uav-ground station and uav-uav communication. In SECRYPT, pp. 361\u2013368","DOI":"10.5220\/0012077400003555"},{"key":"594_CR18","doi-asserted-by":"crossref","unstructured":"Almazroi AA, Alkinani MH, Al-Shareeda MA, Manickam S (2024) A novel ddos mitigation strategy in 5g-based vehicular networks using chebyshev polynomials. Arabian Journal for Science and Engineering, 49(9):11991\u201312004","DOI":"10.1007\/s13369-023-08535-9"},{"key":"594_CR19","doi-asserted-by":"crossref","unstructured":"Almazroi AA, Alqarni MA, Al-Shareeda MA, Alkinani MH, Almazroey AA, Gaber T (2024) FCA-VBN: fog computing-based authentication scheme for 5G-assisted vehicular blockchain network. Internet of Things, 25:101096","DOI":"10.1016\/j.iot.2024.101096"},{"key":"594_CR20","doi-asserted-by":"crossref","unstructured":"Al-shareeda MA, Anbar M, Hasbullah IH, Manickam S, Abdullah N, Hamdi MM (2020) Review of prevention schemes for replay attack in vehicular ad hoc networks (vanets). In 2020 IEEE 3rd International Conference on Information Communication and Signal Processing (ICICSP), pages 394\u2013398. IEEE","DOI":"10.1109\/ICICSP50920.2020.9232047"},{"issue":"6","key":"594_CR21","doi-asserted-by":"publisher","first-page":"e0287291","DOI":"10.1371\/journal.pone.0287291","volume":"18","author":"AA Almazroi","year":"2023","unstructured":"Almazroi AA, Aldhahri EA, Al-Shareeda MA, Manickam S (2023) ECA-VFog: an efficient certificateless authentication scheme for 5G-assisted vehicular fog computing. PLoS ONE 18(6):e0287291","journal-title":"PLoS ONE"},{"issue":"10","key":"594_CR22","doi-asserted-by":"publisher","first-page":"e0292690","DOI":"10.1371\/journal.pone.0292690","volume":"18","author":"AA Almazroi","year":"2023","unstructured":"Almazroi AA, Alqarni MA, Al-Shareeda MA, Manickam S (2023) L-CPPA: lattice-based conditional privacy-preserving authentication scheme for fog computing with 5G-enabled vehicular system. PLoS ONE 18(10):e0292690","journal-title":"PLoS ONE"},{"key":"594_CR23","doi-asserted-by":"crossref","unstructured":"Al-Shareeda MA, Gaber T, Alqarni MA, Alkinani MH, Almazroey AA, Almazroi AA (2025) Chebyshev polynomial based emergency conditions with authentication scheme for 5G-assisted vehicular fog computing. IEEE Transactions on Dependable and Secure Computing","DOI":"10.1109\/TDSC.2025.3553868"},{"key":"594_CR24","doi-asserted-by":"crossref","unstructured":"Tanveer M, Aldosary A, Das AK, Aldossari SA, Chaudhry SA et\u00a0al (2024) Paf-iod: Puf-enabled authentication framework for the internet of drones. IEEE Transactions on Vehicular Technology","DOI":"10.2139\/ssrn.4681491"},{"issue":"12","key":"594_CR25","doi-asserted-by":"publisher","first-page":"22301","DOI":"10.1109\/JIOT.2024.3379930","volume":"11","author":"K Mahmood","year":"2024","unstructured":"Mahmood K, Ghaffar Z, Farooq M, Yahya K, Das AK, Chaudhry SA (2024) A security enhanced chaotic-map-based authentication protocol for internet of drones. IEEE Internet Things J 11(12):22301\u201322309","journal-title":"IEEE Internet Things J"},{"key":"594_CR26","doi-asserted-by":"crossref","unstructured":"Abbasinezhad-Mood D, Ostad-Sharif A, Nikooghadam M, Mazinani SM (2021) Novel certificateless chebyshev chaotic map-based key agreement protocol for advanced metering infrastructure: D. abbasinezhad-mood et al. The Journal of Supercomputing, 77(8):8082\u20138110","DOI":"10.1007\/s11227-020-03552-z"},{"key":"594_CR27","doi-asserted-by":"crossref","unstructured":"Chuang K-H, Bury E, Degraeve R, Kaczer B, Linten D, Verbauwhede I (2019) A physically unclonable function using soft oxide breakdown featuring 0% native ber and 51.8 fj\/bit in 40-nm cmos. IEEE Journal of Solid-State Circuits, 54(10):2765\u20132776","DOI":"10.1109\/JSSC.2019.2920714"},{"issue":"3","key":"594_CR28","doi-asserted-by":"publisher","first-page":"3880","DOI":"10.1109\/TNSM.2023.3246732","volume":"20","author":"X Ren","year":"2023","unstructured":"Ren X, Cao J, Ma R, Luo Y, Guan J, Zhang Y, Li H (2023) A novel access and handover authentication scheme in uav-aided satellite-terrestrial integration networks enabling 5g. IEEE Trans Netw Serv Manage 20(3):3880\u20133899","journal-title":"IEEE Trans Netw Serv Manage"},{"issue":"12","key":"594_CR29","doi-asserted-by":"publisher","first-page":"9918","DOI":"10.1109\/JIOT.2022.3163367","volume":"9","author":"P Cong","year":"2022","unstructured":"Cong P, Wall A, Choo K-KR, Ahmed I, Lim S (2022) A lightweight and privacy-preserving mutual authentication and key agreement protocol for internet of drones environment. IEEE Internet Things J 9(12):9918\u20139933","journal-title":"IEEE Internet Things J"},{"key":"594_CR30","doi-asserted-by":"crossref","unstructured":"LaMacchia B, Lauter K, Mityagin A (2007) Stronger security of authenticated key exchange. pp. 1\u201316","DOI":"10.1007\/978-3-540-75670-5_1"},{"issue":"5","key":"594_CR31","first-page":"4752","volume":"23","author":"T Shanshan","year":"2023","unstructured":"Shanshan T, Badshah A, Alasmary H, Waqas M (2023) Eake-wc: Efficient and anonymous authenticated key exchange scheme for wearable computing. IEEE Trans Mob Comput 23(5):4752\u20134763","journal-title":"IEEE Trans Mob Comput"},{"issue":"4","key":"594_CR32","doi-asserted-by":"publisher","first-page":"5770","DOI":"10.1109\/TVT.2023.3333398","volume":"73","author":"A Irshad","year":"2023","unstructured":"Irshad A, Alzahrani BA, Albeshri A, Alsubhi K, Nayyar A, Chaudhry SA (2023) Spake-dc: a secure puf enabled authenticated key exchange for 5g-based drone communications. IEEE Trans Veh Technol 73(4):5770\u20135780","journal-title":"IEEE Trans Veh Technol"},{"key":"594_CR33","doi-asserted-by":"publisher","first-page":"4448","DOI":"10.1109\/TIFS.2024.3379861","volume":"19","author":"C Tian","year":"2024","unstructured":"Tian C, Ma J, Li T, Zhang J, Ma C, Xi N (2024) Provably and physically secure uav-assisted authentication protocol for iot devices in unattended settings. IEEE Trans Inf Forensics Secur 19:4448\u20134463","journal-title":"IEEE Trans Inf Forensics Secur"},{"key":"594_CR34","unstructured":"Lynn B \"pairing-based cryptography library\""},{"issue":"10","key":"594_CR35","doi-asserted-by":"publisher","first-page":"9075","DOI":"10.1109\/TMC.2024.3357599","volume":"23","author":"A Tomar","year":"2024","unstructured":"Tomar A, Tripathi S (2024) A chebyshev polynomial-based authentication scheme using blockchain technology for fog-based vehicular network. IEEE Trans Mob Comput 23(10):9075\u20139089","journal-title":"IEEE Trans Mob Comput"}],"container-title":["Cybersecurity"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s42400-026-00594-3.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1186\/s42400-026-00594-3","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s42400-026-00594-3.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,5,11]],"date-time":"2026-05-11T08:05:14Z","timestamp":1778486714000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1186\/s42400-026-00594-3"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,5,11]]},"references-count":35,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2026,12]]}},"alternative-id":["594"],"URL":"https:\/\/doi.org\/10.1186\/s42400-026-00594-3","relation":{},"ISSN":["2523-3246"],"issn-type":[{"value":"2523-3246","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026,5,11]]},"assertion":[{"value":"15 September 2025","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"21 April 2026","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"11 May 2026","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"All authors have no conflict of interest.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of interest"}}],"article-number":"164"}}