{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,10]],"date-time":"2026-06-10T16:55:03Z","timestamp":1781110503645,"version":"3.54.1"},"reference-count":43,"publisher":"MDPI AG","issue":"4","license":[{"start":{"date-parts":[[2018,4,5]],"date-time":"2018-04-05T00:00:00Z","timestamp":1522886400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>Modern societies are moving toward an information-oriented environment. To gather and utilize information around people\u2019s modern life, tiny devices with all kinds of sensing devices and various sizes of gateways need to be deployed and connected with each other through the Internet or proxy-based wireless sensor networks (WSNs). Within this kind of Internet of Things (IoT) environment, how to authenticate each other between two communicating devices is a fundamental security issue. As a lot of IoT devices are powered by batteries and they need to transmit sensed data periodically, it is necessary for IoT devices to adopt a lightweight authentication protocol to reduce their energy consumption when a device wants to authenticate and transmit data to its targeted peer. In this paper, a lightweight continuous authentication protocol for sensing devices and gateway devices in general IoT environments is introduced. The concept of valid authentication time period is proposed to enhance robustness of authentication between IoT devices. To construct the proposed lightweight continuous authentication protocol, token technique and dynamic features of IoT devices are adopted in order to reach the design goals: the reduction of time consumption for consecutive authentications and energy saving for authenticating devices through by reducing the computation complexity during session establishment of continuous authentication. Security analysis is conducted to evaluate security strength of the proposed protocol. In addition, performance analysis has shown the proposed protocol is a strong competitor among existing protocols for device-to-device authentication in IoT environments.<\/jats:p>","DOI":"10.3390\/s18041104","type":"journal-article","created":{"date-parts":[[2018,4,5]],"date-time":"2018-04-05T16:50:58Z","timestamp":1522947058000},"page":"1104","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":75,"title":["A Lightweight Continuous Authentication Protocol for the Internet of Things"],"prefix":"10.3390","volume":"18","author":[{"given":"Yo-Hsuan","family":"Chuang","sequence":"first","affiliation":[{"name":"Department of Information Management, National Taiwan University of Science and Technology, Taipei 10607, Taiwan"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4622-4977","authenticated-orcid":false,"given":"Nai-Wei","family":"Lo","sequence":"additional","affiliation":[{"name":"Department of Information Management, National Taiwan University of Science and Technology, Taipei 10607, Taiwan"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Cheng-Ying","family":"Yang","sequence":"additional","affiliation":[{"name":"Department of Computer Science, University of Taipei, Taipei 10048, Taiwan"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ssu-Wei","family":"Tang","sequence":"additional","affiliation":[{"name":"Department of Information Management, National Taiwan University of Science and Technology, Taipei 10607, Taiwan"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"1968","published-online":{"date-parts":[[2018,4,5]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","first-page":"585","DOI":"10.1109\/TETC.2015.2390034","article-title":"The Emerging Internet of Things Marketplace from an Industrial Perspective: A Survey","volume":"3","author":"Perera","year":"2015","journal-title":"IEEE Trans. Emerg. Top. Comput."},{"key":"ref_2","unstructured":"Coetzee, L., and Eksteen, J. (2011, January 11\u201313). The Internet of Things\u2014Promise for the Future? An Introduction. Proceedings of the IST-Africa Conference, Gaborone, Botswana."},{"key":"ref_3","unstructured":"(2018, May 21). Internet of Things (IoT) Cybersecurity Colloquium, National Institute of Standards and Technology (NIST), NISTIR 8201, Available online: Https:\/\/nvlpubs.nist.gov\/nistpubs\/ir\/2017\/NIST.IR.8201.pdf."},{"key":"ref_4","doi-asserted-by":"crossref","first-page":"2347","DOI":"10.1109\/COMST.2015.2444095","article-title":"Internet of Things: A Survey on Enabling Technologies, Protocols, and Applications","volume":"17","author":"Guizani","year":"2015","journal-title":"IEEE Commun. Surv. Tutor."},{"key":"ref_5","doi-asserted-by":"crossref","unstructured":"Mahmoud, R., Yousuf, T., and Zualkeman, I. (2015, January 14\u201316). Internet of things (IoT) Security: Current Status, Challenges and Prospective Measures. Proceedings of the 2015 10th International Conference for Internet Technology and Secured Transactions (ICITST), London, UK.","DOI":"10.1109\/ICITST.2015.7412116"},{"key":"ref_6","doi-asserted-by":"crossref","unstructured":"Shivraj, V.L., Rajan, M.A., Singh, M., and Balamuralidhar, P. (2015, January 17\u201319). One Time Password Authentication Scheme Based on Elliptic Curves for Internet of Things (IoT). Proceedings of the 2015 5th National Symposium on Information Technology: Towards New Smart World (NSITNSW), Riyadh, Saudi Arabia.","DOI":"10.1109\/NSITNSW.2015.7176384"},{"key":"ref_7","doi-asserted-by":"crossref","unstructured":"Abomhara, M., and K\u00f8ien, G.M. (2014, January 11\u201314). Security and Privacy in the Internet of Things: Current Status and Open Issues. Proceedings of the 2014 International Conference on Privacy and Security in Mobile Systems (PRISMS), Aalborg, Denmark.","DOI":"10.1109\/PRISMS.2014.6970594"},{"key":"ref_8","doi-asserted-by":"crossref","unstructured":"Alqassem, I., and Svetinovic, D. (2014, January 9\u201312). A Taxonomy of Security and Privacy Requirements for the Internet of Things (IoT). Proceedings of the 2014 IEEE International Conference on Industrial Engineering and Engineering Management, Bandar Sunway, Malaysia.","DOI":"10.1109\/IEEM.2014.7058837"},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"1343","DOI":"10.1109\/TSMCB.2012.2191403","article-title":"Dynamic Sample Size Detection in Learning Command Line Sequence for Continuous Authentication","volume":"42","author":"Traore","year":"2012","journal-title":"IEEE Trans. Syst. Man Cybern."},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Mondal, S., and Bours, P. (2015, January 4\u20137). Continuous Authentication in a Real World Settings. Proceedings of the 2015 Eighth International Conference on Advances in Pattern Recognition (ICAPR), Kolkata, India.","DOI":"10.1109\/ICAPR.2015.7050673"},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Buduru, A.B., and Yau, S.S. (2015, January 3\u20135). An Effective Approach to Continuous User Authentication for Touch Screen Smart Devices. Proceedings of the 2015 IEEE International Conference on Software Quality, Reliability and Security (QRS), Vancouver, BC, Canada.","DOI":"10.1109\/QRS.2015.40"},{"key":"ref_12","doi-asserted-by":"crossref","unstructured":"Mondal, S., and Bours, P. (2015, January 16\u201319). Continuous Authentication and Identification for Mobile Devices: Combining Security and Forensics. Proceedings of the 2015 IEEE International Workshop on Information Forensics and Security (WIFS), Rome, Italy.","DOI":"10.1109\/WIFS.2015.7368591"},{"key":"ref_13","doi-asserted-by":"crossref","unstructured":"Brocardo, M.L., Traore, I., and Woungang, I. (2014, January 13\u201316). Toward a Framework for Continuous Authentication Using Stylometry. Proceedings of the 2014 IEEE 28th International Conference on Advanced Information Networking and Applications, Victoria, BC, Canada.","DOI":"10.1109\/AINA.2014.18"},{"key":"ref_14","doi-asserted-by":"crossref","unstructured":"Bamasag, O.O., and Youcef-Toumi, K. (2015, January 4\u20139). Towards Continuous Authentication in Internet of Things Based on Secret Sharing Scheme. Proceedings of the WESS\u201915: Workshop on Embedded Systems Security, Amsterdam, The Netherlands.","DOI":"10.1145\/2818362.2818363"},{"key":"ref_15","unstructured":"Bormann, C., Ersue, M., and Keranen, A. (2018, May 20). Terminology for Constrained-Node Networks. RFC 7228, Internet Engineering Task Force (IETF). Available online: https:\/\/tools.ietf.org\/html\/rfc7228."},{"key":"ref_16","doi-asserted-by":"crossref","unstructured":"Sethi, M., Arkko, J., Keranen, A., and Back, H. (2018, May 20). Practical Considerations and Implementation Experiences in Securing Smart Object Networks. Draft-Ietf-Lwig-Crypto-Sensors-06. Available online: https:\/\/tools.ietf.org\/pdf\/draft-ietf-lwig-crypto-sensors-06.pdf.","DOI":"10.17487\/RFC8387"},{"key":"ref_17","doi-asserted-by":"crossref","first-page":"2787","DOI":"10.1016\/j.comnet.2010.05.010","article-title":"The Internet of Things: A Survey","volume":"54","author":"Atzori","year":"2010","journal-title":"Comput. Netw."},{"key":"ref_18","doi-asserted-by":"crossref","unstructured":"Khemissa, H., and Tandjaoui, D. (2015, January 9\u201311). A Lightweight Authentication Scheme for E-Health Applications in the Context of Internet of Things. Proceedings of the 2015 9th International Conference on Next Generation Mobile Applications, Services and Technologies, Cambridge, UK.","DOI":"10.1109\/NGMAST.2015.31"},{"key":"ref_19","doi-asserted-by":"crossref","unstructured":"Khemissa, H., and Tandjaoui, D. (2016, January 18\u201320). A Novel Lightweight Authentication Scheme for Heterogeneous Wireless Sensor Networks in the Context of Internet of Things. Proceedings of the 2016 Wireless Telecommunications Symposium (WTS), London, UK.","DOI":"10.1109\/WTS.2016.7482039"},{"key":"ref_20","doi-asserted-by":"crossref","unstructured":"Mahalle, P.N., Prasad, N.R., and Prasad, R. (2014, January 11\u201314). Threshold Cryptography-based Group Authentication (TCGA) Scheme for the Internet of Things (IoT). Proceedings of the 2014 4th International Conference on Wireless Communications, Vehicular Technology, Information Theory and Aerospace & Electronic Systems (VITAE), Aalborg, Denmark.","DOI":"10.1109\/VITAE.2014.6934425"},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Porambage, P., Schmitt, C., Kumar, P., Gurtov, A., and Ylianttila, M. (2014, January 6\u20139). Two-phase Authentication Protocol for Wireless Sensor Networks in Distributed IoT Applications. Proceedings of the 2014 IEEE Wireless Communications and Networking Conference (WCNC), Istanbul, Turkey.","DOI":"10.1109\/WCNC.2014.6952860"},{"key":"ref_22","unstructured":"Krawczyk, H., Bellare, M., and Canetti, R. (2017, July 26). HMAC: Keyed-Hashing for Message Authentication. RFC 2104, Internet Engineering Task Force (IETF). Available online: https:\/\/www.rfc-editor.org\/rfc\/rfc2104.txt."},{"key":"ref_23","unstructured":"Rescorla, E., and Modadugu, N. (2017, July 26). Datagram Transport Layer Security Version 1.2. RFC 6347, Internet Engineering Task Force (IETF). Available online: https:\/\/www.rfc-editor.org\/rfc\/rfc6347.txt."},{"key":"ref_24","doi-asserted-by":"crossref","first-page":"2710","DOI":"10.1016\/j.adhoc.2013.05.003","article-title":"DTLS Based Security and Two-way Authentication for the Internet of Things","volume":"11","author":"Kothmayr","year":"2013","journal-title":"Ad Hoc Netw."},{"key":"ref_25","unstructured":"Goh, E.J. (2007). Encryption Schemes from Bilinear Maps. [Ph.D. Thesis, Stanford University]."},{"key":"ref_26","doi-asserted-by":"crossref","unstructured":"Paillier, P. (1999). Public-Key Cryptosystems Based on Composite Degree Residuosity Classes. Advances in Cryptology\u2014EUROCRYPT \u201999, Springer.","DOI":"10.1007\/3-540-48910-X_16"},{"key":"ref_27","unstructured":"(2017, July 26). Advanced Encryption Standard (AES), Federal Information Processing Standards Publication 197, National Institute of Standards and Technology (NIST), Available online: http:\/\/nvlpubs.nist.gov\/nistpubs\/FIPS\/NIST.FIPS.197.pdf."},{"key":"ref_28","doi-asserted-by":"crossref","first-page":"254","DOI":"10.1109\/JSEN.2015.2475298","article-title":"Lightweight and Secure Session-Key Establishment Scheme in Smart Home Environments","volume":"16","author":"Kumar","year":"2016","journal-title":"IEEE Sens. J."},{"key":"ref_29","doi-asserted-by":"crossref","first-page":"5340","DOI":"10.1109\/JSEN.2015.2441113","article-title":"Untraceable Sensor Movement in Distributed IoT Infrastructure","volume":"15","author":"Gope","year":"2015","journal-title":"IEEE Sens. J."},{"key":"ref_30","doi-asserted-by":"crossref","first-page":"1403","DOI":"10.1109\/JSYST.2015.2456878","article-title":"Effectively Collecting Data for the Location-Based Authentication in Internet of Things","volume":"11","author":"Kawamoto","year":"2015","journal-title":"IEEE Syst. J."},{"key":"ref_31","doi-asserted-by":"crossref","unstructured":"Shimshon, T., Moskovitch, R., Rokach, L., and Elovici, Y. (2010, January 11\u201314). Continuous Verification Using Keystroke Dynamics. Proceedings of the 2010 International Conference on Computational Intelligence and Security (CIS), Nanning, China.","DOI":"10.1109\/CIS.2010.95"},{"key":"ref_32","doi-asserted-by":"crossref","unstructured":"Shen, C., Cai, Z., and Guan, X. (2012, January 25\u201328). Continuous Authentication for Mouse Dynamics: A Pattern-growth Approach. Proceedings of the IEEE\/IFIP International Conference on Dependable Systems and Networks (DSN 2012), Boston, MA, USA.","DOI":"10.1109\/DSN.2012.6263955"},{"key":"ref_33","doi-asserted-by":"crossref","first-page":"77","DOI":"10.1016\/j.cose.2014.03.005","article-title":"User Identification and Authentication Using Multi-modal Behavioral Biometrics","volume":"43","author":"Bailey","year":"2014","journal-title":"Comput. Secur."},{"key":"ref_34","doi-asserted-by":"crossref","first-page":"771","DOI":"10.1109\/TIFS.2010.2075927","article-title":"Soft Biometric Traits for Continuous User Authentication","volume":"5","author":"Niinuma","year":"2010","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"ref_35","doi-asserted-by":"crossref","unstructured":"Mock, K., Hoanca, B., Weaver, J., and Milton, M. (2012, January 16\u201318). Real-time Continuous Iris Recognition for Authentication Using an Eye Tracker. Proceedings of the 2012 ACM Conference on Computer and Communications Security, Raleigh, NC, USA.","DOI":"10.1145\/2382196.2382307"},{"key":"ref_36","doi-asserted-by":"crossref","first-page":"404","DOI":"10.1109\/THMS.2016.2623562","article-title":"Continuous Authentication with Touch Behavioral Biometrics and Voice on Wearable Glasses","volume":"47","author":"Peng","year":"2017","journal-title":"IEEE Trans. Hum. Mach. Syst."},{"key":"ref_37","unstructured":"Zhou, L., Su, C., Chiu, W., and Yeh, K.H. (2017). You Think, Therefore You Are: Transparent Authentication System with Brainwave-oriented Bio-features for IoT Networks. IEEE Trans. Emerg. Top. Comput."},{"key":"ref_38","unstructured":"Seitz, L., Gerdes, S., Selander, G., Mani, M., and Kumar, S. (2018, May 20). Use Cases for Authentication and Authorization in Constrained Environments. RFC 7744, Internet Engineering Task Force (IETF). Available online: https:\/\/tools.ietf.org\/html\/rfc7744."},{"key":"ref_39","unstructured":"(2018, May 20). Scyther. Available online: https:\/\/www.cs.ox.ac.uk\/people\/cas.cremers\/scyther\/."},{"key":"ref_40","unstructured":"Gavin, L. (1997, January 10\u201312). A Hierarchy of Authentication Specifications. Proceedings of the 10th IEEE Workshop on Computer Security Foundations, Rockport, MA, USA."},{"key":"ref_41","doi-asserted-by":"crossref","first-page":"139","DOI":"10.1016\/j.tcs.2006.08.034","article-title":"Injective Synchronisation: An Extension of the Authentication Hierarchy","volume":"367","author":"Cremers","year":"2006","journal-title":"Theor. Comput. Sci."},{"key":"ref_42","doi-asserted-by":"crossref","first-page":"2046735","DOI":"10.1155\/2017\/2046735","article-title":"Performance Evaluation of Cryptographic Algorithms over IoT Platforms and Operating Systems","volume":"2017","author":"Pereira","year":"2017","journal-title":"Secur. Commun. Netw."},{"key":"ref_43","doi-asserted-by":"crossref","unstructured":"Yeh, K.H., Su, C., Choo, K.R., and Chiu, W. (2017). A Novel Certificateless Signature Scheme for Smart Objects in the Internet-of-Things. Sensors, 17.","DOI":"10.3390\/s17051001"}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/18\/4\/1104\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T14:59:44Z","timestamp":1760194784000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/18\/4\/1104"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,4,5]]},"references-count":43,"journal-issue":{"issue":"4","published-online":{"date-parts":[[2018,4]]}},"alternative-id":["s18041104"],"URL":"https:\/\/doi.org\/10.3390\/s18041104","relation":{},"ISSN":["1424-8220"],"issn-type":[{"value":"1424-8220","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018,4,5]]}}}