{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,12]],"date-time":"2025-10-12T04:04:43Z","timestamp":1760241883468,"version":"build-2065373602"},"reference-count":28,"publisher":"MDPI AG","issue":"11","license":[{"start":{"date-parts":[[2018,10,23]],"date-time":"2018-10-23T00:00:00Z","timestamp":1540252800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Symmetry"],"abstract":"<jats:p>The Internet-of-Things (IoT) is an emerging paradigm seamlessly integrating a great number of smart objects ubiquitously connected to the Internet. With the rise in interest in the IoT, industry and academia have introduced a variety of authentication technologies to deal with security challenges. Authentication in IoT involves not only shifting intelligent access control down to the end smart objects, but also user identification and verification. In this paper, we build an authentication system based on brainwave reactions to a chain of events. Brainwaves, as external signals of a functioning brain, provide a glimpse into how we think and react. However, seen another way, we could reasonably expect that a given action or event could be linked back to its corresponding brainwave reaction. Recently, commercial products in the form of wearable brainwave headsets have appeared on the market, opening up the possibility of exploiting brainwaves for various purposes and making this more feasible. In the proposed system, we use a commercially available brainwave headset to collect brainwave data from participants for use in the proposed authentication system. After the brainwave data collection process, we apply a machine learning-based approach to extract features from brainwaves to serve as authentication tokens in the system and support the authentication system itself.<\/jats:p>","DOI":"10.3390\/sym10110537","type":"journal-article","created":{"date-parts":[[2018,10,24]],"date-time":"2018-10-24T02:59:40Z","timestamp":1540349980000},"page":"537","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":8,"title":["Authentication with What You See and Remember in the Internet of Things"],"prefix":"10.3390","volume":"10","author":[{"given":"Wayne","family":"Chiu","sequence":"first","affiliation":[{"name":"Department of Information Management, National Dong Hwa University, Hualien 97401, Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chunhua","family":"Su","sequence":"additional","affiliation":[{"name":"Division of Computer Science, University of Aizu, Aizu-Wakamatsu 965-8580, Fukushima Prefecture, Japan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chuan-Yen","family":"Fan","sequence":"additional","affiliation":[{"name":"Department of Information Management, National Taiwan University of Science and Technology, Taipei 10607, Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6502-472X","authenticated-orcid":false,"given":"Chien-Ming","family":"Chen","sequence":"additional","affiliation":[{"name":"College of Computer Science and Engineering, Shandong University of Science and Technology, Qingdao 266590, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0598-761X","authenticated-orcid":false,"given":"Kuo-Hui","family":"Yeh","sequence":"additional","affiliation":[{"name":"Department of Information Management, National Dong Hwa University, Hualien 97401, Taiwan"},{"name":"Division of Computer Science, University of Aizu, Aizu-Wakamatsu 965-8580, Fukushima Prefecture, Japan"},{"name":"Department of Computer Science and Engineering, National Sun Yat-sen University, Kaohsiung 804, Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2018,10,23]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","first-page":"8459","DOI":"10.1109\/ACCESS.2018.2808324","article-title":"A Survey on Resource Management in IoT Operating Systems","volume":"6","author":"Musaddiq","year":"2018","journal-title":"IEEE Access"},{"key":"ref_2","doi-asserted-by":"crossref","unstructured":"Wurm, J., Hoang, K., Arias, O., Sadeghi, A.-R., and Jin, Y. (2016, January 25\u201328). Security analysis on consumer and industrial IoT devices. Proceedings of the 2016 21st Asia and South Pacific Design Automation Conference (ASP-DAC), Macau, China.","DOI":"10.1109\/ASPDAC.2016.7428064"},{"key":"ref_3","doi-asserted-by":"crossref","unstructured":"Zhang, Z.-K., Cho, M.C.Y., Wang, C.-W., Hsu, C.-W., Chen, C.-K., and Shieh, S. (2014, January 17\u201319). IoT Security: Ongoing Challenges and Research Opportunities. Proceedings of the 2014 IEEE 7th International Conference on Service-Oriented Computing and Applications, Matsue, Japan.","DOI":"10.1109\/SOCA.2014.58"},{"key":"ref_4","unstructured":"(2018, April 12). Google SmartLock. Available online: https:\/\/get.google.com\/smartlock\/."},{"key":"ref_5","unstructured":"(2018, April 12). How to Take Advantage of the Dynamic Lock Feature in Windows 10. Available online: https:\/\/www.techrepublic.com\/article\/how-to-take-advantage-of-.the-dynamic-lock-feature-in-windows-10\/."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"150","DOI":"10.1109\/MCOM.2018.1700339","article-title":"I Walk, Therefore I Am: Continuous User Authentication with Plantar Biometrics","volume":"56","author":"Yeh","year":"2018","journal-title":"IEEE Commun. Mag."},{"key":"ref_7","doi-asserted-by":"crossref","first-page":"137","DOI":"10.1016\/j.neucom.2014.08.084","article-title":"Brain Signal\u2019s Low-Frequency Fits the Continuous Authentication","volume":"164","author":"Matsuyama","year":"2015","journal-title":"Neurocomputing"},{"key":"ref_8","unstructured":"(2018, April 12). Eye Closed Brainwave Dataset. Available online: http:\/\/www.bri.com.tw\/data\/sample_data\/BR8_sample%20data_eyeclosed20141205.rar."},{"key":"ref_9","doi-asserted-by":"crossref","unstructured":"Abomhara, M., and K\u00f8ien, G.M. (2014, January 11\u201314). Security and privacy in the Internet of Things: Current status and open issues. Proceedings of the 2014 International Conference on Privacy and Security in Mobile Systems (PRISMS), Aalborg, Denmark.","DOI":"10.1109\/PRISMS.2014.6970594"},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Liu, Z., Longa, P., Pereira, G., Reparaz, O., and Seo, H. (2017, January 25\u201328). FourQ on Embedded Devices with Strong Countermeasures against Side-Channel Attacks. Proceedings of the Conference on Cryptographic Hardware and Embedded Systems 2017 (CHES), Taipei, Taiwan.","DOI":"10.1007\/978-3-319-66787-4_32"},{"key":"ref_11","unstructured":"McGrew, D.A., and Viega, J. (2018, July 20). The Galois\/Counter Mode of Operation (GCM). Available online: http:\/\/citeseerx.ist.psu.edu\/viewdoc\/download?doi=10.1.1.694.695&rep=rep1&type=pdf."},{"key":"ref_12","unstructured":"Abed, F., Forler, C., and Lucks, S. (2018, July 20). Overview of the Candidates in the CAESAR Competition for Authenticated Encryption. Available online: http:\/\/citeseerx.ist.psu.edu\/viewdoc\/download?doi=10.1.1.689.6253&rep=rep1&type=pdf."},{"key":"ref_13","doi-asserted-by":"crossref","unstructured":"Niruntasukrat, A., Issariyapat, C., Pongpaibool, P., Meesublak, K., Aiumsupucgul, P., and Panya, A. (2016, January 23\u201327). Authorization mechanism for MQTT-based Internet of Things. Proceedings of the 2016 IEEE International Conference on Communications Workshops (ICC), Kuala Lumpur, Malaysia.","DOI":"10.1109\/ICCW.2016.7503802"},{"key":"ref_14","doi-asserted-by":"crossref","first-page":"690","DOI":"10.1109\/JSAC.2015.2393436","article-title":"Toward a Lightweight Authentication and Authorization Framework for Smart Objects","volume":"33","author":"Pawlowski","year":"2015","journal-title":"IEEE J. Sel. Areas Commun."},{"key":"ref_15","doi-asserted-by":"crossref","first-page":"657","DOI":"10.1109\/TPDS.2014.2311791","article-title":"Aggregated-Proof Based Hierarchical Authentication Scheme for the Internet of Things","volume":"26","author":"Ning","year":"2015","journal-title":"IEEE Trans. Parallel Distrib. Syst."},{"key":"ref_16","doi-asserted-by":"crossref","first-page":"7","DOI":"10.1186\/2196-064X-1-7","article-title":"Understanding User Perceptions of Transparent Authentication on a Mobile Device","volume":"1","author":"Crawford","year":"2014","journal-title":"J. Trust Manag."},{"key":"ref_17","doi-asserted-by":"crossref","unstructured":"Clarke, N. (2011). Transparent User Authentication-Biometrics, RFID and Behavioural Profiling, Springer.","DOI":"10.1007\/978-0-85729-805-8"},{"key":"ref_18","unstructured":"Lamkin, P. (2018, July 20). Wearable Tech Market to be Worth $34 Billion by 2020. Available online: https:\/\/www.forbes.com\/sites\/paullamkin\/2016\/02\/17\/wearable-tech-market-to-be-worth-34-billion-by-2020\/#4d539bb33cb5."},{"key":"ref_19","unstructured":"Tulceanu, V. (2012, January 27\u201331). Comprehensive brainwave authentication using emotional stimuli. Proceedings of the 20th European Signal Processing Conference (EUSIPCO), Bucharest, Romania."},{"key":"ref_20","doi-asserted-by":"crossref","unstructured":"Liew, S.H., Choo, Y.-H., and Low, Y.F. (2013, January 6\u20138). Fuzzy-Rough Nearest Neighbour classifier for person authentication using EEG signals. Proceedings of the 2013 International Conference on Fuzzy Theory and Its Applications (iFUZZY), Taipei, Taiwan.","DOI":"10.1109\/iFuzzy.2013.6825457"},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Lee, C., Kang, J.-H., and Kim, S.-P. (2017, January 18\u201321). Methods of selecting electroencephalographic features for personal authentication. Proceedings of the 2017 17th International Conference on Control, Automation and Systems (ICCAS), Jeju, Korea.","DOI":"10.23919\/ICCAS.2017.8204382"},{"key":"ref_22","unstructured":"FIDO Alliance (2018, July 20). Universal 2nd Factor (U2F) Overview. Available online: https:\/\/fidoalliance.org\/specs\/fido-u2f-v1.0-ps-20141009\/fido-u2f-overview-ps-20141009.html."},{"key":"ref_23","unstructured":"(2018, July 20). Web Authentication: An API for Accessing Public Key Credentials Level 1. Available online: https:\/\/www.w3.org\/TR\/webauthn\/."},{"key":"ref_24","doi-asserted-by":"crossref","first-page":"1172","DOI":"10.1109\/JSYST.2014.2298837","article-title":"Intelligent device-to-device communication in the Internet of Things","volume":"10","author":"Bello","year":"2016","journal-title":"IEEE Syst. J."},{"key":"ref_25","unstructured":"Hamilton, D. (2018, July 20). The Four Internet of Things Connectivity Models Explained. Available online: http:\/\/www.thewhir.com\/web-hosting-news\/the-four-internet-of-things-connectivity-models-explained."},{"key":"ref_26","first-page":"1","article-title":"You Think, Therefore You Are: Transparent Authentication System with Brainwave-oriented Bio-features for IoT Networks","volume":"99","author":"Zhou","year":"2017","journal-title":"IEEE Trans. Emerg. Top. Comput."},{"key":"ref_27","unstructured":"(2018, September 23). SVM. Available online: http:\/\/www.nickgillian.com\/wiki\/pmwiki.php\/GRT\/SVM\/."},{"key":"ref_28","unstructured":"(2018, April 12). Brain Partition. Available online: http:\/\/www.bri.com.tw\/."}],"container-title":["Symmetry"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2073-8994\/10\/11\/537\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T15:25:45Z","timestamp":1760196345000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2073-8994\/10\/11\/537"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,10,23]]},"references-count":28,"journal-issue":{"issue":"11","published-online":{"date-parts":[[2018,11]]}},"alternative-id":["sym10110537"],"URL":"https:\/\/doi.org\/10.3390\/sym10110537","relation":{},"ISSN":["2073-8994"],"issn-type":[{"type":"electronic","value":"2073-8994"}],"subject":[],"published":{"date-parts":[[2018,10,23]]}}}