{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,21]],"date-time":"2026-03-21T17:59:39Z","timestamp":1774115979225,"version":"3.50.1"},"reference-count":63,"publisher":"MDPI AG","issue":"8","license":[{"start":{"date-parts":[[2024,8,5]],"date-time":"2024-08-05T00:00:00Z","timestamp":1722816000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"National Science and Technology Council, Taiwan","award":["NSTC 111-2221-E-A49-202-MY3"],"award-info":[{"award-number":["NSTC 111-2221-E-A49-202-MY3"]}]},{"name":"National Science and Technology Council, Taiwan","award":["NSTC 112-2634-F-011-002-MBK"],"award-info":[{"award-number":["NSTC 112-2634-F-011-002-MBK"]}]},{"name":"National Science and Technology Council, Taiwan","award":["NSTC 113-2634-F-011-002-MBK"],"award-info":[{"award-number":["NSTC 113-2634-F-011-002-MBK"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Symmetry"],"abstract":"<jats:p>The large and interconnected nature of the Internet of Things (IoT) presents unique security challenges, even as it revolutionizes various sectors. With numerous devices, often limited in resources, traditional perimeter-based security methods struggle to keep pace. The \u201cnever trust, always verify\u201d principle of zero trust security offers a viable solution. Zero trust security is a concept that has become increasingly popular, using key exchange techniques to ensure secure and authenticated communication within the network, especially in managing risks in critical infrastructure. Authentication is a process to identify an entity, a prerequisite for authorization, and essential for granting access control. It fundamentally relies on trust management and various methods to generate and manage cryptographic keys for authentication. The aim of this study is to enhance zero trust security in the context of the Internet of Things by investigating authentication methods and discussing several potential solutions for successful implementation. This study also presents the performance evaluation criteria for authentication in IoT and introduces advanced approaches for different scenarios, including lightweight cryptography, mutual authentication, and blockchain technology. Finally, we address challenges related to implementation and future directions for research.<\/jats:p>","DOI":"10.3390\/sym16080993","type":"journal-article","created":{"date-parts":[[2024,8,5]],"date-time":"2024-08-05T18:21:40Z","timestamp":1722882100000},"page":"993","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":11,"title":["Emerging Authentication Technologies for Zero Trust on the Internet of Things"],"prefix":"10.3390","volume":"16","author":[{"given":"Chanapha","family":"Bast","sequence":"first","affiliation":[{"name":"Information System and Business Computer Department, Management Science Faculty, Udon Thani Rajabhat University, Udon Thani 41000, Thailand"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0598-761X","authenticated-orcid":false,"given":"Kuo-Hui","family":"Yeh","sequence":"additional","affiliation":[{"name":"Institute of Artificial Intelligence Innovation, National Yang Ming Chiao Tung University, Hsinchu 300, Taiwan"},{"name":"Department of Information Management, National Dong Hwa University, Hualien 974, Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2024,8,5]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","first-page":"18","DOI":"10.1080\/10919392.2020.1831870","article-title":"Securing IoT Devices Using Zero Trust and Blockchain","volume":"31","author":"Dhar","year":"2020","journal-title":"J. Organ. Comput. Electron. Commer."},{"key":"ref_2","doi-asserted-by":"crossref","unstructured":"Kumar, P., Kumar, S., Iqbal, W., and Goyal, A. (2023). Cybersecurity in the Era of Emerging Technology. Emerging Technology and Management Trends, Manglam.","DOI":"10.1109\/INCET57972.2023.10170296"},{"key":"ref_3","doi-asserted-by":"crossref","unstructured":"Chen, Z., Jiang, Y., Song, X., and Chen, L. (2023). A Survey on Zero-Knowledge Authentication for Internet of Things. Electronics, 12.","DOI":"10.3390\/electronics12051145"},{"key":"ref_4","doi-asserted-by":"crossref","first-page":"6476274","DOI":"10.1155\/2022\/6476274","article-title":"A Survey on Zero Trust Architecture: Challenges and Future Trends","volume":"2022","author":"He","year":"2022","journal-title":"Wirel. Commun. Mob. Comput."},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"269","DOI":"10.1016\/j.eij.2020.10.001","article-title":"IoT security system with modified Zero Knowledge Proof algorithm for authentication","volume":"22","author":"Soewito","year":"2020","journal-title":"Egypt. Inform. J."},{"key":"ref_6","first-page":"24","article-title":"Zero Trust Security Architecture Raises the Future Paradigm in Information Systems","volume":"1","author":"Patel","year":"2024","journal-title":"Inform. Digit. Insight"},{"key":"ref_7","doi-asserted-by":"crossref","first-page":"215","DOI":"10.9734\/jerr\/2024\/v26i21083","article-title":"Zero Trust Architecture in Cloud Networks: Application, Challenges and Future Opportunities","volume":"26","author":"Ahmadi","year":"2024","journal-title":"J. Eng. Res. Rep."},{"key":"ref_8","doi-asserted-by":"crossref","first-page":"102436","DOI":"10.1016\/j.cose.2021.102436","article-title":"Never trust, always verify: A multivocal literature review on current knowledge and research gaps of zero-trust","volume":"110","author":"Buck","year":"2021","journal-title":"Comput. Secur."},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"102351","DOI":"10.1016\/j.cose.2021.102351","article-title":"LCDA: Lightweight Continuous Device-to-Device Authentication for a Zero Trust Architecture (ZTA)","volume":"108","author":"Shah","year":"2021","journal-title":"Comput. Secur."},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Dhiman, P., Saini, N., Gulzar, Y., Turaev, S., Kaur, A., Nisa, K.U., and Hamid, Y. (2024). A Review and Comparative Analysis of Relevant Approaches of Zero Trust Network Model. Sensors, 24.","DOI":"10.3390\/s24041328"},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Federici, F., Martintoni, D., and Senni, V. (2023). A Zero-Trust Architecture for Remote Access in Industrial IoT Infrastructures. Electronics, 12.","DOI":"10.3390\/electronics12030566"},{"key":"ref_12","doi-asserted-by":"crossref","unstructured":"Nita, S.L., and Mihailescu, M.I. (2024). A Novel Authentication Scheme Based on Verifiable Credentials Using Digital Identity in the Context of Web 3.0. Electronics, 13.","DOI":"10.3390\/electronics13061137"},{"key":"ref_13","first-page":"1","article-title":"A systematic Literature Review of Zero Trust Architecture for UAV Security Systems in IoBT","volume":"1","author":"Alquwayzani","year":"2024","journal-title":"Comput. Sci. Math."},{"key":"ref_14","doi-asserted-by":"crossref","first-page":"61642","DOI":"10.1109\/ACCESS.2024.3393567","article-title":"A Survey on Key Agreement and Authentication Protocol for Internet of Things Application","volume":"12","author":"Hasan","year":"2024","journal-title":"IEEE Access"},{"key":"ref_15","doi-asserted-by":"crossref","first-page":"103414","DOI":"10.1016\/j.adhoc.2024.103414","article-title":"Flexible zero trust architecture for the cybersecurity of industrial IoT infrastructures","volume":"156","author":"Zanasi","year":"2024","journal-title":"Ad Hoc Netw."},{"key":"ref_16","doi-asserted-by":"crossref","first-page":"57143","DOI":"10.1109\/ACCESS.2022.3174679","article-title":"Zero Trust Architecture (ZTA): A Comprehensive Survey","volume":"10","author":"Syed","year":"2022","journal-title":"IEEE Access"},{"key":"ref_17","doi-asserted-by":"crossref","unstructured":"Elsayed, Z., Nelly, E., and Sajjad, B. (2024, January 18\u201322). A Novel Zero Trust Machine Learning Green Architecture for Healthcare IoT Cybersecurity: Review. Proceedings of the Analysis and Implementation in Southeast Conference 2024, Atlanta, GA, USA.","DOI":"10.1109\/SoutheastCon52093.2024.10500139"},{"key":"ref_18","doi-asserted-by":"crossref","first-page":"5300253","DOI":"10.1155\/2022\/5300253","article-title":"A Secure IoT and Cloud Computing-Enabled e-Health Management System","volume":"2022","author":"Butpheng","year":"2022","journal-title":"Secur. Commun. Netw."},{"key":"ref_19","first-page":"214","article-title":"Design and Elevating Cloud Security Through a Comprehensive Integration of Zero Trust Framework","volume":"12","author":"Saravanan","year":"2024","journal-title":"Intell. Syst. Appl. Eng."},{"key":"ref_20","first-page":"161","article-title":"AI-powered malware detection with Differential Privacy for zero trust security in Internet of Things networks","volume":"1","author":"Nawshin","year":"2024","journal-title":"Ad Hoc Netw."},{"key":"ref_21","first-page":"301352","article-title":"The case for Zero Trust Digital Forensics","volume":"40","author":"Neale","year":"2022","journal-title":"Forensic Sci. Int. Digit. Investig."},{"key":"ref_22","doi-asserted-by":"crossref","first-page":"20","DOI":"10.1186\/s42400-024-00212-0","article-title":"Dissecting zero trust: Research landscape and its implementation in IoT","volume":"7","author":"Liu","year":"2024","journal-title":"Cybersecurity"},{"key":"ref_23","doi-asserted-by":"crossref","first-page":"252","DOI":"10.4236\/jcc.2024.123016","article-title":"From Standard Policy-Based Zero Trust to Absolute Zero Trust (AZT): A Quantum Leap to Q-Day Security","volume":"12","author":"Raheman","year":"2024","journal-title":"J. Comput. Commun."},{"key":"ref_24","unstructured":"Cena, J. (2024). Multi-Factor Authentication Paradigms for Securing Industrial Internet of Things (IIoT) Assets, in Electrical Energy and Power Systems Group (EEPS). [Ph.D. Thesis, The University of Manchester]."},{"key":"ref_25","doi-asserted-by":"crossref","first-page":"2792","DOI":"10.1109\/OJCOMS.2024.3391728","article-title":"Securing Digital Identity in the Zero Trust Architecture: A Blockchain Approach to Privacy-Focused Multi-Factor Authentication","volume":"5","author":"Rivera","year":"2024","journal-title":"IEEE Open J. Commun. Soc."},{"key":"ref_26","doi-asserted-by":"crossref","first-page":"151054","DOI":"10.1109\/ACCESS.2019.2947723","article-title":"Review on Security of Internet of Things Authentication Mechanism","volume":"7","author":"Nandy","year":"2019","journal-title":"IEEE Access"},{"key":"ref_27","first-page":"e202312","article-title":"Cybersecuirty awareness factors among adolescents in Jordan: Meiation effect of cyber scale and personal factors","volume":"13","author":"Alsobeh","year":"2023","journal-title":"J. Commun. Media Stud."},{"key":"ref_28","first-page":"378","article-title":"Design of an Efficient Cloud Security Model through Federated Learning, Blockchain, AI-Driven Policies, and Zero Trust Frameworks","volume":"12","author":"Kawalkar","year":"2023","journal-title":"Intell. Syst. Appl. Eng."},{"key":"ref_29","doi-asserted-by":"crossref","first-page":"101988","DOI":"10.1016\/j.adhoc.2019.101988","article-title":"Non-interactive zero knowledge proofs for the authentication of IoT devices in reduced connectivity environments","volume":"95","author":"Walshe","year":"2019","journal-title":"Ad Hoc Netw."},{"key":"ref_30","unstructured":"Ali, B.E.M.A. (2023). Efficient Trust-Aware Authentication and Task Offloading in Multi-Access Edge Computing Using a Dual Fuzzy Method Based Zero Trust Security Framework. [Ph.D. Thesis, Royal Melbourne Institute of Technology]."},{"key":"ref_31","doi-asserted-by":"crossref","first-page":"103412","DOI":"10.1016\/j.cose.2023.103412","article-title":"Zero trust cybersecurity: Critical success factors and A maturity assessment framework","volume":"133","author":"Yeoh","year":"2023","journal-title":"Comput. Secur."},{"key":"ref_32","first-page":"27","article-title":"Authentication and Authorization for the Internet of Things","volume":"19","author":"Kim","year":"2017","journal-title":"IEEE Comput. Soc."},{"key":"ref_33","unstructured":"Cena, J. (2024). Zero Trust Architecture for Robust IIoT Security, in Electrical Energy and Power Systems Group (EEPS). [Ph.D. Thesis, The University of Manchester]."},{"key":"ref_34","first-page":"1","article-title":"Advancing Zero Trust Network Authentication: Innovations in Privacy-Preserving Authentication Mechanisms","volume":"1","author":"Adhikari","year":"2024","journal-title":"Comput. Sci. Eng."},{"key":"ref_35","doi-asserted-by":"crossref","first-page":"012010","DOI":"10.1088\/1742-6596\/1651\/1\/012010","article-title":"An Implementation Method of Zero-trust Architecture","volume":"1651","author":"Chuan","year":"2020","journal-title":"J. Phys. Conf. Ser."},{"key":"ref_36","doi-asserted-by":"crossref","first-page":"15","DOI":"10.14445\/22312803\/IJCTT-V72I4P102","article-title":"Integrating User Experience and Acceptance in Authentication: A Synthesis of Technology Acceptance Model and User-Centered Design Principles","volume":"72","author":"Bhattacharya","year":"2024","journal-title":"Int. J. Comput. Trends Technol."},{"key":"ref_37","unstructured":"Capili, M. (2024). Simulation-Based Evaluation of Perimeter-Based and Zero Trust Security Implementation on Internet of Things, in Systems Engineering. [Ph.D. Thesis, The George Washington University]."},{"key":"ref_38","doi-asserted-by":"crossref","unstructured":"Cambou, B., Philabaum, C., Hoffstein, J., and Herlihy, M. (2023). Methods to Encrypt and Authenticate Digital Files in Distributed Networks and Zero-Trust Environments. Axioms, 12.","DOI":"10.3390\/axioms12060531"},{"key":"ref_39","doi-asserted-by":"crossref","unstructured":"Mehraj, S., and Tariq Banday, M. (2020, January 22\u201324). Establishing a Zero Trust Strategy in Cloud Computing Environment. Proceedings of the International Conference on Computer Communication and Informatics (ICCCI-2020), Coimbatore, India.","DOI":"10.1109\/ICCCI48352.2020.9104214"},{"key":"ref_40","first-page":"2022","article-title":"Toward zero trust in 5G industrial internet collaboration systems","volume":"1","author":"Zhang","year":"2024","journal-title":"Digit. Commun. Netw."},{"key":"ref_41","unstructured":"Olaoye, G.O., and Ayuns, L. (2024). Future Trends and Emerging Technologies in Cloud Security. [Ph.D. Thesis, Ladoke Akintola University of Technology]."},{"key":"ref_42","first-page":"1","article-title":"Zero Trust Securityin Wireless and communication Networks","volume":"1","author":"Aki","year":"2024","journal-title":"Comput. Secur. Reliab."},{"key":"ref_43","first-page":"1","article-title":"Privacy-preserving authentication scheme based on zero trust architecture","volume":"23","author":"Tang","year":"2023","journal-title":"Digit. Commun. Netw."},{"key":"ref_44","doi-asserted-by":"crossref","unstructured":"Xu, M., Guo, J., Yuan, H., and Yang, X. (2023). Zero-Trust Security Authentication Based on SPA and Endogenous Security Architecture. Electronics, 12.","DOI":"10.3390\/electronics12040782"},{"key":"ref_45","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/3643867","article-title":"Authentication, Authorization, Access Control, and Key Exchange in Internet of Things","volume":"5","author":"Irfan","year":"2024","journal-title":"ACM Trans. Internet Things"},{"key":"ref_46","first-page":"8543894","article-title":"Enhanced Authentication Protocol for the Internet of Things Environment","volume":"2022","author":"Chen","year":"2022","journal-title":"Secur. Commun. Netw."},{"key":"ref_47","doi-asserted-by":"crossref","unstructured":"Kang, H., Liu, G., Wang, Q., Meng, L., and Liu, J. (2023). Theory and Application of Zero Trust Security: A Brief Survey. Entropy, 25.","DOI":"10.3390\/e25121595"},{"key":"ref_48","doi-asserted-by":"crossref","first-page":"105","DOI":"10.30574\/wjarr.2023.19.3.1785","article-title":"Zero trust architecture: Redefining network security paradigms in the digital age","volume":"19","author":"Khan","year":"2023","journal-title":"World J. Adv. Res. Rev."},{"key":"ref_49","first-page":"1","article-title":"Zero Trust Architecture for 6G Security","volume":"1","author":"Chen","year":"2023","journal-title":"IEEE Netw."},{"key":"ref_50","doi-asserted-by":"crossref","first-page":"6545323","DOI":"10.1155\/2023\/6545323","article-title":"Design and Implementation of the Zero Trust Model in the Power Internet of Things","volume":"2023","author":"Wu","year":"2023","journal-title":"Int. Trans. Electr. Energy Syst."},{"key":"ref_51","doi-asserted-by":"crossref","first-page":"101213","DOI":"10.1016\/j.iot.2024.101213","article-title":"Assessing intra- and inter-community trustworthiness in IoT: A role-based attack-resilient dynamic trust management model","volume":"26","author":"Su","year":"2024","journal-title":"Internet Things"},{"key":"ref_52","doi-asserted-by":"crossref","first-page":"101227","DOI":"10.1016\/j.iot.2024.101227","article-title":"Verify and trust: A multidimensional survey of zero trust security in the age of IoT","volume":"27","author":"Azad","year":"2024","journal-title":"Internet Things"},{"key":"ref_53","doi-asserted-by":"crossref","first-page":"103827","DOI":"10.1016\/j.cose.2024.103827","article-title":"Multivocal literature review on zero-trust security implementation","volume":"141","author":"Itodo","year":"2024","journal-title":"Comput. Secur."},{"key":"ref_54","doi-asserted-by":"crossref","first-page":"94","DOI":"10.1016\/j.comcom.2024.04.007","article-title":"Learning-driven Continuous Diagnostics and Mitigation program for secure edge management through Zero-Trust Architecture","volume":"220","author":"SumanPrakash","year":"2024","journal-title":"Comput. Commun."},{"key":"ref_55","doi-asserted-by":"crossref","first-page":"110376","DOI":"10.1016\/j.comnet.2024.110376","article-title":"ATT&CK-based Advanced Persistent Threat attacks risk propagation assessment model for zero trust networks","volume":"245","author":"Zhang","year":"2024","journal-title":"Comput. Netw."},{"key":"ref_56","doi-asserted-by":"crossref","first-page":"324","DOI":"10.1016\/j.comcom.2023.12.023","article-title":"eSIM and blockchain integrated secure zero-touch provisioning for autonomous cellular-IoTs in 5G networks","volume":"216","author":"Krishnan","year":"2024","journal-title":"Comput. Commun."},{"key":"ref_57","doi-asserted-by":"crossref","first-page":"294","DOI":"10.1016\/j.comcom.2023.06.020","article-title":"Cybersecurity for Industrial IoT (IIoT): Threats, countermeasures, challenges and future directions","volume":"208","author":"Mekala","year":"2023","journal-title":"Comput. Commun."},{"key":"ref_58","doi-asserted-by":"crossref","first-page":"103872","DOI":"10.1016\/j.jnca.2024.103872","article-title":"Cooperative-centrality enabled investigations on edge-based trustworthy framework for cloud focused internet of things","volume":"226","author":"Kaur","year":"2024","journal-title":"J. Netw. Comput. Appl."},{"key":"ref_59","doi-asserted-by":"crossref","first-page":"119784","DOI":"10.1016\/j.ins.2023.119784","article-title":"rFedFW: Secure and trustable aggregation scheme for Byzantine-robust federated learning in Internet of Things","volume":"653","author":"Ni","year":"2024","journal-title":"Inf. Sci."},{"key":"ref_60","doi-asserted-by":"crossref","first-page":"95","DOI":"10.1016\/j.eswa.2023.122410","article-title":"SRFL: A secure & robust federated learning framework for IoT with trusted execution environments","volume":"239","author":"Cao","year":"2024","journal-title":"Expert Syst. Appl."},{"key":"ref_61","doi-asserted-by":"crossref","first-page":"101106","DOI":"10.1016\/j.iot.2024.101106","article-title":"Automated trusted collaborative processes through blockchain & IoT integration: The fraud detection case","volume":"25","author":"Gasca","year":"2024","journal-title":"Internet Things"},{"key":"ref_62","doi-asserted-by":"crossref","first-page":"89","DOI":"10.1016\/j.pmcj.2024.101889","article-title":"A novel IoT trust model leveraging fully distributed behavioral fingerprinting and secure delegation","volume":"99","author":"Arazzi","year":"2024","journal-title":"Pervasive Mob. Comput."},{"key":"ref_63","doi-asserted-by":"crossref","first-page":"150","DOI":"10.1016\/j.adhoc.2024.103540","article-title":"A federated learning-based zero trust intrusion detection system for Internet of Things","volume":"162","author":"Javeed","year":"2024","journal-title":"Ad Hoc Netw."}],"container-title":["Symmetry"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2073-8994\/16\/8\/993\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T15:30:27Z","timestamp":1760110227000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2073-8994\/16\/8\/993"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,8,5]]},"references-count":63,"journal-issue":{"issue":"8","published-online":{"date-parts":[[2024,8]]}},"alternative-id":["sym16080993"],"URL":"https:\/\/doi.org\/10.3390\/sym16080993","relation":{},"ISSN":["2073-8994"],"issn-type":[{"value":"2073-8994","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,8,5]]}}}