• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

整合OWL密码认证密钥交换协议以增强物联网应用协议。

Integration of OWL Password-Authenticated Key Exchange Protocol to Enhance IoT Application Protocols.

作者信息

Julio Yair Rivera, Pinto Mangones Angel, Torres Tovio Juan, Gómez-Álvarez María Clara, Salcedo Dixon

机构信息

Department of Computer Science, Coporación Universitaria Americana, Barranquilla 08001, Colombia.

Department of Computer Science, Universidad del Sinú, Montería 230001, Colombia.

出版信息

Sensors (Basel). 2025 Apr 14;25(8):2468. doi: 10.3390/s25082468.

DOI:10.3390/s25082468
PMID:40285158
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC12031467/
Abstract

The rapid expansion of the IoT has led to increasing concerns about security, particularly in the early stages of communication where many IoT application-layer protocols, such as CoAP and MQTT, lack native support for secure key exchange. This absence exposes IoT systems to critical vulnerabilities, including dictionary attacks, session hijacking, and MitM threats, especially in resource-constrained environments. To address this challenge, this paper proposes the integration of OWL, a password-authenticated key exchange (PAKE) protocol, into existing IoT communication frameworks. OWL introduces a lightweight and secure mechanism for establishing high-entropy session keys from low-entropy credentials, without reliance on complex certificate infrastructures. Its one-round exchange model and resistance to both passive and active attacks make it particularly well-suited for constrained devices and dynamic network topologies. The originality of the proposal lies in embedding OWL directly into protocols like CoAP, enabling secure session establishment as a native feature rather than as an auxiliary security layer. Experimental results and formal analysis indicate that OWL achieves reduced authentication latency and lower computational overhead, while enhancing scalability, resilience, and protocol performance. The proposed solution provides an innovative, practical, and efficient framework for securing IoT communications from the foundational protocol level.

摘要

物联网的迅速扩张引发了对安全性的日益担忧,尤其是在通信的早期阶段,许多物联网应用层协议,如CoAP和MQTT,缺乏对安全密钥交换的原生支持。这种缺失使物联网系统面临严重漏洞,包括字典攻击、会话劫持和中间人威胁,特别是在资源受限的环境中。为应对这一挑战,本文提出将OWL(一种基于密码认证的密钥交换(PAKE)协议)集成到现有的物联网通信框架中。OWL引入了一种轻量级且安全的机制,可从低熵凭证建立高熵会话密钥,而无需依赖复杂的证书基础设施。其单轮交换模型以及对被动和主动攻击的抵抗力使其特别适合受限设备和动态网络拓扑。该提议的独创性在于将OWL直接嵌入到CoAP等协议中,使安全会话建立成为原生功能而非辅助安全层。实验结果和形式分析表明,OWL实现了更低的认证延迟和更低的计算开销,同时提高了可扩展性、弹性和协议性能。所提出的解决方案为从基础协议层面保障物联网通信安全提供了一个创新、实用且高效的框架。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/0ac628545aa4/sensors-25-02468-g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/d8e72d29d90a/sensors-25-02468-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/8b908cf3eac3/sensors-25-02468-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/2715c5638075/sensors-25-02468-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/458af006ab99/sensors-25-02468-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/0f7c2597df19/sensors-25-02468-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/ec8eb2dc11d1/sensors-25-02468-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/049fe44bf72b/sensors-25-02468-g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/0ac628545aa4/sensors-25-02468-g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/d8e72d29d90a/sensors-25-02468-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/8b908cf3eac3/sensors-25-02468-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/2715c5638075/sensors-25-02468-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/458af006ab99/sensors-25-02468-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/0f7c2597df19/sensors-25-02468-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/ec8eb2dc11d1/sensors-25-02468-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/049fe44bf72b/sensors-25-02468-g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/535f/12031467/0ac628545aa4/sensors-25-02468-g008.jpg

相似文献

1
Integration of OWL Password-Authenticated Key Exchange Protocol to Enhance IoT Application Protocols.整合OWL密码认证密钥交换协议以增强物联网应用协议。
Sensors (Basel). 2025 Apr 14;25(8):2468. doi: 10.3390/s25082468.
2
Efficient IoT User Authentication Protocol with Semi-Trusted Servers.具有半可信服务器的高效物联网用户认证协议
Sensors (Basel). 2025 Mar 23;25(7):2013. doi: 10.3390/s25072013.
3
Preventing MQTT Vulnerabilities Using IoT-Enabled Intrusion Detection System.使用物联网入侵检测系统预防MQTT漏洞
Sensors (Basel). 2022 Jan 12;22(2):567. doi: 10.3390/s22020567.
4
A Lightweight ECC-Based Authentication and Key Agreement Protocol for IoT with Dynamic Authentication Credentials.一种用于物联网的基于轻量级椭圆曲线密码体制的具有动态认证凭证的认证与密钥协商协议。
Sensors (Basel). 2024 Dec 13;24(24):7967. doi: 10.3390/s24247967.
5
Automatic Key Update Mechanism for Lightweight M2M Communication and Enhancement of IoT Security: A Case Study of CoAP Using Libcoap Library.轻量级 M2M 通信的自动密钥更新机制与物联网安全性的增强:以 Libcoap 库为例的 CoAP 研究。
Sensors (Basel). 2022 Jan 3;22(1):340. doi: 10.3390/s22010340.
6
Effective Feature Engineering Framework for Securing MQTT Protocol in IoT Environments.用于在物联网环境中保障MQTT协议安全的有效特征工程框架。
Sensors (Basel). 2024 Mar 10;24(6):1782. doi: 10.3390/s24061782.
7
Secure Enhancement for MQTT Protocol Using Distributed Machine Learning Framework.使用分布式机器学习框架对MQTT协议进行安全增强
Sensors (Basel). 2024 Mar 2;24(5):1638. doi: 10.3390/s24051638.
8
Flexible and Efficient Security Framework for Many-to-Many Communication in a Publish/Subscribe Architecture.发布/订阅体系结构中的多对多通信的灵活高效安全框架。
Sensors (Basel). 2022 Sep 28;22(19):7391. doi: 10.3390/s22197391.
9
Password-only authenticated three-party key exchange proven secure against insider dictionary attacks.仅通过密码认证的三方密钥交换被证明对内部人员字典攻击具有安全性。
ScientificWorldJournal. 2014;2014:802359. doi: 10.1155/2014/802359. Epub 2014 Sep 18.
10
Internet of Medical Things-Based Secure and Energy-Efficient Framework for Health Care.基于医疗物联网的医疗保健安全高效节能框架
Big Data. 2022 Feb;10(1):18-33. doi: 10.1089/big.2021.0202. Epub 2021 Dec 24.

本文引用的文献

1
Evolution of Bluetooth Technology: BLE in the IoT Ecosystem.蓝牙技术的演进:物联网生态系统中的低功耗蓝牙
Sensors (Basel). 2025 Feb 7;25(4):996. doi: 10.3390/s25040996.
2
Leveraging Larger AES Keys in LoRaWAN: A Practical Evaluation of Energy and Time Costs.在LoRaWAN中利用更大的AES密钥:能量和时间成本的实际评估
Sensors (Basel). 2023 Nov 14;23(22):9172. doi: 10.3390/s23229172.
3
Enhancing Security in ZigBee Wireless Sensor Networks: A New Approach and Mutual Authentication Scheme for D2D Communication.增强ZigBee无线传感器网络的安全性:一种用于设备到设备通信的新方法和相互认证方案。
Sensors (Basel). 2023 Jun 19;23(12):5703. doi: 10.3390/s23125703.
4
Data Interworking Model and Analysis for Harmonization of Smart Metering Protocols in IoT-Based AMI System.物联网智能电表系统中智能电表协议协调的数据互操作模型与分析。
Sensors (Basel). 2023 Mar 7;23(6):2903. doi: 10.3390/s23062903.
5
Emerging Wireless Sensor Networks and Internet of Things Technologies-Foundations of Smart Healthcare.新兴无线传感器网络和物联网技术——智能医疗保健的基础。
Sensors (Basel). 2020 Jun 27;20(13):3619. doi: 10.3390/s20133619.