IoT is an important part of the new generation of information technologies and the next big thing in the IT industry after the computer and the internet. The IoT has great development potential and a wide range of possible applications, especially commercial applications. And information security of the IoT is the key to the long-term development of the whole industry. Currently, the two most significant factors in the development of the IoT are user identity authentication and privacy protection. This paper contains an analysis on the current picture of inter-device user identity authentication in the IoT and proposes an inter-device biometric authentication solution for the IoT that’s designed to work with larger devices, addressing the shortcomings of the traditional user identity authentication technologies including security and efficiency problems. A strategy for further solution optimization is also included. This paper elaborates on the specific process of user identity authentication carried out by users on devices and between devices making use of fingerprints. We’ll demonstrate the security of this solution against existing attack methods and in the last part, we enumerate various possible applications of this solution in smart homes.
[1]
Jia Di,et al.
Fingerprinting RFID Tags
,
2011,
IEEE Transactions on Dependable and Secure Computing.
[2]
Chen Wei,et al.
Security Characteristic and Technology in the Internet of Things
,
2010
.
[3]
Hyotaek Lim,et al.
Two Factor Authentication for Cloud Computing
,
2010,
J. Inform. and Commun. Convergence Engineering.
[4]
Elisa Bertino,et al.
Botnets and Internet of Things Security
,
2017,
Computer.
[5]
Changjun Jiang,et al.
A biometric-based user authentication for wireless sensor networks
,
2010,
Wuhan University Journal of Natural Sciences.
[6]
Ashok Kumar Das,et al.
Formal Security Verification of a Dynamic Password-Based User Authentication Scheme for Hierarchical Wireless Sensor Networks
,
2013,
SSCC.
[7]
Yang Yi-xian.
Identity Authentication Scheme Based on Biometric Certificate
,
2007
.
[8]
Wang Xiao-feng.
One-time Password Authentication Protocol Based on Non-homogeneous Linear Equations
,
2010
.