[go: up one dir, main page]
More Web Proxy on the site http://driver.im/ Skip to content
BY 4.0 license Open Access Published by De Gruyter February 22, 2023

Efficient mutual authentication using Kerberos for resource constraint smart meter in advanced metering infrastructure

  • Md Mehedi Hasan , Noor Afiza Mohd Ariffin EMAIL logo and Nor Fazlida Mohd Sani

Abstract

The continuous development of information communication technology facilitates the conventional grid in transforming into an automated modern system. Internet-of-Things solutions are used along with the evolving services of end-users to the electricity service provider for smart grid applications. In terms of various devices and machine integration, adequate authentication is the key to an accurate source and destination in advanced metering infrastructure (AMI). Various protocols are deployed to lead the identification between two parties, which require high computation time and communicational bit operations for system development. Therefore, Kerberos-based authentication protocols were designed in this study with the assistance of elliptic curve cryptography to manage the mutual authentication between two parties and reduce the time and bit operations. The protocols were evaluated in a widely adopted tool, AVISPA, which builds an understanding of the proposed protocol and ensures mutual authentication without unauthorized knowledge. In addition, upon comparing security and performance assessments to the current schemes, it was found that the protocol in this study required less time and bits to transmit information. Consequently, it effectively provides multiple security features making it suitable for resource constraint smart meters in AMI.

1 Introduction

Major advancement integration of information communication technologies plays an important role in the smart grid. To illustrate, the energy systems could connect with devices, sensors, and systems utilizing the Internet-of-Things (IoT) technologies to enhance the supply and demand of electricity within the smart grid infrastructure. A traditional grid feature is a single-way connection mechanism with less than single data and lower sensors. In addition to the smart meter with the development of advanced metering infrastructure (AMI), the architecture for automated two-way communication is present between the smart meter and the utility company. It is indeed a communication system that connects smart meters, electronic devices, and utility systems in a cycle to provide service and response. The AMI collects, distributes, measures, and evaluates the connectivity, touch, and communication capability with a smart grid [1]. On the other hand, the intelligent smart meter is a device with limited resources. As a result of low-processing capabilities, the limited ability is present for executing time and bit operations at any moment during data transmission [2]. Given the numerous functionalities incorporated into a smart metering system, the identification is conducted systematically between the activities involving a large number of AMI entities, such as customers, SM, IoT devices, gateways, and servers in AMI [3].

To provide reliable power services, authentication is a critical component of security in the smart metering infrastructure that protects anonymity, session-key security, forward secrecy, and safe user and destination identification [4]. These components are important in AMI [5]. Authentication is checked and validated between multiple components of a large number of AMI organizations in smart grid. The primary goals of mutual authentication are implemented between two entities without a third party involving secure knowledge in terms of the exact source and destination [6]. Moreover, the smart meter connectivity operation and distribution should be lightweight [7,8,9].

Despite the previous mechanism effectiveness, the absence of user anonymity and failed forward secrecy leads to insufficient authentication, which increases the chance for an attacker to intercept the system. Another significant difficulty with AMI is high computation time and high communication bit overheads, which are caused by cryptographic operations, digital signature verification, session-key generation, and high resource needs for system development [10].

The aforementioned conditions lead to the widespread adoption of the Kerberos authentication system. Kerberos is a system that examines user requests from two or more trustworthy hosts, such as the Internet or any type of IoT device, particularly a smart meter. It employs secret-key cryptography as a trusted third party to validate user identities and authenticate the client–server application. Furthermore, the public-key cryptography is adopted on the three stages of the Kerberos model, including the extension of public-key cryptography for initial authentication in Kerberos upon a client request for a service from a specific server and PKCROOSS when a client authenticates ticket-granting server. The PKTAPP extension is used to execute specialized cryptographic parsing after obtaining authorization to the service ticket. This work utilizes Kerberos with the extension of PKTAPP to manage the mechanism of the protocol and the asymmetric encryption, which is known as the algebraic structure of elliptical curves over finite fields. It is also known as the subject of elliptic curve cryptography (ECC). Compared to conventional encryption, ECC main advantage is less key and storage compared to the Rivest–Shamir–Adleman (RSA) algorithm, although it offers the same level of security [11,12]. Accordingly, this proposed protocol primarily aims for two efficient combinations, which preserve forward secrecy and user anonymity to ensure mutual authentication between two parties without unauthorized interaction while reducing computation time and bits in terms of session-key generation for resource-constrained smart meters in an AMI.

The major contributions of this study accomplished through the proposed methodology are as follows:

  1. An efficient Kerberos method is designed, particularly minimizing the additional burden of cryptographic time/bit operations in smart meter side and deploying trusted authority to function as an acting Kerberos-based module. In most cases, creating a certificate authority requires additional cryptographic operations for session-key establishment. In addition, smart meters are fully resource constraint devices with limited computation power for processing any kind of service sent and received.

  2. The results are evaluated using commonly recognized tools, AVISPA, Also formal and informal both perspective which is proved that efficient protocol, confirms to have the acquired mutual authentication despite having to maintain forward secrecy and user anonymity. Moreover, it provides multiple security features.

  3. Given the performance and security comparison to existing mechanisms, this study approach requires fewer computation time and communication bits for session-key generation and handle security assessment, which is suitable for performing multiple device interactions across the AMI to deliver various types of request/response-conveyed information without third unauthorized intervention.

The parts of the introduction of this study begin with Section 2, which presents the current literature background according to the proposed mechanism. In Section 3, the details about the operation of the proposed protocol, which was divided into three phases, are elaborated. Section 4 illustrates two segments: segment one is mutual authentication, which is achieved by the following work, and segment two is a comparison with the existing schemes to proposed protocol time and bit operations for system development in the performance segment. In Section 5, the study is concluded with future directions for upcoming research trends.

2 Related work

In recent few years, a significant number of standard cryptanalysis algorithms and authentication protocols are deployed in AMI. Cryptographic mechanism is the principle of encryption, which is designed to ensure the confidentiality and integrity of information [10]. Two types of encryptions are illustrated in the smart grid symmetric and asymmetric. Specifically, symmetric encryption follows one key use for encryption on the sender side, same key in the decryption. In addition, asymmetric encryption necessitates the use of two keys, namely, public and private keys, in which one key is for the sender and other key is used on receiver side for decryption. Similarly, authentication is the key to verifying the identity of a user and device to protect the system from unauthorized access. It helps to check whether an object identity is correct or not. Inadequate authentication due to lose of forward secrecy and anonymity may occurs vulnerability as an attacker access to private information in AMI environment [5]. Two types of authentications were examined: some author-produced one-way authentications to demonstrate the identification between user and utility server, and likewise, two-way authentications are determined. Authentication including encryption is obligatory safety process to protect the privacy and integrity of information in the AMI [11]. Several methods have been presented with the use of the accompanying encryption and authentication techniques. Notably, several benefits and drawbacks are present, which are described as follows.

To preserve the identification between two parties and reduction cryptographic computation time and bit overheads, Wu and Zhou [12] proposed a homographic message authentication approached to ensure the smart meter and server identification. It was found that main constraint of the proposed technique did not ensure user anonymity in server end. So, this protocol just presented smart meter authentication. Hence, it absolutely decreased the time and bit operations. Then, Nicanfar et al. [13] elaborated the issue to solve by using ECC-based symmetric encryption with a basis on hash function. Although the security goal is desired, the following scheme due to the failure of forward secrecy is unable to meet the mutual authentication from the smart meters to aggregator point. Another author follows the above direction through shortening the time and bit operations to scalable smart meter stability issues.

To reduce time and bits overheads issues Tsai and Lo [14] suggested a new key management scheme using the proposed asymmetric and public key-based technique is satisfied into the methodology. For this reason, we need an extra trusted anchor and another server is required for public-key verification. In the same year, Ferrag and Ahmim [15] proposed the identity-based novel encryption technique to authenticate from smart meter to server but following mechanism failure to consider forward secrecy and high computation overhead for bilinear paring operation. To solve the matter, Diovu and Agee [16] proposed lightweight authentication using message authentication code with advanced encryption standards during message encryption and RSA for session-key generation to achieve targeted results and protect from several data attacks. However, the demerit of this technique RSA takes large computation time and communication bits for session-key generation. At the cloud distributed system, Tbatou et al. [17] employed Kerberos with ECC encryption for the reliable identification of two entities. The technique required high computation time for Diffie–Hellman key exchange operation. Similarly, to preserve the privacy from smart meter to utility server, Saxena and Choi [18] used the certificate-less ECC-based cryptography to ensure privacy preservation, forward secrecy, and semantic security in smart grid. It was found that this system did not control high computation rate for low-resource smart meter.

To solve smart meter computation overhead problem, Wu et al.’s [7] research proposed lightweight provable key agreement protocol by using trusted authority-based key generation technique with the assistance of ECC and bilinear paring utilized in their approaches. Also present in initialization and registration phase fully cover by TA then authentication phase session key computes smart meter and aggregator point themselves. This protocol effectively handles security to provide multiple security features. Apart from increasing the computation time operation, other sides used heavy cryptographic time and bit operations for parameter identification during session-key generation. Furthermore, Braeken et al. [9] introduced the novel key agreements for secure processing of smart meter to substations through the methods to ensure identification with decreased time and bit operations between two entities. So that, protocol used RSA encryption with MD5 authentication technique. Unfortunately, RSA-based approaches increase time and bit operations within smart meter side during session-key generation. Alternatively, ECC used same level bit and time operations as the RSA that offers same security benefits [19]. Moreover, as per result analysis, Khan et al. [2] argued that this protocol just afford to cover smart meter authentication. To solve the issues, Chen et al. [20] discovered anonymously two-way authentication initiated by the Diffie–Hellman key agreement technique by adopting public key cryptography, which significantly reduced the computation time cost and beside, public key infrastructure (PKI) based key agreement strategy increased the smart meter side communication bit operations. Nevertheless, Sutradhar et al. [21] claimed that the technique for the verification of parameter identification requires more time.

Most of the previous protocols demonstrated that the system faced inadequate authentication due to the failure of anonymity and loss in the dealing of forward secrecy. Especially, inefficient authentication is vulnerable for unauthorized access to intercept the system and creates a scope for stealing the information during data transmission. In addition, a situation of maximum worked suffered under high computation time and communication bit operations, which is harmed for the resource constraint smart meters in AMI.

3 Proposed methodology

According to analysis efficiency known as performance and security problems were attributed to the failure of authentication and encryption for the increased system complexity due to heavy computation time and communication bits operation overheads. Furthermore, the proposed technique hopefully delivers two-way authentications to overcome the unauthorized access issue. This study aims to solve the best degree of data protection by improving proper authentication and using Kerberos authentication protocol during the encrypted data transmission, in which the asymmetric encryption schemes known as ECC are used. At this point, the computation time and communication bits are reduced. In addition, Kerberos-based approaches provide the security features in terms of preserve forward secrecy and anonymity to ensure the mutual authentication. Three-phase protocols are presented to overcome the existing limitations, with the architecture presented in Figure 1. The list of the symbols used in the proposed protocol for easy interaction is presented in Table 1.

Figure 1 
               Architecture of proposed protocols.
Figure 1

Architecture of proposed protocols.

Table 1

List of symbols

Symbols Description of symbols
E Elliptic curve
G Generator point of E
a,b Coefficients of the elliptic curve
Q SM Public key of smart meter
Q AG Public key of aggregator point
d SM Private key smart meter
d AG Private key of aggregator point
IDSM, IDAG Identity of SM and AG
P W Password
T SM , T AG, T KA Time-stamp
SM, AG Smart meter and aggregator point
AS, TGS Authentication server and ticket-granting server
SK Session key
TKTSM, TKTAG Ticket of smart meter/aggregator point
ECC Elliptic curve cryptography
PKCROOSS Public-key cryptography for cross-realm authentication in Kerberos
DB Database
PKI Public key infrastructure

3.1 Assumption

This study is based on the following assumptions:

  1. The new Kerberos-designed authentication is applicable for smart meter to aggregator points for transmitting operation.

  2. Initially, the proposed methodology establishes a connection to a Kerberos authentication server, which relies on a secure channel in an AMI.

  3. Efficient authentication techniques allow the main enhancements known as PKTAPP to be approved at the third stage of the Kerberos model.

  4. In the scenario of the smart meter and the aggregator point, the clocks are synchronized.

3.2 Initialization phase

The execution of the initial phase generates a public/private key with the assistance of an elliptic curve < P, a, b, G, n, h >. In this curve, p denotes the large prime numbers in a specific elliptic curve, a refers to the first coefficient of the curve, and b represents the second coefficient of the curve. Following that, G is the generator point (base point), where the parameter G denotes (a, b), while n is the prime order of G and h is the cofactor of the group. Overall, these parameters play an effective role in the following section.

3.3 Registration phase

The registration phase is the second phase of designating the authentication protocol. During this phase, the smart meter and Kerberos authentication server are registered in this secure channel. In the Kerberos model, the paradigm is catalyzed by AS (authentication server) and TGS (ticket-granting server) in a secure channel. The first smart meter comprises the identity IDSM and password P W with a time-stamp T SM attached for verification purposes to request a service ticket to the Kerberos authentication server for communicating with the aggregator point. Following that, the transmitted credentials are verified by AS server and refer to the ticket-granting server for issues regarding the smart meter service ticket. A similar process initiates aggregator points for registration with the Kerberos authentication server. The process of registration smart meter with the Kerberos authentication server is described below and visualized in Table 2.

Table 2

Flow of registration process with authentication server

SM AS
  1. Select a password = IDSM

  2. Generates = PWSM

  3. Generates time-stamp = T SM

1. Send: P W ∥ID SM T SM 2. Received:
  1. Check P W = P W,IDSM = IDSM into the DB

  2. Compare time-stamp = T AS –T SM

If true then go to next step otherwise abort;
  1. Store = IDSM in DB

  2. Compute = SKTGS

  3. Generates = T AS

4. Received:
  1. Decrypt using = P Whash

  2. Compare T SM = T AS

  3. Store = SKTGS

  4. Select = IDSM

  5. Generates = T SM

←3. Send: SK TGS T SM T AS TGS
5. Send: ID SM T SM ∥SK TGS 6. Received:Decrypt =SKTGS help of ASVerify = T SM -T TGSCheck = IDSMCreate = TKTAG
8. Received:Verify = T SM = T AS
  1. Store = TKTSM

If true then ready for negotiating with Aggregator point for further steps
←7.Send: TKT SM T TGS

Process SM to AS: Smart meter initiates IDSM and password P W then creates time-stamp T SM, and transmits it to the AS. At this point, given that P W and IDSM are considered the security parameters of SM, SM transmits C = (IDSM ∥ P W ∥T SM).

Process AS to SM: In this stage, the credentials received from SM. AS ensures that the message is only sent via smart meter, followed by AS that checks the database to determine whether the IDSM = IDSM, P W = P W matches the database of AS. This is basis on computation of T AS –T SM . When the computation is exact in terms of time-stamp value, next step is performed. Then, AS stores that smart meter identifies the IDSM meanwhile, forward to the main server, which is compared for further process during the mutual authentication phase. Then, compute session key between the smart meter and ticket-granting server is computed as: AS sends the value to AS = (SKTGS∥PWSM) to the SM.

Process SM to TGS: The data received from AS go through smart meter first decrypt packet on smart meter P W hash code, followed by a comparison with the current time-stamp check T SM = T AS . If these elements match, the credential SM = SKTGS (T SM∥IDSM) is sent with the assistance of AS, while the session key is sent to the ticket-granting server.

Process TGS to SM: TGS decrypts the message with the assistance of AS due to the knowledge that AS and TGS build a secure channel in the same environment in the Kerberos model. Following that, TGS verifies the current time-stamp T SMT TGT and checks IDSM. When a positive result is obtained, a ticket for TGS = TKTAG is created and sent SM. Otherwise, the session is aborted.

Process SM: T TGTT SM is verified. Upon true verification, the server ticket is obtained from TGS for the data transmission process, while the smart meter dash box saves the TKTAG for the next steps.

At this point, the domain authentication between SM and AS and AG in a secure channel is achieved. The same registration process is performed on the aggregator point when it meets the smart meter according to all the above processes.

3.4 Mutual authentication phase

After completing the registration with a smart meter to the Kerberos server, it was performed for mutual authentication during data transmission between the smart meter and aggregator point. The smart meter collects service tickets from the Kerberos server via ticket-granting server, in which the ticket is issued during the registration phase. In this phase, the Kerberos extension is added to achieve mutual authentication. Kerberos allows three public-key extensions, namely, PKINIT, PKCROOSS, and PKTAPP [17,21] in different scenarios on the Kerberos model. Therefore, this work follows traditional Kerberos in the registration phase. Following the successful registration, PKTAPP smart meter to aggregator server is used for a mutual authentication phase. Furthermore, the ECC-based encryption is compiled to efficiently execute the system of the proposed protocol. The proposed system adopts a time-stamp along with a pseudo-random number which we used for every session key freshness by verifying the exact appended parameter of SM within the aggregator point transmission in terms of robust the Kerberos model. The step of mutual authentication is presented in Table 3.

Table 3

Flow mutual authentication phase

SM AG
  1. Select public key = Q AG

  2. Select = TKTSM

  3. Generate time-stamp = T SMT AG

  1. Compute pseudo number SM = R SM * G P

1. Send: SM = TKTSMQ AGT SMR SM 2. Received:
  1. Extract the massage by Q AG = d AG * G

  2. Compare time-stamp = T SMT AG

  3. Verify pseudo number AG = R SM * G P

  4. Store the receive TKNSM = into DB TKT SM

  5. Compute = TKNAG

  6. Select current time-stamp = T AG

  7. Calculate session key SKAG ∈ SKAG = d AG × d SM × G

4. Received:
  1. Compare T SMT AG

  2. Store = TKTAG

Above parameter true perform next otherwise abort;
  1. Calculate SK SM = d SM × d AG × G

  2. Take message = M

  3. Select store TKNAG

  4. Select current time-stamp =T SMT AG

3. Send: AG = TKTAGT AG∥SKAG
5. Send: SM = SKSMM∥TKNAGT SM 6. Received:
  1. Verify SKAG = SKSM

  2. Verify = T SMT AG

  3. Verify = TKNAG

  4. Get M = M

Step 1: In this step, the smart meter and aggregator point compute the private/public key using the aforementioned parameters with the assistance of the initializing phase. Subsequently, the smart meter selects a random prime number that generates two elliptical curve groups including a, b of order p and generator point G in a private-key random value 1 ≤ d ≤ n−1. A random number P SMZ* private key d SM and public key is calculated as Q SM = d SM *G for secret key generation. Similar steps are performed by aggregator point for key generation.

Step 2: The key generation SM initiates mutual authentication with aggregator point. SM selects the public key of Q AG, which finds that the public directory selects SM = TKTSM after completion, which is taken from the Kerberos authentication server in the registration phase. The session time comparison aims to generate time-stamp T SM ≤ T AG for the session key freshness, which computes pseudo-random number SM = R SM * G P using the corresponding AG in ECC point multiplication. Following that, the appended parameter is sent to SM = (TKTSMQ AGT SMR SM) to the aggregator point.

Step 3: Following the credential received from SM then, AG initially extracts the message through the used private key of Q AG = d AG * G, while the time-stamp value T SM ≤ T AG is checked. When this process is successful, the pseudo-number is obtained through the AG point of R SM * G P, followed by the storing of the TKTSM of smart meter for further process. Subsequently, AG is performed with the authentication server, which is initially performed through smart meter to collect the AG = TKTSM identity for the permission to access transmission with SM. The current time-stamp T AG ≤ T SM is selected to calculate the session key AG = SKAG ∈ SKAG = d AG × d SM × G, followed by the transmission of AG = (TKTSMT AG∥ SKAG) to the smart meter.

Step 4: Upon receiving the appended value, the smart meter examines the current time-stamp T SM ≤ T AG, which originates from the SM in G* P. This is followed by the storing of TKNAG for further process and the calculation of SKSM = d SM × d AG × G. Provided if the session key matches, this process would be followed to the next section. Otherwise, the session would not succeed.

Following the above process, a real message is obtained, which also contains smart meter with the addition of stored identity of AG = TKTAG, current time-stamp T SM ≤ T AG, and SM session key. Subsequently, SM = SKSMM ∥ TKTAGT SM is sent to the AG.

Step 5: After AG opens the message with the help of SKAG = SKSM, T SM ≤ T AG is compared, while the identity of received TKNAG is checked when all credentials are true. Message = Message also ensures that the received message source is real. Otherwise, the session would not succeed in terms of the changed value.

Step 6: Finally, aggregator points send M4 = ACK_SM to the smart meter.

4 Results and discussion

In this section, we draw a result analysis in terms of security and performance scenarios. First, we analyze security assessment which is that cover informal criteria employed cryptographic parameter and formal AVISPA are utilized. Second, efficiency test known as performance evaluation declares computation time and bit expense assessments. The vulnerability model is thought to be the Dolev–Yao model [10,17] with an attacker having access to systems and being able to intercept traffic between the SMs and aggregator point. The offender has the ability to resend captured messages to the SM or AG point data, and also has the ability to inject malicious messages into the relayed messages in between two sides. The offender may also impersonate the SM and aggregator point sequentially.

4.1 Security analysis (Informal)

In this section, the suggested protocol maintains informal security by using an overcome strategy. This evaluation examines every parameter is substantially engaged and supplies security features critically evaluate (Table 4). In addition, Dolev-Yao threat model are being used in the proposed technique.

Table 4

Informal security analysis strategy

Security features Overcome strategy
  • Domain authentication

  • Mutual authentication

The proposed mechanism first during registration phase proved domain authentication smart meter (SM) to authentication server (AS) by used password hash of SM = P W, which is previously stored in AS server. Same process AG = P W can confirm the domain authentication in insecure channel. Another way confirms that the system mutually transmitting their information generates smart meter TKNSM and TKNAG, which has rechecked in the data transmission phase if the TKNSM = TKNAG same, then exchange the message otherwise session abort by Kerberos authenticator server. Moreover, SKAG ∈ SKAG = d AG × d SM × G and SKSM = d SM × d AG × G. If values match and are equal, then SKAG
= SKSM and SKAG, it mutually authenticates between them.
Replay attack The proposed protocol utilized time-stamp value T AGT SM and T SMT AG if change in the value drops the connection immediately. Another way, to avoid the attack in every step on SM to AG generates key freshness in R SM = R SM * G P and R AG = AG * G P without previous knowledge of the parameter did not achieve the value pseudo-random number by as adversary σ. So, the proposed system saves from replay attack.
Man in the middle attack Smart meter sends SM = TKNSMQ AGR SM and there is σ only to get the Q SM and Q AG, which is only this parameter publicly available in the channel. Instead, TKNSM and R SM value do not extract due to unable of previous parameter knowledge.
Impersonation attack This system mutually authenticates by TKNAGR AGT AG∥ SKAG with TKNSMR SMT SM∥ SKSM. Here, it is SKAG = SKSM that contained fascinated with parameter TKNAG∥R AG = AG * G PT AG, which is any previous knowledge that does not get it. Only SM and AG kept the information, so this protocol saves from impersonation attack.
Support anonymity Computer security and cryptography is an asset forward secrecy, preventing an assailant that has recorded previous communications from finding participants’ identities. There is SM with AG passing all messages between them accommodate with time-stamp value T SM = T AG. Due to the cause of randomness, it makes it different value executes each conversation. Initially, TKNSM and TKNAG get from AS server, which is anonymously used public channel; therefore, it does not understand any unauthorized parties. Thus, the σ (adversary) cannot get real identity of user, so this protocol kept anonymous identity.
Forward secrecy Forward secrecy, also known as perfect forward secrecy, is a key agreement protocol feature that ensures that the session key will not be compromised in the short or long term. It supports forward secrecy as the session key SKAG = SKSM built by TKNSMR AGT AG∥ SKAG and TKNAGR SMT SM∥ SKSM following information that are time-stamp T AGT SM and T SMT AG and pseudo-random number R AG = R SM ensure each message session freshness along both side private keys (d SM and d AG) provides confidentiality of both entities. Thus, the adversary has trouble cracking the combination of constantly shifting variables and highly protected private keys.

4.2 Security analysis (Formal)

According to Hasan et al.’s [7,22] protocol, this study was evaluated based on mutual authentication between smart meter and aggregator point. This section critically verifies the proposed protocol by using AVISPA, which is a role-based tool measuring the security of the cryptographic method. It also automatically considers several elements, such as public key infrastructure, encryption, decryption, signature generation, and hash function, while the symmetric encryption and decryption are handled within the system. In addition to supporting the unlimited simulation of the session key and message basement, it is effective in determining protocol accuracy. AVISPA combines two states of back-end servers, namely, on-the-fly model-checkers and the Constrict-logic search engine. Based on the work under review by AVISPA, the protocol fascinated was coded into the High-Level Protocol Specifications Language (HLPSL) and tested by the back-end servers.

The writing performed on HLPSL is illustrated in Figure 2. The results on the goal section indicated that without the involvement of unauthorized parties, the proposed protocol preserved forward secrecy by SK1 through the smart meter and SK2 that was maintained from the aggregator point. While the protocol achieved mutual authentication, the Dolev–Yao model was considered an intrusion model to confirm the effectiveness of the planned efficient authentication protocol. Based on the results shown in Figure 3, the designed mutual authentication mechanism protocol was secure in terms of SK1 and SK2 that are secret, which is declared by goal section. Moreover, smart meter SK2 and aggregator point (server side) SK1 authenticate themselves. Hence, the proposed scheme is unauthorized risk free.

Figure 2 
                  Role of HLPSL for smart meter and aggregator point.
Figure 2

Role of HLPSL for smart meter and aggregator point.

Figure 3 
                  The illustration of design protocol tested by AVISPA tools.
Figure 3

The illustration of design protocol tested by AVISPA tools.

The first segment, which denotes “SUMMARY,” indicates whether the protocol built was unsafe or safe, or the evaluation was unclear. The second segment presents the “DETAILS,” while the explanation for the performance of the “SUMMARY” section is highlighted. The remaining three parts, namely, “PROTOCOL,” “GOAL,” and “BACKEND,” represent the name of the protocol, the goal defined also during evaluation, and the back-end used in the evaluation, respectively.

4.3 Performance of computation time operation

Following the comparison between recent works, the results in Table 5 demonstrate the cost of cryptographic protocol computation time for secret key generation, time of encryption/decryption, pseudo-random number generation, and time-stamp selection for system development. These were performed on the protocol with core!5 and 3.20 GHz processors and 4 GB RAM, while the operation was made in Python version 3.4 in the crypto library for each cryptographic operation. Moreover, the service ticket generation was created based on the Kerberos operation used in open-SSL, which is the renowned open-source application of signature generation, verification, and distribution as a third party. Overall, the results indicated that the approach in this study required a shorter computation time for the session key generation (11.14 ms). Based on Figure 4, the yielded value proposed that the protocol required less computation time compared to the existing technique.

Table 5

Comparison of computation time with existing protocols

Schemes Operation Time (ms)
[23] 4T ME + 4T PKED + 2T HMAC ≅ 25.40
[24] 6T ME + 4T ESED + 2T HO + 2T HMAC ≅ 23.13
[25] 5TPM + TB + 2TME + 10T HO ≅ 18.96
[9] 2T PA + 2T PM + 2T E/D + 2T PRNG + 3T TS + 1T TKNG ≅ 17.93
[7] 4T ME + 4T PKED + 2T HMAC ≅ 15.01
Proposed 2T PA + 2T PM + 2T E/D + 2T PRNG + 3T TS + 1T TKNG ≅ 11.14
Figure 4 
                  Comparison of computation time.
Figure 4

Comparison of computation time.

Proposed protocol based on the computation time cost relies on time of T PA: Time of ECC point addition ≅ 0.090 ms then T E/D: Time of encryption and decryption is ≅ 0.121 ms along with T PRNG: Time of Pseudo-random number generation ≅ 0.089 ms, T TS: Time of time-stamp selection ≅ 0.035 ms and T TKNG: Time of token generation ≅ 3.250 ms are, respectively, total computation expenses is 11.14 ms. Based on Table 5, it demonstrates that

  • Scheme [23] computation cost is 25.40 ms, which is approximately 56.14% higher than the proposed scheme.

  • Scheme [24] computation cost is 23.13 ms, which is approximately 21.83% higher than the proposed scheme.

  • Scheme [25] computation cost is 18.96 ms, which is approximately 41.24% higher from the proposed scheme.

  • Scheme [9] computation cost is 17.93 ms, which is approximately 37.86% higher from the proposed scheme.

  • Scheme [7] computation cost is 15.01 ms, which is approximately 25.78% higher from the proposed scheme.

4.4 Performance of communication bit operations

The communication costs of the proposed protocol presented in Table 6 were compared to the existing schemes [7,9,23,24,25]. This comparison was based on the number of messages sent and received by the two parties, including the number of bytes connected with each transmission token. A proposed system was constructed by carrying the pseudo-random 128 bits, ECC encryption and decryption 320 bits, and time-stamp taken 32 bits, which was identified as Kerberos ticket for initializing the smart meter to aggregator point ticket that consisted of 64 bits. The data shown in Figure 5 indicated that the proposed approach obtained by the X and Y axes consumed less computing bits compared to the other previous technique. Based on Table 6, it illustrates that

  • The communication cost proposed protocol used three messages, which is 672 bits.

  • The communication cost used three messages [23] with 47,416 bits, which is approximately 84.78% increased from the proposed scheme.

  • The communication cost used two messages [24] with 4,768 bits, which is approximately 85.90% increased from the proposed scheme.

  • The communication cost used two messages [25] with 2,752 bits, which is approximately 75.58% increased from the proposed scheme.

  • The communication cost used three messages [9] with 1,280 bits, which is approximately 47.50% increased from the proposed scheme.

  • The communication cost used three messages [7] with 1,940 bits, which is approximately 65.36% increased from the proposed scheme.

Table 6

Comparison of communication bits with existing protocols

Schemes Forward message Bits sent/received
[23] 3 4,416
[24] 2 4,768
[25] 2 2,752
[9] 3 1,280
[7] 2 1,940
Proposed 3 672
Figure 5 
                  Comparison of communication bits.
Figure 5

Comparison of communication bits.

According to the examination of computation time and communication bit assessment, the proposed scheme requires less time and operations with fewer bits than the prior scheme. According to the results, the smart meter side computation and communication overhead were greatly decreased, allowing both security and performance assessments to be managed equally.

5 Conclusion

In rapidly integration of data transmission system basis on Internet-connected numerous device, the AMI is a perfect system in smart grid. On the other hand, lightweight, protection, reliability, and privacy of smart grids are issues of higher importance to governments, businesses, and academics among others. To overcome the current difficulties that are caused by inefficient authentication, high computation time, and communication bits overheads in AMI, the Kerberos-based authentication with ECC-based cryptography was proposed to adequately address the previously encountered issue. Currently, the proposed guidelines ensured structured analysis, which reflected the techniques used by resource constraint smart meter in AMI. This outcome led to significantly lower computation time and communication bit operation costs in resource de-sufficient smart meters. Mutual authentication through the use of widely adopted tools AVISPA has been proven. Moreover, this article has also demonstrated that the proposed protocol is safe from unauthorized access, which is evaluated by formal and informal way. The current study managed a limited number of devices for validation in the AMI. Meanwhile, the dynamic device transmission for session key generation would be parallel to the applicability for smart meters to an aggregator point. Furthermore, it was confirmed in this study protocol that the message transmission is more reliable in the AMI environment. Finally, it is hoped that the protocols in this study for the AMI could be built in a hierarchical manner to enhance the platform strength and liveliness in smart grid applications.

Acknowledgements

This research was supported by Universiti Putra Malaysia (UPM). Special thanks are dedicated to the supervisor of the research project, Dr Noor Afiza Mohd Ariffin, and the committee member, Assoc. Prof. Dr Nor Fazlida Mohd Sani.

  1. Conflict of interest: Authors state no conflict of interest.

References

[1] Chim TW, Yiu SM, Li VOK, Hui LCK, Zhong J. PRGA: Privacy-preserving recording & gateway-assisted authentication of power usage information for smart grid. IEEE Trans Dependable Secur Comput. Jan. 2015;12(1):85–97. 10.1109/TDSC.2014.2313861.Search in Google Scholar

[2] Khan AA, Kumar V, Ahmad M. An elliptic curve cryptography based mutual authentication scheme for smart grid communications using biometric approach. J King Saud Univ - Comput Inf Sci. 2019;34:698–705. 10.1016/j.jksuci.2019.04.013.Search in Google Scholar

[3] Benmalek M, Challal Y, Derhab A. Authentication for smart grid AMI systems: Threat models, solutions, and challenges. Proceedings - 2019 IEEE 28th International Conference on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE 2019; Jun. 2019. p. 208–13. 10.1109/WETICE.2019.00052.Search in Google Scholar

[4] Hasan MM, Ariffin NAM, Sani NFM. A review of cryptographic impact in cybersecurity on smart grid: Threat, challenges and countermeasures. J Theor Appl Inf Technol. 2021;99(10):2458–72.Search in Google Scholar

[5] Shapsough S, Qatan F, Aburukba R, Aloul F, Al Ali AR. Smart grid cyber security: Challenges and solutions. 2015 International Conference on Smart Grid and Clean Energy Technologies (ICSGCE); 2016. p. 170–5. 10.1109/ICSGCE.2015.7454291.Search in Google Scholar

[6] Ariffin NAM, Rahim FA, Asmawi A, Ibrahim ZA. Vulnerabilities detection using attack recognition technique in multi-factor authentication. Telkomnika (Telecommun Comput Electron Control. 2020;18(4):1998–2003. 10.12928/TELKOMNIKA.V18I4.14898.Search in Google Scholar

[7] Wu F, Xu L, Li X, Kumari S, Karuppiah M, Obaidat MS. A lightweight and provably secure key agreement system for a smart grid with elliptic curve cryptography. IEEE Syst J. Sep. 2019;13(3):2830–88. 10.1109/JSYST.2018.2876226.Search in Google Scholar

[8] Garg S, Kaur K, Kaddoum G. Secure and Lightweight Authentication Scheme for Smart Metering Infrastructure in Smart Grid. IEEE Trans Ind Inform. 2019;16:3548–57. 10.1109/TII.2019.2944880.Search in Google Scholar

[9] Braeken A, Kumar P, Martin A. Efficient and provably secure key agreement for modern smart metering communications. Energies. 2018;11(10):1–18. 10.3390/en11102662.Search in Google Scholar

[10] El Mrabet Z, Kaabouch N, El Ghazi H, El Ghazi H. Cyber-security in smart grid: Survey and challenges. Comput Electr Eng. 2018;67:469–82. 10.1016/j.compeleceng.2018.01.015.Search in Google Scholar

[11] Gunduz MZ, Das R. Cyber-security on smart grid: Threats and potential solutions. Comput Netw. 2020;169:107094. 10.1016/j.comnet.2019.107094.Search in Google Scholar

[12] Wu D, Zhou C. Fault-tolerant and scalable key management for smart grid. IEEE Trans Smart Grid. 2011;2(2):375–81. 10.1109/TSG.2011.2120634.Search in Google Scholar

[13] Nicanfar H, Jokar P, Beznosov K, Leung VCM. Efficient authentication and key management mechanisms for smart grid communications. IEEE Syst J. 2014;8(2):629–40. 10.1109/JSYST.2013.2260942.Search in Google Scholar

[14] Tsai JL, Lo NW. Secure anonymous key distribution scheme for smart grid. IEEE Trans Smart Grid. Mar. 2016;7(2):906–14. 10.1109/TSG.2015.2440658.Search in Google Scholar

[15] Ferrag MA, Ahmim A. Security solutions and applied cryptography in smart grid communications. United States: IGI Global; 2016. p. 1–463. 10.4018/978-1-5225-1829-7.Search in Google Scholar

[16] Diovu RC, Agee JT. Enhancing the security of a cloud-based smart grid AMI network by leveraging on the features of quantum key distribution. Trans Emerg Telecommun Technol. Jun. 2019;30:6. 10.1002/ett.3587.Search in Google Scholar

[17] Tbatou Z, Asimi A, Asimi Y, Sadqi Y, Guezzaz A. A new mutuel Kerberos authentication protocol for distributed systems. Int J Netw Secur. 2017;19(6):889–98. 10.6633/IJNS.201711.19(6).04.Search in Google Scholar

[18] Saxena N, Choi BJ. Integrated distributed authentication protocol for smart grid communications. IEEE Syst J. 2018;12(3):2545–56. 10.1109/JSYST.2016.2574699.Search in Google Scholar

[19] Yan L, Chang Y, Zhang S. A lightweight authentication and key agreement scheme for smart grid. Int J Distrib Sens Netw. 2017;13(2):155014771769417. 10.1177/1550147717694173.Search in Google Scholar

[20] Chen Y, Martínez JF, Castillejo P, López L. An anonymous authentication and key establish scheme for smart grid: Fauth. Energies. 2017;10(9):1354. 10.3390/en10091354.Search in Google Scholar

[21] Sutradhar MR, Sultana N, Dey H, Arif H. A new version of Kerberos authentication protocol using ECC and threshold cryptography for cloud security. 2018 Joint 7th International Conference on Informatics, Electronics & Vision (ICIEV) and 2018 2nd International Conference on Imaging, Vision & Pattern Recognition (icIVPR), 2018; 2019. p. 239–44. 10.1109/ICIEV.2018.8641010.Search in Google Scholar

[22] Hasan MM, Mohd Ariffin NA, Mohd Sani NF. LIKA: Lightweight identity based key agreement protocol for secure data transmission in advanced metering infrastructure of smart grid. Energies. 2022;15(21):8106. 10.3390/en15218106.Search in Google Scholar

[23] Sule R, Katti RS, Kavasseri RG. A variable length fast message authentication code for secure communication in smart grids. IEEE Power Energy Soc Gen Meet. 2012;1–6. 10.1109/PESGM.2012.6345622.Search in Google Scholar

[24] Mahmood K, Ashraf Chaudhry S, Naqvi H, Shon T, Farooq Ahmad H. A lightweight message authentication scheme for smart grid communications in power sector. Comput Electr Eng. 2016;52:114–24. 10.1016/j.compeleceng.2016.02.017.Search in Google Scholar

[25] Li X, Wu F, Kumari S, Xu L, Sangaiah AK, Choo KR. A provably secure and anonymous message authentication scheme for smart grids. J Parallel Distrib Comput. 2017;132:242–9. 10.1016/j.jpdc.2017.11.008.Search in Google Scholar

Received: 2021-06-09
Revised: 2022-03-19
Accepted: 2022-07-02
Published Online: 2023-02-22

© 2023 the author(s), published by De Gruyter

This work is licensed under the Creative Commons Attribution 4.0 International License.

Downloaded on 23.12.2024 from https://www.degruyter.com/document/doi/10.1515/jisys-2021-0095/html
Scroll to top button