Privacy-Preserving Authentication Scheme With Revocability for Multi-WSN in Industrial IoT

Wireless sensor network (WSN), as one of the core technology in the Industrial Internet of Things (IIoT) system, plays a critical role in collecting data for the monitoring areas. Security and privacy are essential to ensure the trustworthy completeness of data access and transmission for the WSN-based IIoT system. Recently, a series of excellent privacy-preserving authentication schemes for the WSN-based IIoT system have been proposed. There is, however, strong demand for further improvements in multiple registrations, user revocation, and forward secrecy. Targeted by these security issues, we propose an efficient privacy-preserving authentication scheme with revocability for multi-WSNs in the IIoT environment. In the proposed scheme, the user can access multiple different WSNs with the same identity and password through a single registration. Our scheme is provable secure under the random oracle model, and security analysis via practical circumstances shows that it is able to provide a variety of security requirements, such as user revocation, forward secrecy, etc. In addition, the comparison with related schemes indicates that the proposed one has fewer sensor nodes-based computations and overall communication overheads. It is, therefore, more suitable for the resource-constrained IIoT environment than existing approaches.