Scalable and Secure Big Data IoT System Based on Multifactor Authentication and Lightweight Cryptography

Author First name, Last name, Institution

Saleh Atiewi, Al-Hussein Bin Talal University
Amer Al-Rahayfeh, Al-Hussein Bin Talal University
Muder Almiani, Al-Hussein Bin Talal University
Salman Yussof, Universiti Tenaga Nasional
Omar Alfandi, Zayed University
Ahed Abugabah, Zayed UniversityFollow
Yaser Jararweh, Jordan University of Science and Technology

ORCID Identifiers

0000-0002-9581-401X

0000-0002-3181-5822

0000-0002-4403-3846

Document Type

Article

Source of Publication

IEEE Access

Publication Date

1-1-2020

Abstract

© 2013 IEEE. Organizations share an evolving interest in adopting a cloud computing approach for Internet of Things (IoT) applications. Integrating IoT devices and cloud computing technology is considered as an effective approach to storing and managing the enormous amount of data generated by various devices. However, big data security of these organizations presents a challenge in the IoT-cloud architecture. To overcome security issues, we propose a cloud-enabled IoT environment supported by multifactor authentication and lightweight cryptography encryption schemes to protect big data system. The proposed hybrid cloud environment is aimed at protecting organizations' data in a highly secure manner. The hybrid cloud environment is a combination of private and public cloud. Our IoT devices are divided into sensitive and nonsensitive devices. Sensitive devices generate sensitive data, such as healthcare data; whereas nonsensitive devices generate nonsensitive data, such as home appliance data. IoT devices send their data to the cloud via a gateway device. Herein, sensitive data are split into two parts: one part of the data is encrypted using RC6, and the other part is encrypted using the Fiestel encryption scheme. Nonsensitive data are encrypted using the Advanced Encryption Standard (AES) encryption scheme. Sensitive and nonsensitive data are respectively stored in private and public cloud to ensure high security. The use of multifactor authentication to access the data stored in the cloud is also proposed. During login, data users send their registered credentials to the Trusted Authority (TA). The TA provides three levels of authentication to access the stored data: first-level authentication - read file, second-level authentication - download file, and third-level authentication - download file from the hybrid cloud. We implement the proposed cloud-IoT architecture in the NS3 network simulator. We evaluated the performance of the proposed architecture using metrics such as computational time, security strength, encryption time, and decryption time.

DOI Link

10.1109/access.2020.3002815

ISSN

2169-3536

Publisher

Institute of Electrical and Electronics Engineers Inc.

Volume

8

First Page

113498

Last Page

113511

Disciplines

Computer Sciences

Keywords

Big data, cloud computing, Internet of Things, lightweight cryptography, multilevel authentication

Scopus ID

85087658176

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-No Derivative Works 4.0 International License.

Recommended Citation

Atiewi, Saleh; Al-Rahayfeh, Amer; Almiani, Muder; Yussof, Salman; Alfandi, Omar; Abugabah, Ahed; and Jararweh, Yaser, "Scalable and Secure Big Data IoT System Based on Multifactor Authentication and Lightweight Cryptography" (2020). All Works. 3023.
https://zuscholars.zu.ac.ae/works/3023

Indexed in Scopus

yes

Open Access

yes

Open Access Type

Gold: This publication is openly available in an open access journal/series