The Internet of Things (IoT) offers a wide range of applications that significantly enhance people’s lives. In recent years, IoT has emerged as a transformational technology in many different kinds of sectors. In IoT, many devices with varying functionalities are used to operate in multiple domains, including smart homes, smart agriculture, and the Industrial Internet of Things (IIoT). Among these, IIoT has received a great deal of attention. Authorized users in an IIoT ecosystem can remotely manage and access devices, retrieve real-time data, and share sensitive data. However, sending information through public communication channels exposes it to potential security threats. In this paper, we present a provably secure three-factor authentication and key agreement mechanism for data transfer in the IIoT environment. Our scheme allows legitimate users to remotely access sensor devices while maintaining data security. To ensure the efficiency of resources, the suggested approach uses elliptic curve cryptography (ECC), bitwise XOR operations, and hash functions. Communication and computation analyses show that our approach is resource efficient, with lower computational and communication costs than other existing schemes. Our protocol protects the security and privacy of authorized entities in the IIoT environment by using ECC and cryptographic operations.
Som et al. (Thu,) studied this question.