ECC based self-certified key management scheme for mutual authentication in Internet of Things

Internet of Things (IoT) is considered as an advanced version of machine — to-machine technology where the communication between intelligent things is possible with internet connectivity. Security and privacy issues of these things are more prominent since it is widely used in IoT related applications. Even though several authentication schemes which are based on password, hash function and other cryptographic primitives are existing, studies showing that it is vulnerable to different kinds of attacks. This paper proposes an Elliptic Curve Cryptography (ECC) based Self-Certified Key Management (SCKM) scheme for mutual authentication scheme relying on self-certified public key management of IoT systems. In this scheme, the public key of the more resource constrained nodes in the IoT system is generated by the less constrained systems. The private key of the more constrained nodes is generated jointly by the nodes. This concept satisfies the zero knowledge Proof. A security analysis shows that of proposed scheme is effective in defending against various attacks.