RBAC-based One-to-Many Authentication and Key Negotiation Scheme in Smart Factory

The rise of smart factories enables users to access and control smart devices and obtain real-time data remotely. In response to the problem that most schemes allow only one user to authenticate with one device, multiple negotiation requests need to be initiated when accessing multiple devices, leading to more computation and communication costs, as well as problems such as privilege overstepping, malicious device node impersonation, and sensitive data leakage. In this paper, we propose a one-to-many authentication and key negotiation scheme based on role-based access control (RBAC) security, which aims to realize secure authentication and key negotiation between a user and multiple devices. The granularity of the privileges is improved by constructing access control lists to restrict users' operation privileges. A secret sharing mechanism is introduced to facilitate the formation of group keys, thus reducing the duplicate authentication overhead. Experimental results show that in the case of single-device authentication, the scheme reduces the time consumption by 97.6%, 98.2%, 40.5%, and 98.9%, respectively, compared to the schemes of Yang, R. Vinoth, Hossein, and Yanru et al. In the case of multiple-device authentication, the elapsed time is reduced by 98.2%, 97.4%, 65.3%, and 99.4%, respectively.