Esfahani, Alireza ORCID: 0000-0002-2100-1569, Mantas, Georgios ORCID: 0000-0002-8074-0417, Ribeiro, Jose, Bastos, Joaquim, Mumtaz, Shahid, Violas, Manuel A., De Oliveira Duarte, A. Manuel and Rodriguez, Jonathan (2019) An efficient web authentication mechanism preventing man-in-the-middle attacks in industry 4.0 supply chain. IEEE Access, 7. pp. 58981-58989. ISSN 2169-3536 (Online) (doi:https://doi.org/10.1109/ACCESS.2019.2914454)

Preview

PDF (Open Access Article) 27698 MANTAS_Efficient_Web_Authentication_Mechanism_Preventing_Man-in-the-middle_Attacks_(OA)_2019.pdf - Published Version Available under License Creative Commons Attribution. Download (3MB) | Preview

Abstract

The fourth industrial revolution (Industry 4.0) is transforming the next generation of the supply chain by making it more agile and efficient compared with the traditional supply chain. However, data communication across the partners in the Industry 4.0 supply chain can be the target of a wide spectrum of attackers exploiting security breaches in the internal/external environment of the partners due to its heterogeneous and dynamic nature as well as the fact that the non-professional users in security issues usually operate their information systems. Attackers can compromise the data communication between legitimate parties in the Industry 4.0 Supply Chain, and thus, jeopardizing the delivery of services across the partners as well as the continuity of the service provision. Consequently, secure data communications across the partners in the Industry 4.0 Supply Chain are of utmost importance. Toward this direction, TLS protocol, which is the de facto standard for secure Internet communications, is employed to ensure secure communication between a user's web browser and a remote web server located in the premises of the same or another partner. However, over the last few years, there have been several serious attacks on TLS, including man-in-the-middle attacks in web applications using TLS to secure HTTP communication. Therefore, in this paper, we propose an efficient TLS-based authentication mechanism, which is resistant against MITM in web applications.

Item Type:	Article
Uncontrolled Keywords:	TLS, MITM attack, authentication, impersonation, HTTPS, Industry 4.0 Supply Chain
Subjects:	T Technology > TA Engineering (General). Civil engineering (General)
Faculty / School / Research Centre / Research Group:	Faculty of Engineering & Science Faculty of Engineering & Science > School of Engineering (ENG)
Last Modified:	30 May 2022 09:26
URI:	http://gala.gre.ac.uk/id/eprint/27698

Actions (login required)

View Item

Downloads