Internet of Underwater Things (IoUT) introduces critical security challenges, especially for protecting distributed infrastructures in resource-constrained environments. Conventional asymmetric and centralized authentication models are unsuitable due to computational and communication overhead, while symmetric approaches lack robustness without trusted storage or hardware. We propose a non-interactive, asynchronous authentication protocol based on NIZKP, combining PUFs-derived secrets with decentralized identifiers on a distributed ledger. This approach enables direct node authentication with cryptographically verifiable identity binding, minimal resource usage, offline verification, and full support for asynchronous operation in constrained environments. The protocol is formally analysed and implemented on COTS hardware without additional secure components. Evaluation shows low energy consumption (827.2 mJ), minimal communication overhead (113 B, 1.513s, 817.9 mJ), and reasonable execution times (worst case ≈ 5.310s), outperforming state-of-the-art solutions in the first four metrics.
Decentralised Identity and PUF-Based Zero-Knowledge Proofs for IoUT Applications / Altamura, Nicola; Lazzeretti, Riccardo; Liberati, Edoardo; Nati, Michele; Petrioli, Chiara. - (2025), pp. 1-8. (Intervento presentato al convegno 2025 IEEE 50th Conference on Local Computer Networks (LCN) tenutosi a Sydney; Australia) [10.1109/lcn65610.2025.11146381].
Decentralised Identity and PUF-Based Zero-Knowledge Proofs for IoUT Applications
Altamura, Nicola;Lazzeretti, Riccardo;Liberati, Edoardo;Nati, Michele;Petrioli, Chiara
2025
Abstract
Internet of Underwater Things (IoUT) introduces critical security challenges, especially for protecting distributed infrastructures in resource-constrained environments. Conventional asymmetric and centralized authentication models are unsuitable due to computational and communication overhead, while symmetric approaches lack robustness without trusted storage or hardware. We propose a non-interactive, asynchronous authentication protocol based on NIZKP, combining PUFs-derived secrets with decentralized identifiers on a distributed ledger. This approach enables direct node authentication with cryptographically verifiable identity binding, minimal resource usage, offline verification, and full support for asynchronous operation in constrained environments. The protocol is formally analysed and implemented on COTS hardware without additional secure components. Evaluation shows low energy consumption (827.2 mJ), minimal communication overhead (113 B, 1.513s, 817.9 mJ), and reasonable execution times (worst case ≈ 5.310s), outperforming state-of-the-art solutions in the first four metrics.I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
