University of Tasmania

File(s) under permanent embargo

A formally verified blockchain-based decentralised authentication scheme for the internet of things

journal contribution
posted on 2023-05-21, 01:31 authored by Hameed, K, Saurabh GargSaurabh Garg, Muhammad Bilal AminMuhammad Bilal Amin, Byeong KangByeong Kang
With the proliferation of intelligent devices in the Internet of Things (IoT), the security of IoT devices is becoming a major concern as an attacker can exploit network services via network capture or deployment of malicious devices. Therefore, IoT device authentication is a key security requirement. Conventional authentication approaches have proved insufficient in dealing with a large number of IoT devices because of various shortcomings, such as centrally designed architectures and expensive cryptographic primitives. Blockchain technology has led to the creation of decentralised IoT authentication solutions with their desirable characteristics. Due to the integration of IoT and Blockchain technology, however, performance is one of the significant challenges. Existing Blockchain-based authentication schemes create extra storage, computing and communication overheads on the Blockchain which restricts its use for different IoT networks. In this paper, we design an efficient decentralised Blockchain-based authentication scheme aimed at achieving a secure authentication for IoT devices using the token mechanism. We design the Ethereum Blockchain network model to implement our scheme, in which smart contracts provide secure connectivity between miner nodes and IoT devices. We demonstrate our proposed scheme with an IoT-based smart home case study, which shows significant performance in computation and communication overheads compared with existing Blockchain-based authentication schemes. The modelling, analysis and verification of the proposed scheme, using high level Petri nets (HLPNs) and Z3 SMT solver are also provided to prove correctness and to verify the claims of our model.


Publication title

Journal of Supercomputing






School of Information and Communication Technology


Kluwer Academic Publ

Place of publication

Van Godewijckstraat 30, Dordrecht, Netherlands, 3311 Gz

Rights statement

© The Author(s), under exclusive licence to Springer Science+Business Media, LLC, part of Springer Nature 2021

Repository Status

  • Restricted

Socio-economic Objectives

Communication technologies, systems and services not elsewhere classified; Cybersecurity