Man in the Middle Attack. In this attack, assume that the adversary can intercept the transmitted messages during the authentication and key agreement phases. attempts to modify the arbitrary messages to deceive the Vi, Dj, and CC. For this purpose, needs to get the secret attributes IDi, si, ri, and TSi to generate a legitimate request message M1. Identically, also cannot modify other messages X0, X0, and M4 due to the same reason. Therefore, our scheme can prevent the man-in-the-middle attack.
Man in the Middle Attack. In this section, we compare and analyze the schemes proposed by Xxxxx et al. [27], Xxxxx et al. [28], Li et al. [29] against our proposed scheme from the perspectives of computational cost and communication cost. We select a bilinear mapping e : G1 G1 G2 for the aforementioned existing three schemes. G1 is the additive cyclic group of prime order q, which is generated by an elliptic curve E(Fp). G2 is the multiplicative group of prime order q, which is generated by an elliptic curve E(Fp).
Man in the Middle Attack. The man in the middle attack is where an intruder intercepts the message and tampers with a vulnerable message. This kind of attack happens between the source node and the destination node. During this type of attack, both the source node and the destination node are not aware of this attack. In TLPKA, the vulnerable message can not affect the procedure because the source node derives a unique pairwise key which is shared with the correct destination node. Therefore, even if the adversary intercepts the message, he or she can not reveal the information used for authentication. Only the correct destination node having the correct pairwise key can reply to the message correctly. Consequently, the Man in the middle Attack is prevented successfully.
Man in the Middle Attack. This kind of attack can be foiled if the origin authenti- cation of values exchanged can be provided. Although, origin authentication is not provided, the way the final session key is computed prevents this kind of attack. If an attacker intercepts the two messages and sends the following to A: T (1) = cP(1),W (2) = cP2 , the computed partial key will be as follows:
K(1) = e(1)(aS(1), T (1))= e(1)(Q(1), P(1))acs(1) , K(2) = e(2)(aQ(2),W (2))= e(2)(Q(2), P(2))acs(2) . Although, the attacker can compute K(1), it is infeasible for the attacker to compute
K(2) without acquiring ephemeral key a of A, or the master key s2 of PKG2.
Man in the Middle Attack. In this attack, the adversary interferes with the communication channel between parties and gains access to AVISPA is one of the popular tools used to verify the formal security of authentication protocols by using the role- based HLPSL language for code implementation. The tool employs an HLPSL2IF translator to convert HLPSL specifications into an intermediate format (IF). It then tests the protocol using four back-ends to identify security vulnerabilities [29], [30]. The proposed protocol has been simulated using the SPAN (Security Animator for AVISPA) simulation tool on an Ubuntu 10.10 (32-bit) operating system with 4096 MB RAM. The simulation utilized the OFMC Back-End and CL-AtSe Back-End for output. However, both % OFMC SUMMARY % Version of 2006/02/13 SAFE SUMMARY DETAILS SAFE BOUNDED_NUMBER_OF_SE DETAILS SSIONS BOUNDED_NUMBER_OF_SE TYPED_MODEL SSIONS PROTOCOL PROTOCOL /home/span/span/testsuite/results/ /home/span/span/testsuite/results/ WBAN_Protocol.if WBAN_Protocol.if GOAL GOAL As Specified as_specified BACKEND BACKEND CL-AtSe OFMC STATISTICS COMMENTS Analysed: 14 states STATISTICS Reachable: 6 states parseTime: 0.00s Translation: 0.09 seconds searchTime: 0.54 Computation: 0.02 seconds visitedNodes: 32 nodes depth: 4 plies Figure 4: The AVISPA tool result in OFMC and CL-AtSe back-ends SATMC and TA4SP back-ends currently do not support bitwise XOR operations, resulting in inconclusive results. Therefore, these back-ends are not included in the research. The HLPSL [31] code of the proposed protocol consists of the transferred messages. Their intention at this stage is to sabotage or disrupt the normal message exchange by altering their values and sending the modified messages to the other party. Let's consider a scenario where the attacker intercepts messages sent from the sensor node to the hub node and attempts to modify their values. As a result, the hub node will miscalculate the components of L, leading to an incorrect 𝐿∗ value. Consequently, considering the equation of 𝐿 = 𝐿∗ the hub node detects the intrusion and terminates the session. Conversely, if the adversary modifies the messages sent from the hub node to the sensor node, the sensor node will receive an incorrect 𝐿′ value and fail to authenticate the hub node. Therefore, our scheme remains secure and functions correctly.
