1551-3203 (c) 2018 IEEE. Personal use is permitted, but republication/redistribution requires IEEE permission. See http://www.ieee.org/publications_standards/publications/rights/index.html for more information. This article has been accepted for publication in a future issue of this journal, but has not been fully edited. Content may change prior to final publication. Citation information: DOI 10.1109/TII.2019.2895030, IEEE Transactions on Industrial Informatics IEEE TRANSACTIONS ON INDUSTRIAL INFORMATICS , VOL. XX, NO. X, XXX 2019 1 Lightweight and Physically Secure Anonymous Mutual Authentication Protocol for Real-Time Data Access in Industrial Wireless Sensor Networks Prosanta Gope, Member, IEEE, Ashok Kumar Das, Senior Member, IEEE, Neeraj Kumar, Senior Member, IEEE, and Yongqiang Cheng Abstract—Industrial Wireless Sensor Network (IWSN) is an emerging class of a generalized Wireless Sensor Network (WSN) having constraints of energy consumption, coverage, connectivity, and security. However, security and privacy is one of the major challenges in IWSN as the nodes are connected to Internet and usually located in an unattended environment with minimum human interventions. In IWSN, there is a fundamental require- ment for a user to access the real-time information directly from the designated sensor nodes. This task demands to have a user authentication protocol. To satisfy this requirement, this article proposes a lightweight and privacy-preserving mutual user authentication protocol in which only the user with a trusted device has the right to access the IWSN. Therefore, in the proposed scheme, we considered the physical layer security of the sensor nodes. We show that the proposed scheme ensures security even if a sensor node is captured by an adversary. The proposed protocol uses the lightweight cryptographic primitives, such as one way cryptographic hash function, Physically Unclonable Function (PUF) and bitwise exclusive (XOR) operations. Security and performance analysis shows that the proposed scheme is secure, and is efficient for the resource-constrained sensing devices in IWSN. Index Terms—Industrial Wireless Sensor Network, Mutual authentication, Key agreement, Physically unclonable function, Security. I. I NTRODUCTION The Industrial Wireless Sensor Network (IWSN) value proposition has evolved from simply extending or replacing wired networks to cloud-connected smart object intelligence. Internet Protocol (IP) addressability to the node, reliable mesh networking, field-bus tunneling, proven battery lifetime, and new cloud capabilities are now part of the IWSN landscape. Due to the advancement of the sensing technology, WSNs are becoming important as the Internet provides access to digital information anywhere. Today’s sensor networks can provide remote interaction with the outside physical world. This proliferation of WSNs has enabled several new classes of applications that benefit a large number of applications [1]. P. Gope is with the Department of Computer Science and Technology, University of Hull, Cottingham Rd, Hull HU6 7RX, United Kingdom (e-mail: prosanta.nitdgp@gmail.com, p.gope@hull.ac.uk). A. K. Das is with the Center for Security, Theory and Algorithmic Research, International Institute of Information Technology, Hyderabad 500 032, India (e-mail: iitkgp.akdas@gmail.com, ashok.das@iiit.ac.in). N. Kumar is with the Department of Computer Science and Engineering, Thapar University, Patiala 147 004, India (e-mail: neeraj.kumar@thapar.edu). Y. Cheng is with the Department of Computer Science and Technology, University of Hull, Cottingham Rd, Hull HU6 7RX, United Kingdom (e-mail: y.cheng@hull.ac.uk). Corresponding author: P. Gope Many industrial control systems use WSN in the following applications: • Environmental sensing: It is one of the basic WSN applications, which is widely used in almost every field of industry. The main objective in the environmental sensing is an efficient information gathering used both for the prevention (real-time or postponed) as well as analysis. • Condition monitoring: It covers the applications of structural condition monitoring [2], [3], health monitoring in Wireless Body Sensor Network (WBSN) [4] and also machine condition monitoring in an industrial control system. • Process automation: It provides the information regard- ing the resources for the production and service provision [5]. In some cases, WSNs can be used for the production performance monitoring, evaluation and improvement. In IWSNs, the collaborative nature allows many potential advantages over traditional wired industrial monitoring as well as control systems, such as self-organization, flexibility, rapid deployment and inherent intelligent-processing capability [21]. Thus, WSN plays a crucial part in building a highly depend- able and self-healing industrial system that can answer to the real-time events in quick time. Hence, it is argued that in order to realize the visualized industrial applications and effective communication protocols, we require the advantages potential gains of WSN [21]. Because of unique characteristics and technical challenges, developing a WSN for industrial applications needs a combination of expertise from various stakeholders (Academia and industry) which are outlined as below [21]: • The industrial expertise as well as knowledge are needed for application-specific domain. • The sensor-technology expertise is required to understand various issues related to sensor calibration, transducers as well as clock-drift. • The Radio Frequency (RF) design and propagation envi- ronment expertise is needed to deal with the communi- cation challenges and RF interference issues in industrial environments. • The networking expertise is also essential in order to understand the hierarchical network architectures, which are required for IWSNs to furnish adaptable and scalable architectures for the heterogeneous applications.