Security authentication protocol for online English teaching system based on Internet of Things

Abstract

The drawbacks of insufficient security and low efficiency exist in the traditional IoT online English teaching system security authentication protocol. In order to protect the security of user's secret data in online English teaching system, this paper proposes a security authentication protocol for online English teaching system ($\mathrm{SAP}-\mathrm{OETS}$) based on Internet of Things (IoT) to realize the authentication and key negotiation between the user and the English data server. To improve security, the scheme is equipped with physical unclonable functions ($\mathrm{PUF}$) to enhance the defense against physical attacks. Long-term secret information shared during registration, randomly generated temporary secret values and a series of public parameters are utilized to create session keys to guarantee key security. Subsequently, this paper verifies the security of this protocol by random oracle model($\mathrm{ROM})$ and heuristic analysis. Finally, by comparing the performance with other related protocols, $\mathrm{SAP}-\mathrm{OETS}$ reduces computing overhead by at least 31.33 % and communication overhead by at least 51.31 % while ensuring security.