Abstract
In recent years, the technological development of Internet of Things (IoT) has facilitated many practical applications, e.g., smart city and smart home, industry. The incredible revolution of smart Industry-IoT (IIoT) offers productive and practical real time monitoring systems. Smart Industry 4.0 is one of the most efficient ways to improve, manage and observe smart machines through the various devices. However, the data generated from these IoT-based machines are very important, so additional security protection is required to protect the data from attackers. This paper focuses on designing a New Lightweight Session Key-based Authentication (LSKA) scheme that ensures data privacy and secure communication. The proposed LSKA scheme uses three-factor authentication composed of password, smart-card, and the biometric identity to preserve patient anonymity in the Industrial IOT (IIoT) system. This scheme is mathematically proved with Real or Random (ROR) model and also simulated on the Automated Validation of Internet Security Protocols and Applications (AVISPA) tool to determine its safety and security.