Insecurity of an Anonymous Authentication for Privacy-Preserving IoT Target-driven Applications
The Internet of Things (IoT) will be formed by smart objects and services interacting autonomously and in real-time. Recently, researcher proposed a fully decentralized anonymous authentication protocol for privacy-preserving IoT target-driven applications. Their system is set up by an ad-hoc community of decentralized founding nodes. Nodes can interact, being participants of cyber-physical systems, preserving full anonymity. In this paper, the authors point out that their protocol is insecure. The adversary can cheat the data collectors by impersonating a legitimate user.