Post-quantum computing becomes a real threat in the coming years, resulting in vulnerable security protocols that rely on traditional public key algorithms. It is not evident to provide protection against it in a cost-efficient manner, especially for Internet of Things (IoT) devices with limited capabilities. There is a high variety of IoT applications, some require only short-term security (e.g. agriculture) and others long-term security (e.g. healthcare). In order to provide a unified security approach for such heterogeneity in IoT, we propose a flexible hybrid authentication and key agreement framework for a client–server architecture, which relies both on the classical elliptic curve cryptography (ECC) and on a quantum secure key encapsulation mechanism (KEM). There are five versions that can be derived from the framework, going from a fully hybrid, and partial hybrid to classical construction. The trade-off between performance and security strength is demonstrated for each of these versions. The overall cost of the protocols is highly reduced thanks to the usage of multifactors in the authentication process, both on the user side by means of biometrics and the device side by means of physically unclonable functions (PUFs). We show that both Kyber and Mc Elience as KEM can offer reasonable performance, depending on the situation. The unified framework offers optimal security protection against the most well-known attacks.

中文翻译：

---

使用 ECC 和 KEM 的灵活混合后量子双向多因素身份验证和密钥协议框架


后量子计算在未来几年成为真正的威胁，导致依赖传统公钥算法的易受攻击的安全协议。以经济高效的方式提供保护并不明显，尤其是对于功能有限的物联网 （IoT） 设备。物联网应用种类繁多，有些只需要短期安全性（例如农业），而另一些则需要长期安全性（例如医疗保健）。为了给物联网中的这种异构性提供统一的安全方法，我们为客户端-服务器架构提出了一个灵活的混合身份验证和密钥协议框架，该框架依赖于经典的椭圆曲线密码学 （ECC） 和量子安全密钥封装机制 （KEM）。该框架有五个版本，从完全混合和部分混合到经典结构。每个版本都演示了性能和安全强度之间的权衡。由于在身份验证过程中使用了多因素，无论是在用户端通过生物识别技术，还是在设备端通过物理不可克隆功能 （PUF），协议的总成本都大大降低了。我们表明，Kyber 和 Mc Elience 作为 KEM 都可以根据情况提供合理的性能。统一框架提供针对最知名攻击的最佳安全保护。