A Secure Authentication for Plant Monitoring System Sensor Data Access.

To encourage effective monitoring in plant agriculture, we have studied an IoT application for plant agriculture monitoring systems. This application helps users monitor and track plant environmental conditions through the user’s device. It uses login and token-based authentication for security. However, it may introduce potential vulnerabilities that may arise from intercepting passwords due to the inherent insecurity of HTTP communication for data transmission in the development environment and token inexpiration. To address these security concerns, we propose secure authentication for accessing the plant monitoring system’s sensor data. The proposed solution incorporates two-factor authentication (2FA) and JSON web tokens (JWT) approaches to enhance security. The 2FA requires users to provide an additional verification step beyond username and password to access the application. Additionally, JWT enhances security of token-based authentication. By introducing an expiration time to the tokens, the vulnerability associated with token reuse is minimized. Then, we implement and verify the functionality of the proposed solution through system testing.