LLCPS: A new secure model for Internet of Things services based on the NFC P2P model

This paper presents a new secure model for NFC (Near Field Communication) services based on the P2P (Peer to Peer) mode. NFC is a proximity communication technology more and more supported by smartphones or consumer devices that seems a promising technology for the Internet of Things (IoT). It is used in applications such as payment, access control, transport and more generally for the exchange of small pieces of information. NFC P2P sessions are managed by the Logical Link Control Protocol (LLCP). We introduce LLCPS, a TLS security layer working over LLCP. This framework enforces data privacy and integrity; it also provides identity to smart objects, bound to certificates providing strong mutual authentications. Two experimental platforms are described built with NFC devices and smartphones.

[1]  Lawrence C. Paulson,et al.  Inductive analysis of the Internet protocol TLS , 1999, TSEC.

[2]  Dan Simon,et al.  PPP EAP TLS Authentication Protocol , 1999, RFC.

[3]  Scott B. Guthery,et al.  The Smart Cards: A Developer's Toolkit , 2002 .

[4]  John C. Mitchell,et al.  A modular correctness proof of IEEE 802.11i and TLS , 2005, CCS '05.

[5]  Jim S. Tiller Smart Cards , 2007, Information Security Management Handbook, 6th ed..

[6]  Dan Simon,et al.  The EAP-TLS Authentication Protocol , 2008, RFC.

[7]  Pascal Urien Collaboration of SSL smart cards within the WEB2 landscape , 2009, 2009 International Symposium on Collaborative Technologies and Systems.

[8]  Antonio Iera,et al.  The Internet of Things: A survey , 2010, Comput. Networks.

[9]  Pascal Urien,et al.  A breakthrough for prepaid payment: End to end token exchange and management using secure SSL channels created by EAP-TLS smart cards , 2011, 2011 International Conference on Collaboration Technologies and Systems (CTS).

[10]  D. Mazzocchi,et al.  OPEN-NPP: An Open Source Library to Enable P2P over NFC , 2012, 2012 4th International Workshop on Near Field Communication.

[11]  Jari Arkko,et al.  Report from the Smart Object Workshop , 2012, RFC.

[12]  Pascal Urien LLCPS: A new security framework based on TLS for NFC P2P applications in the Internet of Things , 2013, 2013 IEEE 10th Consumer Communications and Networking Conference (CCNC).

[13]  Pascal Urien A secure cloud of electronic keys for NFC locks securely controlled by NFC smartphones , 2014, 2014 IEEE 11th Consumer Communications and Networking Conference (CCNC).

[14]  Lida Xu,et al.  The internet of things: a survey , 2014, Information Systems Frontiers.