论文信息 - Certificate based keying scheme for DTLS secured IoT

Certificate based keying scheme for DTLS secured IoT

The IP-based Internet of Things (IoT) stands for the universal interconnection of smart objects and back end users with the help of IP protocols. Secure key management among the smart objects is an important aspect of IoT security. Due to the high levels of resource constraints of the devices in terms of memory, battery capacity and CPU power, and other network characteristics such as mobility, scalability, heterogeneity and limited bandwidth, the conventional security protocols cannot be directly deployed in IoT networks in their raw formats. We propose a lightweight DTLS-based keying mechanism for CoAP IoT smart objects which supports the scalability of the network and node mobility. In addition to the key establishment part the protocol also provides node authentication. The protocol consumes less device resources and minimum network bandwidth by incurring low message overhead. The smart objects can securely access the network and obtain certificates after an initial configuration irrespective of the manufacturer standards.

Andrei Gurtov | Pawani Porambage | Mika Ylianttila | Erkki Harjula | Pradeep Kumar

[1] Carsten Bormann,et al. The Constrained Application Protocol (CoAP) , 2014, RFC.

[2] Eric Rescorla,et al. Datagram Transport Layer Security Version 1.2 , 2012, RFC.

[3] Eric Rescorla,et al. The Transport Layer Security (TLS) Protocol Version 1.1 , 2006, RFC.

[4] Oscar Garcia-Morchon,et al. Security Considerations in the IP-based Internet of Things , 2013 .

[5] Hannes Tschofenig,et al. Pre-Shared Key Ciphersuites for Transport Layer Security (TLS) , 2005, RFC.

[6] Xiaoyun Wang,et al. Finding Collisions in the Full SHA-1 , 2005, CRYPTO.

[7] Eric Rescorla,et al. Guidelines for Writing RFC Text on Security Considerations , 2003, RFC.

[8] David A. McGrew,et al. AES-CCM Cipher Suites for Transport Layer Security (TLS) , 2012, RFC.

[9] Bodo Möller,et al. Network Working Group Elliptic Curve Cryptography (ecc) Cipher Suites for Transport Layer Security (tls) , 2006 .

[10] Oscar Garcia-Morchon,et al. Securing the IP-based Internet of Things with DTLS , 2013 .

[11] Matthew J. Campagna,et al. A Cryptographic Suite for Embedded Systems (SuiteE) , 2012 .

[12] Scott O. Bradner,et al. Key words for use in RFCs to Indicate Requirement Levels , 1997, RFC.