论文信息 - Composite secure MQTT for Internet of Things using ABE and dynamic S-box AES

Composite secure MQTT for Internet of Things using ABE and dynamic S-box AES

The Publish-Subscribe messaging paradigm is widely used as one of the communication models for Internet of Things (IoT). Here, Users are more interested in sharing and retrieving information and careless about which specific end point is holding the information. of various publish-subscribe protocol promoted, MQTT is extremely lightweight and widely used Publish-Subscribe connectivity protocol for Internet of Things. The major drawback of MQTT protocol is that it has limited security features. Hence, these protocols need to address security issues for IoT. In this paper, we present a solution to provide access control and confidentiality of the information exchanged in an MQTT based IoT system. Our approach provides a solution of applying Attribute-based Encryption (ABE) and Dynamic S-Box Advanced Encryption Standard (AES) for payload encryption in MQTT. Further, we evaluated our proposed scheme through simulation.

Manish Parmar | Lochan Bisne | Lochan Bisne | Manish Parmar

[1] Vinod Ganapathy,et al. K2C: Cryptographic Cloud Storage with Lazy Revocation and Anonymous Access , 2011, SecureComm.

[2] Jianqing Zhang,et al. Performance evaluation of Attribute-Based Encryption: Toward data privacy in the IoT , 2014, 2014 IEEE International Conference on Communications (ICC).

[3] Brent Waters,et al. Ciphertext-Policy Attribute-Based Encryption , 2007, 2007 IEEE Symposium on Security and Privacy (SP '07).

[4] Anne-Marie Kermarrec,et al. The many faces of publish/subscribe , 2003, CSUR.

[5] Matthew Green,et al. Outsourcing the Decryption of ABE Ciphertexts , 2011, USENIX Security Symposium.

[6] Brent Waters,et al. Attribute-based encryption for fine-grained access control of encrypted data , 2006, CCS '06.

[7] Muhammad Adnan Tariq,et al. Non-functional requirements in publish, subscribe systems , 2013 .

[8] Tooska Dargahi,et al. On the Feasibility of Attribute-Based Encryption on Smartphone Devices , 2015, IoT-Sys@MobiSys.

[9] P. Balamuralidhar,et al. An identity based encryption using elliptic curve cryptography for secure M2M communication , 2012, SecurIT '12.

[10] Mihaela Ion,et al. Security of Publish/Subscribe Systems , 2013 .

[11] Bruno Crispo,et al. Supporting Publication and Subscription Confidentiality in Pub/Sub Networks , 2010, SecureComm.

[12] Brent Waters,et al. Fuzzy Identity-Based Encryption , 2005, EUROCRYPT.