A Lightweight Multicast Authentication Mechanism for Small Scale IoT Applications

Yao, Xuanxia; Han, Xiaoguang; Du, Xiaojiang; Zhou, Xianwei

doi:10.1109/jsen.2013.2266116

Cited by 124 publications

(42 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…More specifically, the IETF has standardized 6LoWPAN (IPv6 over Low-Power Wireless Personal Area Networks), ROLL (routing over lowpower and lossy-networks), and CoAP (constrained application protocol) to equip constrained devices (Cai et al 2014;Chen et al 2014;Esad-Djou 2014;Gu et al 2014;Hoyland et al 2014;HP Company 2014;Kang et al 2014;Keoh et al 2014;Li and Xiong 2013;Li et al 2014a;Oppliger 2011;Raza et al 2013;Roe 2014;Tan et al 2014;Wang and Wu 2010;Xiao et al 2014;Xu et al 2014a;Xu et al 2014b;Yao et al (WPA2) or 802.1AE (MACsec). In recent, the security standards for the RFID market have been reported in (Raza et al 2012).…”

Section: State-of-the-artmentioning

confidence: 99%

The Internet of Things: a security point of view

2016

View full text Add to dashboard Cite

Purpose – The purpose of this paper is to provide an in-depth overview of the security requirements and challenges for Internet of Things (IoT) and discuss security solutions for various enabling technologies and implications to various applications. Design/methodology/approach – Security requirements and solutions are analysed based on a four-layer framework of IoT on sensing layer, network layer, service layer, and application layer. The cross-layer threats are analysed followed by the security discussion for the enabling technologies including identification and tracking technologies, WSN and RFID, communication, networks, and service management. Findings – IoT calls for new security infrastructure based on the new technical standards. As a consequence, new security design for IoT shall pay attention to these new standards. Security at both the physical devices and service-applications is critical to the operation of IoT, which is indispensable for the success of IoT. Open problems remain in a number of areas, such as security and privacy protection, network protocols, standardization, identity management, trusted architecture, etc. Practical implications – The implications to various applications including supervisory control and data acquisition, enterprise systems, social IoT are discussed. The paper will serve as a starting point for future IoT security design and management. The security strategies for IoT should be carefully designed by managing the tradeoffs among security, privacy, and utility to provide security in multi-layer architecture of IoT. Originality/value – The paper synthesizes the current security requirements for IoT and provides a clear framework of security infrastructure based on four layers. Accordingly, the security requirements and potential threats in the four-layer architecture are provided in terms of general devices security, communication security, network security, and application security.

show abstract

Section: State-of-the-artmentioning

confidence: 99%

The Internet of Things: a security point of view

2016

View full text Add to dashboard Cite

show abstract

“…For example, it would be valuable to explore the possibility of achieving a signature scheme which combines our scheme with ring signature. Using our scheme to construct a practical complete application is also another interesting problem [31,32].…”

Section: Concludingmentioning

confidence: 99%

Research on a New Signature Scheme on Blockchain

Yuan

2017

Security and Communication Networks

View full text Add to dashboard Cite

With the rise of Bitcoin, blockchain which is the core technology of Bitcoin has received increasing attention. Privacy preserving and performance on blockchain are two research points in academia and business, but there are still some unresolved issues in both respects. An aggregate signature scheme is a digital signature that supports making signatures on many different messages generated by many different users. Using aggregate signature, the size of the signature could be shortened by compressing multiple signatures into a single signature. In this paper, a new signature scheme for transactions on blockchain based on the aggregate signature was proposed. It was worth noting that elliptic curve discrete logarithm problem and bilinear maps played major roles in our signature scheme. And the security properties of our signature scheme were proved. In our signature scheme, the amount will be hidden especially in the transactions which contain multiple inputs and outputs. Additionally, the size of the signature on transaction is constant regardless of the number of inputs and outputs that the transaction contains, which can improve the performance of signature. Finally, we gave an application scenario for our signature scheme which aims to achieve the transactions of big data on blockchain.

show abstract

“…Different with the existing works in the literature, our paper aims to design and implement a target-based low-overhead approach to monitor critical files effectively by using VMI, which can support both Linux and Windows VMs. Several papers (e.g., [24]- [29]) have also studied related security issues.…”

Section: Related Workmentioning

confidence: 99%

Protecting Critical Files Using Target-Based Virtual Machine Introspection Approach

Zhan

Fang

et al. 2017

IEICE Trans. Inf. & Syst.

Self Cite

View full text Add to dashboard Cite

SUMMARYProtecting critical files in operating system is very important to system security. With the increasing adoption of Virtual Machine Introspection (VMI), designing VMI-based monitoring tools become a preferential choice with promising features, such as isolation, stealthiness and quick recovery from crash. However, these tools inevitably introduce high overhead due to their operation-based characteristic. Specifically, they need to intercept some file operations to monitor critical files once the operations are executed, regardless of whether the files are critical or not. It is known that file operation is high-frequency, so operation-based methods often result in performance degradation seriously. Thus, in this paper we present CFWatcher, a target-based real-time monitoring solution to protect critical files by leveraging VMI techniques. As a target-based scheme, CFWatcher constraints the monitoring into the operations that are accessing target files defined by users. Consequently, the overhead depends on the frequency of target files being accessed instead of the whole filesystem, which dramatically reduces the overhead. To validate our solution, a prototype system is built on Xen with full virtualization, which not only is able to monitor both Linux and Windows virtual machines, but also can take actions to prevent unauthorized access according to predefined policies. Through extensive evaluations, the experimental results demonstrate that the overhead introduced by CFWatcher is acceptable. Especially, the overhead is very low in the case of a few target files.

show abstract

A Lightweight Multicast Authentication Mechanism for Small Scale IoT Applications

Cited by 124 publications

References 25 publications

The Internet of Things: a security point of view

The Internet of Things: a security point of view

Research on a New Signature Scheme on Blockchain

Protecting Critical Files Using Target-Based Virtual Machine Introspection Approach

Contact Info

Product

Resources

About