Key Management Protocol with Implicit Certificates for IoT systems

Sciancalepore, Savio; Capossele, Angelo; Piro, Giuseppe; Boggia, Gennaro; Bianchi, Giuseppe

doi:10.1145/2753476.2753477

Cited by 72 publications

(53 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The approach we propose in this paper improves the ones reported in this section under several aspects. First of all, it is more general because it does not assume any specific network topology such as that in the work of Hummen et al nor the use of uncommon certificate formats and schemes like in other works . Indeed, although in this work we propose a new type of certificate to further improve the performances of the proposed solution, its use is not mandatory, and this enables an easy interoperability of the proposed architecture with already deployed systems.…”

Section: Related Workmentioning

confidence: 98%

“…The use of elliptic curve cryptography (ECC) public keys, described in the work of Guerrero et al, leads to X.509 certificates which are nine times smaller than their RSA counterparts, and it is for this reason that they are extensively used in emerging security protocols targeted to constrained devices such as HIP DEX . With implicit certificates, on the other hand it is possible to obtain certificates that are up to 57 times smaller than standard certificates, and whose verification requires lightweight operations . In the work of Sciancalepore et al, implicit certificates are used to exchange the public coefficients of the widely adopted ECDH key exchange protocol reducing this way up to 86.7% the airtime consumption if compared with traditional approaches.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

PKIoT: A public key infrastructure for the Internet of Things

Marino

Moiso

Petracca

2019

Trans Emerging Tel Tech

View full text Add to dashboard Cite

Internet of Things (IoT) nodes participating in the implementation of next‐generation IoT applications will need standard methods to authenticate each other and secure their communications. However, the use of certificates and public key infrastructure (PKI) technologies, widely employed in the Internet, is not straightforward in this context because of the limitations of the involved entities. This paper presents the public key infrastructure for the Internet of Things (PKIoT) architecture, a solution which aims at enabling certificate‐based authentication in the forthcoming IoT scenarios by allowing the flexible outsourcing of the most demanding security‐related tasks and by introducing a new type of compact certificate. This paper also highlights the role that this architecture can play in the context of the oneM2 M security framework in enabling standard secure machine‐2‐machine interactions. In conclusion, this paper reports the results of the conducted experiments, which show the effectiveness of the proposed approach in reducing the execution time and the energy consumption of certificate‐based session establishment for Datagram Transport Layer Security up to 78% and 89% respectively, fostering this way standard and secure IoT transactions.

show abstract

Section: Related Workmentioning

confidence: 98%

Section: Related Workmentioning

confidence: 99%

PKIoT: A public key infrastructure for the Internet of Things

Marino

Moiso

Petracca

2019

Trans Emerging Tel Tech

View full text Add to dashboard Cite

show abstract

“…There is a desire need to propose protocols and management framework for handling privacy in IoT. Latest attempts to address the issue can be found in literature such as [16], [17], [18].…”

Section: A Privacy In Iotmentioning

confidence: 99%

Software Defined Security Service Provisioning Framework for Internet of Things

Khan¹,

Hameed²

2016

ijacsa

View full text Add to dashboard Cite

Abstract-Programmable management framework have paved the way for managing devices in the network. Lately, emerging paradigm of Software Defined Networking (SDN) have revolutionized programmable networks. Designers of networking applications i.e. Internet of things (IoT) have started investigating potentials of SDN paradigm in improving network management. IoT envision interconnecting various embedded devices surrounding our environment with IP to enable internet connectivity. Unlike traditional network architectures, IoT are characterized by constraint in resources and heterogeneous inter connectivity of wireless and wired medium. Therefore, unique challenges for managing IoT are raised which are discussed in this paper. Ubiquity of IoT have raised unique security challenges in IoT which is one of the aspect of management framework for IoT. In this paper, security threats and requirements are summarized in IoT extracted from the state of the art efforts in investigating security challenges of IoT. Also, SDN based security service provisioning framework for IoT is proposed.

show abstract

“…Indeed, we cannot pre-share every time a common secret key in each device because the number of connected devices composing the network is very important. If the key pre-distribution is not considered, most of the existing schemes require expensive cryptographic operations to establish a session key between entities that do not share common credentials a priori such as ECDH-based approaches [26]. Indeed, Sciancalepore et al [26] propose a key agreement protocol with implicit certificates in the context of IoT.…”

Section: Introductionmentioning

confidence: 99%

“…If the key pre-distribution is not considered, most of the existing schemes require expensive cryptographic operations to establish a session key between entities that do not share common credentials a priori such as ECDH-based approaches [26]. Indeed, Sciancalepore et al [26] propose a key agreement protocol with implicit certificates in the context of IoT. Their approach requires four costly operations in order to negotiate a common key between two parties.…”

Section: Introductionmentioning

confidence: 99%

Authenticated Key Agreement Mediated by a Proxy Re-encryptor for the Internet of Things

Nguyen

Oualha

Laurent

2016

Computer Security – ESORICS 2016

View full text Add to dashboard Cite

Abstract. The Internet of Things (IoT) is composed of a wide range of heterogeneous network devices that communicate with their users and the surrounding devices. The secure communications between these devices are still essential even with little or no previous knowledge about each other and regardless of their resource capabilities. This particular context requires appropriate security mechanisms which should be wellsuited for the heterogeneous nature of IoT devices, without pre-sharing a secret key for each secure connection. In this work, we first propose a novel symmetric cipher proxy re-encryption scheme. Such a primitive allows a user to delegate her decryption rights to another with the help of a semi-trusted proxy, but without giving this latter any information on the transmitted messages and the user's secret keys. We then propose AKAPR, an Authenticated Key Agreement mediated by a Proxy Re-encryptor for IoT. The mechanism permits any two highly resource-constrained devices to establish a secure communication with no prior trust relationship. AKAPR is built upon our proposed proxy re-encryption scheme. It has been proved by ProVerif to provide mutual authentication for participants while preserving the secrecy of the generated session key. In addition, the scheme benefits from the lightness of our proxy re-encryption algorithm as it requires no expensive cryptographic operations such as pairing or modular exponentiation.

show abstract

Key Management Protocol with Implicit Certificates for IoT systems

Cited by 72 publications

References 12 publications

PKIoT: A public key infrastructure for the Internet of Things

PKIoT: A public key infrastructure for the Internet of Things

Software Defined Security Service Provisioning Framework for Internet of Things

Authenticated Key Agreement Mediated by a Proxy Re-encryptor for the Internet of Things

Contact Info

Product

Resources

About