Lightweight collaborative key establishment scheme for the Internet of Things

Saied, Yosra Ben; Olivereau, Alexis; Zeghlache, Djamal; Laurent, Maryline

doi:10.1016/j.comnet.2014.02.001

Cited by 81 publications

(34 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…They exploit a common set of less constrained nodes as the proxies for supporting both the initiator and responder. Similar to the proxybased solution in [7], this approach is not fitting either with the actual scenarios, due to the requirement of establishing secure links with a single set of proxies. This shortcoming is resolved in our previous work [28], which explains a collaborative HIP solution for high constrained devices with theoretical energy estimations.…”

Section: Other Hip Variantsmentioning

confidence: 99%

“…Later on, the key can be reused until there is a necessity for rekeying. Therefore, a lengthy key establishment process, such as few seconds, is still acceptable as long as it occurs once in a while during the entire operational mode [7].…”

Section: Introductionmentioning

confidence: 99%

“…Accordingly, a constrained device can delegate its heavy cryptographic load to less constrained nodes in the neighbourhood exploiting the spatial heterogeneity of IoT environment. Moreover, [7] shows how to integrate the collaborative approach with TLS handshake and IKE key establishment protocols. While initiating a secure E2E connection between two unknown nodes in distinctive networks, they exploit one set of intermediary nodes as proxies in order to support the key establishment process.…”

Section: Background and Related Workmentioning

confidence: 99%

See 2 more Smart Citations

CHIP: Collaborative Host Identity Protocol with Efficient Key Establishment for Constrained Devices in Internet of Things

Porambage

Braeken

Kumar

et al. 2017

Wireless Pers Commun

View full text Add to dashboard Cite

The Internet of Things (IoT) is the next evolutionary paradigm of networking technologies that interconnects almost all the smart objects and intelligent sensors related to human activities, machineries, and environment. IoT technologies and Internet Protocol connectivity enable wide ranges of network devices to communicate irrespective of their resource capabilities and local networks. In order to provide seamless connectivity and interoperability, it is notable to maintain secure end-to-end (E2E) communication links in Part of this work has been published in IEEE Globecom, 2015 as 'Efficient Key Establishment for Constrained IoT Devices with Collaborative HIP-based Approach'. The proxy based key establishment component is taken from the paper which is entitled 'Proxy-based End-to-End Key Establishment Protocol for the Internet of Things' and presented at IEEE ICC Workshop on Security and Privacy for Internet of Things and CyberPhysical Systems, 2015. The extensions of these works include the derivation of entire CHIP protocol, implementation it on Waspmote sensors, the measurement of energy costs, and the discussion of performance and security features in detail.

show abstract

Section: Other Hip Variantsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Background and Related Workmentioning

confidence: 99%

See 1 more Smart Citation

CHIP: Collaborative Host Identity Protocol with Efficient Key Establishment for Constrained Devices in Internet of Things

Porambage

Braeken

Kumar

et al. 2017

Wireless Pers Commun

View full text Add to dashboard Cite

show abstract

“…However, the gateway is able to launch a manin-the-middle attack and to establish a common Diffie-Hellman key with each party without anyone noticing. Saied et al [25] propose a lightweight collaborative key agreement based on Diffie-Hellman (DH) key establishment. Their idea is to delegate the heavyweight cryptographic calculation of DH values to the resource-unconstrained trusted proxies in neighborhood.…”

Section: Introductionmentioning

confidence: 99%

Authenticated Key Agreement Mediated by a Proxy Re-encryptor for the Internet of Things

Nguyen

Oualha

Laurent

2016

Computer Security – ESORICS 2016

Self Cite

View full text Add to dashboard Cite

Abstract. The Internet of Things (IoT) is composed of a wide range of heterogeneous network devices that communicate with their users and the surrounding devices. The secure communications between these devices are still essential even with little or no previous knowledge about each other and regardless of their resource capabilities. This particular context requires appropriate security mechanisms which should be wellsuited for the heterogeneous nature of IoT devices, without pre-sharing a secret key for each secure connection. In this work, we first propose a novel symmetric cipher proxy re-encryption scheme. Such a primitive allows a user to delegate her decryption rights to another with the help of a semi-trusted proxy, but without giving this latter any information on the transmitted messages and the user's secret keys. We then propose AKAPR, an Authenticated Key Agreement mediated by a Proxy Re-encryptor for IoT. The mechanism permits any two highly resource-constrained devices to establish a secure communication with no prior trust relationship. AKAPR is built upon our proposed proxy re-encryption scheme. It has been proved by ProVerif to provide mutual authentication for participants while preserving the secrecy of the generated session key. In addition, the scheme benefits from the lightness of our proxy re-encryption algorithm as it requires no expensive cryptographic operations such as pairing or modular exponentiation.

show abstract

“…[6] introduces the problem of securing the most constrained IoT nodes from an energy point of view. Establishment of cryptographic material between communicating parties is the building block of any other security service; [7] gives a thorough introduction to the authenticated key establishment problem for IoT and categorizes the possible solutions. Several lightweight key establishment proposal exist.…”

Section: A Related Workmentioning

confidence: 99%

Nonce-based authenticated key establishment over OAuth 2.0 IoT proof-of-possession architecture

Navas¹,

Lagos²,

Toutain³

et al. 2016

2016 IEEE 3rd World Forum on Internet of Things (WF-IoT)

View full text Add to dashboard Cite

To cite this version:Renzo Efrain Navas, Manuel Lagos, Laurent Toutain, Kumaran Vijayasankar. Nonce-based authenticated key establishment over OAuth 2. Abstract-The Internet of Things will scale to billions of devices in the next coming years. A secure communication framework is needed to interconnect all these objects, by taking into account their intrinsic constrained in terms of energy, cpu and memory; Several proposals relying on adapting existing well-known and standardized security solutions exist, but we believe there is still a gap for most-constrained nodes to provide fine-grained authorization and secure establishment of fresh cryptographic keys. We propose a mechanism that runs on top of the OAuth Authorization architecture and provides the bootstrapping of fresh authenticated symmetric cryptographic material between previously unknown parties using a noncebased protocol. We set up an energy measurement platform to evaluate our proposal and compare it with existing work.

show abstract

Lightweight collaborative key establishment scheme for the Internet of Things

Cited by 81 publications

References 19 publications

CHIP: Collaborative Host Identity Protocol with Efficient Key Establishment for Constrained Devices in Internet of Things

CHIP: Collaborative Host Identity Protocol with Efficient Key Establishment for Constrained Devices in Internet of Things

Authenticated Key Agreement Mediated by a Proxy Re-encryptor for the Internet of Things

Nonce-based authenticated key establishment over OAuth 2.0 IoT proof-of-possession architecture

Contact Info

Product

Resources

About