research-article

Adaptable End-To-End Security For Mobile IoT Sensing Applications

Authors:

Edmundo MonteiroAuthors Info & Claims

SafeThings'17: Proceedings of the 1st ACM Workshop on the Internet of Safe Things

Pages 20 - 25

https://doi.org/10.1145/3137003.3137013

Published: 05 November 2017 Publication History

Abstract

We address the limitations the current solutions for end-to-end security in the context of IoT (Internet of Things) applications. Such limitations are related to a few important aspects that may, in practice, be crucial to support most IoT applications, particularly the lack of support of mobile sensing devices, the inadequacy of many existing sensing devices while supporting authentication and key negotiation with asymmetric cryptography, and the inexistence of more flexible solutions for enabling security at the application layer, as well as the incompatibility of end-to-end security with the usage of proxies. We propose and evaluate experimentally new mechanisms at the transport and application layers which can, we believe, complement the existing approaches. Our experimental evaluation of the proposed mechanisms allows us to verify that effective and flexible end-to-end security is indeed feasible in many usage scenarios, thus being effective alternatives to complement current approaches to IoT end-to-end security.

References

[1]

Tim Dierks. 2008. The transport layer security (TLS) protocol version 1.2. (2008).

[2]

D. Garcia. 2016. Application Layer Security for CoAP using the (D)TLS Record Layer. (2016).

[3]

Jorge Granjal and Edmundo Monteiro. 2016. End-to-end transparent transport-layer security for Internet-integrated mobile sensing devices. In IFIP Networking Conference (IFIP Networking) and Workshops, 2016. IEEE, 306--314.

[4]

Jorge Granjal, Edmundo Monteiro, and Jorge Sá Silva. 2013. Application-layer security for the WoT: extending CoAP to support end-to-end message security for internet-integrated sensing applications. In International Conference on Wired/Wireless Internet Communication. Springer, 140--153.

[5]

Jorge Granjal, Edmundo Monteiro, and Jorge Sá Silva. 2015. Security for the internet of things: a survey of existing protocols and open research issues. IEEE Communications Surveys & Tutorials 17, 3 (2015), 1294--1312.

[6]

Vipul Gupta, Michael Wurm, Yu Zhu, Matthew Millard, Stephen Fung, Nils Gura, Hans Eberle, and Sheueling Chang Shantz. 2005. Sizzle: A standards-based end-to-end security architecture for the embedded internet. Pervasive and Mobile Computing 1, 4 (2005), 425--445.

Digital Library

[7]

IEEE. 2006. Wireless Medium Access Control (MAC) and Physical Layer (PHY) Specifications for Low-Rate Wireless Personal Area Networks (WPANs). (2006).

[8]

IETF. 2004. IPv6 over Low power WPAN (6lowpan). (2004). https://datatracker.ietf.org/wg/6lowpan/charter

[9]

IETF. 2007. Routing Over Low power and Lossy networks (roll). (2007). https://datatracker.ietf.org/wg/roll/charter

[10]

Vivek Kapoor, Vivek Sonny Abraham, and Ramesh Singh. 2008. Elliptic curve cryptography. Ubiquity 2008, May (2008), 7.

Digital Library

[11]

LibCoAP. 2017. LibCoAP. (2017). http://sourceforge.net/projects/libcoap

[12]

An Liu and Peng Ning. 2008. TinyECC: A configurable library for elliptic curve cryptography in wireless sensor networks. In Proceedings of the 7th international conference on Information processing in sensor networks. IEEE Computer Society, 245--256.

Digital Library

[13]

David McGrew and D Bailey. 2012. AES-CCM Cipher Suites for Transport Layer Security (TLS). Technical Report.

[14]

M. R. Palattella, N. Accettura, X. Vilajosana, T. Watteyne, L. A. Grieco, G. Boggia, and M. Dohler. 2013. Standardized Protocol Stack for the Internet of (Important) Things. IEEE Communications Surveys Tutorials 15, 3 (Third 2013), 1389--1406. https://doi.org/10.1109/SURV.2012.111412.00158

[15]

Shahid Raza, Daniele Trabalza, and Thiemo Voigt. 2012. 6LoWPAN compressed DTLS for CoAP. In Distributed Computing in Sensor Systems (DCOSS), 2012 IEEE 8th International Conference on. IEEE, 287--289.

Digital Library

[16]

Eric Rescorla and Nagendra Modadugu. 2012. Datagram transport layer security version 1.2. (2012).

[17]

Zach Shelby. 2012. Constrained RESTful environments (CoRE) link format. (2012).

[18]

Zach Shelby, Samita Chakrabarti, E Nordmark, and C Bormann. 2012. Neighbor discovery optimization for IPv6 over low-power wireless personal area networks (6LoWPANs). Technical Report.

[19]

Memsic Technology. 2010. TelosB Mote Platform. (2010). http://tinyos.stanford.edu/tinyos-wiki/index.php/TelosB

[20]

TinyOS. 2017. TinyOS Operating System. (2017). https://github.com/tinyos/tinyos-main

[21]

Tim Winter. 2012. RPL: IPv6 routing protocol for low-power and lossy networks. (2012).

Cited By

Fan ZZeng Yzhu XMa J(2020)A group key agreement based encrypted traffic detection scheme for Internet of ThingsProceedings of the 1st ACM International Workshop on Security and Safety for Intelligent Cyber-Physical Systems10.1145/3417312.3432093(19-26)Online publication date: 16-Nov-2020
https://dl.acm.org/doi/10.1145/3417312.3432093

Index Terms

Adaptable End-To-End Security For Mobile IoT Sensing Applications
1. Computer systems organization
  1. Embedded and cyber-physical systems
    1. Sensor networks
2. Security and privacy
  1. Network security
    1. Mobile and wireless security
    2. Security protocols

Recommendations

Secure IoT framework and 2D architecture for End-To-End security

In this paper, we proposed an secure IoT framework to ensure an End-To-End security from an IoT application to IoT devices. The proposed IoT framework consists of the IoT application, an IoT broker and the IoT devices. The IoT devices can be deployed ...
On the Effectiveness of End-to-End Security for Internet-Integrated Sensing Applications
GREENCOM '12: Proceedings of the 2012 IEEE International Conference on Green Computing and Communications

While realizing that most of the applications currently envisioned for the Internet of Things (IoT) are critical in respect to security, we may expect that such sensing applications may benefit from the availability of end-to-end IPv6 communications ...
About Scalability and End-to-End Security in Internet of Things: An Overview
NISS '24: Proceedings of the 7th International Conference on Networking, Intelligent Systems and Security

The Internet of Things (IoT) is a continually expanding network of advanced nodes that are interconnected through the Internet, with the capacity to transmit and collect data over a network without claiming direct human interaction. As IoT continues to ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

SafeThings'17: Proceedings of the 1st ACM Workshop on the Internet of Safe Things

November 2017

75 pages

ISBN:9781450355452

DOI:10.1145/3137003

Editor:
Rasit Eskicioglu
University of Manitoba, Canada

Copyright © 2017 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 05 November 2017

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article
Research
Refereed limited

Conference

SenSys '17

Sponsor:

SenSys '17: The 15th ACM Conference on Embedded Network Sensor Systems

November 5, 2017

Delft, Netherlands

Upcoming Conference

SenSys '24

Sponsor:
sigbed
sigbed
sigbed
sigbed
sigbed

The 22nd ACM Conference on Embedded Networked Sensor Systems

November 4 - 7, 2024

Hangzhou , China

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
152
Total Downloads

Downloads (Last 12 months)9
Downloads (Last 6 weeks)1

Reflects downloads up to 11 Aug 2024

Other Metrics

View Author Metrics

Citations

Cited By

Fan ZZeng Yzhu XMa J(2020)A group key agreement based encrypted traffic detection scheme for Internet of ThingsProceedings of the 1st ACM International Workshop on Security and Safety for Intelligent Cyber-Physical Systems10.1145/3417312.3432093(19-26)Online publication date: 16-Nov-2020
https://dl.acm.org/doi/10.1145/3417312.3432093

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents