TinyIKE: Lightweight IKEv2 for Internet of Things

There is unanimous consensus that cyber security in the Internet of Things (IoT) is necessary. In cyber security, key establishment is one of the toughest problems. It is even more challenging in resource-constrained but Internet-connected IoT devices that use low-power wireless communication. A num...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE internet of things journal Jg. 6; H. 1; S. 856 - 866
Hauptverfasser: Raza, Shahid, Mar Magnusson, Runar
Format: Journal Article
Sprache:Englisch
Veröffentlicht: Piscataway IEEE 01.02.2019
The Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Schlagworte:
Contiki OS
Contiki ossa
Cryptography
Curves
Cybersecurity
Feasibility studies
IEEE 802.15 Standard
IEEE 802.15 Standards
IEEE 802.15.4
IEEE Standards
IKEv2
Internet Key Exchange
Internet Key Exchange version 2 (IKEv2)
Internet of Things
Internet of Things (IoT)
Internet protocols
IoT
IP networks
Key Management
Lightweight
Management
Network protocols
Network security
Protocol (computers)
Protocols
Public key cryptography
Security
Weight reduction
Wireless communications
Wireless telecommunication systems
ISSN:2327-4662, 2327-4662
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:There is unanimous consensus that cyber security in the Internet of Things (IoT) is necessary. In cyber security, key establishment is one of the toughest problems. It is even more challenging in resource-constrained but Internet-connected IoT devices that use low-power wireless communication. A number of IoT communication protocols define cryptographic mechanisms for confidentiality and integrity services but do not specify key management. For example, IEEE 802.15.4, RPL, and object security all rely on external key management protocols. Due to the lack of automatic key management support, IoT devices either end up using preshared keys or no security at all. In this paper, we overcome these challenges and present TinyIKE, a lightweight adaptation of Internet Key Exchange version 2 (IKEv2) for the IoT. Using TinyIKE, we solve the key establishment problem for multiple IoT protocols using a single IKEv2-based solution. We implement TinyIKE for resource-constrained IoT devices that run the Contiki OS. The TinyIKE implementation supports full certificate-based IKEv2 that uses elliptic curve cryptography. In order to ensure the feasibility of TinyIKE in the IoT, we perform an extensive evaluation of TinyIKE using a setup consisting of real IoT hardware.
Bibliographie:ObjectType-Article-1
SourceType-Scholarly Journals-1
ObjectType-Feature-2
content type line 14
ISSN:2327-4662
2327-4662
DOI:10.1109/JIOT.2018.2862942