A back-end offload architecture for security of resource-constrained networks

Han, Jiyong; Kim, Dae-Young

doi:10.1109/nca.2016.7778645

Cited by 3 publications

(4 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The most efficient alternatives [ 21 , 22 , 23 , 24 , 25 , 26 , 27 , 28 ], are based on delegating the whole DTLS handshake on a resource-richer trusted entity and then, leveraging the session resumption feature provided by DTLS in order to convey the session negotiated by the resource-rich entity to the IoT device.…”

Section: Affordable Dtls For Iiot Devicesmentioning

confidence: 99%

“…Following the same approach, ref. [ 27 ] introduces an architecture based on back-end offloads (BeO nodes), which are powerful devices belonging to the IoT network, where security-related operations are delegated. The difference with respect to previous proposals is that in this case, both the DTLS handshake and the DTLS record are delegated to the BeO nodes.…”

Section: Affordable Dtls For Iiot Devicesmentioning

confidence: 99%

“…With the aim of reducing memory footprint, many proposals [ 21 , 22 , 23 , 24 , 25 , 26 , 27 , 28 , 30 , 31 , 32 , 33 , 34 ] focus on removing the most complex DTLS tasks from the DTLS code to be installed in the IoT devices. These tasks are mainly related to the DTLS handshake, which implements a much more complex state machine in comparison with the DTLS record protocol.…”

Section: Affordable Dtls For Iiot Devicesmentioning

confidence: 99%

“… Comparison of pros & cons and different application scenarios of the analyzed approaches [ 21 , 22 , 23 , 24 , 26 , 27 , 28 , 30 , 31 , 32 , 33 , 34 , 35 , 36 , 39 , 40 , 41 , 42 , 44 , 63 , 64 , 65 , 66 , 67 , 68 , 69 , 70 , 92 , 93 , 94 , 95 , 96 , 97 , 98 , 99 , 100 , 101 ]. …”

Section: Figurementioning

confidence: 99%

See 3 more Smart Citations

Revisiting the Feasibility of Public Key Cryptography in Light of IIoT Communications

Astorga

Barceló

Urbieta

et al. 2022

Sensors

View full text Add to dashboard Cite

Digital certificates are regarded as the most secure and scalable way of implementing authentication services in the Internet today. They are used by most popular security protocols, including Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS). The lifecycle management of digital certificates relies on centralized Certification Authority (CA)-based Public Key Infrastructures (PKIs). However, the implementation of PKIs and certificate lifecycle management procedures in Industrial Internet of Things (IIoT) environments presents some challenges, mainly due to the high resource consumption that they imply and the lack of trust in the centralized CAs. This paper identifies and describes the main challenges to implement certificate-based public key cryptography in IIoT environments and it surveys the alternative approaches proposed so far in the literature to address these challenges. Most proposals rely on the introduction of a Trusted Third Party to aid the IIoT devices in tasks that exceed their capacity. The proposed alternatives are complementary and their application depends on the specific challenge to solve, the application scenario, and the capacities of the involved IIoT devices. This paper revisits all these alternatives in light of industrial communication models, identifying their strengths and weaknesses, and providing an in-depth comparative analysis.

show abstract

Section: Affordable Dtls For Iiot Devicesmentioning

confidence: 99%

Section: Affordable Dtls For Iiot Devicesmentioning

confidence: 99%

Section: Affordable Dtls For Iiot Devicesmentioning

confidence: 99%

Section: Figurementioning

confidence: 99%

See 2 more Smart Citations

Revisiting the Feasibility of Public Key Cryptography in Light of IIoT Communications

Astorga

Barceló

Urbieta

et al. 2022

Sensors

View full text Add to dashboard Cite

show abstract

How to Survive Identity Management in the Industry 4.0 Era

et al. 2021

View full text Add to dashboard Cite

Industry 4.0 heavily builds on massive deployment of Industrial Internet of Things (IIoT) devices to monitor every aspect of the manufacturing processes. Since the data gathered by these devices impact the output of critical processes, identity management and communications security are critical aspects, which commonly rely on the deployment of X.509 certificates. Nevertheless, the provisioning and management of individual certificates for a high number of IIoT devices involves important challenges. In this paper, we present a solution to improve the management of digital certificates in IIoT environments, which relies on partially delegating the certificate enrolment process to an edge server. However, in order to preserve end-to-end security, private keys are never delegated. Additionally, for the protection of the communications between the edge server and the IIoT devices, an approach based on Identity Based Cryptography is deployed. The proposed solution considers also the issuance of very short-lived certificates, which reduces the risk of using expired or compromised certificates, and avoids the necessity of implementing performance expensive protocols such as OCSP. The proposed solution has been successfully tested as an efficient identity management solution for IIoT environments in a real industrial environment.

show abstract

6LoWPAN multi-layered security protocol based on IEEE 802.15.4 security features

Glissa

Meddeb

2017

2017 13th International Wireless Communications and Mobile Computing Conference (IWCMC)

View full text Add to dashboard Cite

A back-end offload architecture for security of resource-constrained networks

Cited by 3 publications

References 10 publications

Revisiting the Feasibility of Public Key Cryptography in Light of IIoT Communications

Revisiting the Feasibility of Public Key Cryptography in Light of IIoT Communications

How to Survive Identity Management in the Industry 4.0 Era

6LoWPAN multi-layered security protocol based on IEEE 802.15.4 security features

Contact Info

Product

Resources

About