A Quantum-Resistant and Fast Secure Boot for IoT Devices Using Hash-Based Signatures and SRAM PUFs

Román, Roberto; Baturone, I.

doi:10.1007/978-3-030-94285-4_8

Cited by 3 publications

(2 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore, the main intention of our additional work in this field is not only to remove pre-fabricated secrets but also to make them more difficult to extract through direct physical attacks, even if they are dynamic and unique to begin with. While there are other excellent contributions to the combined application of PUFs and IoT such as [23] or [24] , our main goal is symbiotic security design, which, with the notion of SKMS, now not only utilises PUFs but improves the resilience against traditional PUF threats themselves (modelling, side-channel, fault injection attacks, etc.) through yet another symbiotic relationship rather than simply assuming the PUF unit to be entirely secure on its own.…”

Section: Practical Discussion Of Embedded Identities For Iot and Addi...mentioning

confidence: 99%

Zero knowledge registration of PKI authentication for symbiotic security in FIDO IoT

Bartsch,

Millwood,

Kavun

2023

Journal of Surveillance, Security and Safety

View full text Add to dashboard Cite

In this paper, we critically discourse on the current Fast IDentity Online specification, its underlying security layer and the resulting misconceptions or even weaknesses. We juxtapose the presented view against some of the fundamental and long-standing public key infrastructure problems such as the initial enrolment of identities and their keys (e.g., X.509v3 certificates). We then observe a novel approach of zero-knowledge initial enrolment of resource-constrained Internet of Things devices and investigate how its idea of symbiotic security, i.e., a consistent and consolidated cooperative design which involves all architectural building blocks such as software, hardware, networks, and processes, can contribute to the new Fast IDentity Online Internet of Things specification in the making. Finally, we suggest by way of an outlook or future work how this already modular security-by-design mindset can be further enhanced through a dynamic management system to keep cryptographic keys in volatile memory only. The idea is also based on a symbiotic connection between hardware and software to create a number of added benefits from the security perspective.

show abstract

Section: Practical Discussion Of Embedded Identities For Iot and Addi...mentioning

confidence: 99%

Zero knowledge registration of PKI authentication for symbiotic security in FIDO IoT

Bartsch,

Millwood,

Kavun

2023

Journal of Surveillance, Security and Safety

View full text Add to dashboard Cite

show abstract

“…In this paper, the author proposed a remote authentication method against the tampered IoT device hardware or detection of firmware alteration of the IoT device [20]. They use Root of Trust for Measuring and Reporting (RoTMR) by using a physical unclonable function (PUB) and hash-based signature to confirm ROM data [21]. i) Application Layer: It is the first interactive layer concerning the end user.…”

Section: B Five Layer Architecturementioning

confidence: 99%

Guardians of the iot realm: a comparative analysis of cryptographic security solutions for bolstering iot device networks

Iqbal,

Wajid

2024

Research Journal Of Computer Science And Information Technology

View full text Add to dashboard Cite

The "Internet of Things" (IoT) is an emerging technology that allows electronic devices and sensors to connect with one another over the Internet. The IoT is a network of smart devices such as sensors that are connected through cables or wirelessly. Today, IoT devices are commonly used in medical science, industrial automation, and smart home automation, among other applications. Easy accessibility and the open-source environment of IoT devices are major threats to privacy and security. In this paper, we comprehensively discuss areas of IoT, including architecture, details of IoT layers with respect to security algorithms, protocols, attacks, and their mitigation. The primary purpose of this research is to provide an efficient and cryptographically proven algorithm scheme with appropriate hardware to improve IoT device network security. The presented research enhances the network security of IoT devices by presenting an algorithmic framework fortified by cryptography and supported by the finest hardware options. After evaluating several cryptographic algorithms and hardware options, a more secure solution for IoT infrastructure is proposed. The article in particular, proposes a detailed strategy that addresses security at every level of the IoT system. This research is an important step towards ensuring the integrity and security of IoT devices in a networked environment, with the primary goal of increasing the protection of sensitive data and interactions.

show abstract

A survey on low-cost development boards for applying cryptography in IoT systems

Caraveo-Cacep¹,

Vázquez-Medina²,

Zavala³

2023

Internet of Things

View full text Add to dashboard Cite

A Quantum-Resistant and Fast Secure Boot for IoT Devices Using Hash-Based Signatures and SRAM PUFs

Cited by 3 publications

References 8 publications

Zero knowledge registration of PKI authentication for symbiotic security in FIDO IoT

Zero knowledge registration of PKI authentication for symbiotic security in FIDO IoT

Guardians of the iot realm: a comparative analysis of cryptographic security solutions for bolstering iot device networks

A survey on low-cost development boards for applying cryptography in IoT systems

Contact Info

Product

Resources

About