Federated End-to-End Authentication for the Constrained Internet of Things Using IBC and ECC

Markmann, Tobias; Schmidt, Thomas C.; Wählisch, Matthias

doi:10.1145/2829988.2790021

Cited by 19 publications

(4 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The research introduced Identity-based Cryptography (IBC) and Elliptical Curve Cryptography (ECC) for end-to-end authentication. Asymmetric cryptography for end-to-end encryption (Markmann, Schmidt & Wählisch, 2015). Integrating Ciphering and Physical Authentication schemes is suggested for additional security, and 3rd-factor authentication Delegation-based IoT authentication is proposed in (Borgohain et al, 2015) to resolve privacy concerns in IoT.…”

Section: Related Workmentioning

confidence: 99%

VisTAS: blockchain-based visible and trusted remote authentication system

Ali

Ahmed

Khan

et al. 2021

PeerJ Computer Science

View full text Add to dashboard Cite

The information security domain focuses on security needs at all levels in a computing environment in either the Internet of Things, Cloud Computing, Cloud of Things, or any other implementation. Data, devices, services, or applications and communication are required to be protected and provided by information security shields at all levels and in all working states. Remote authentication is required to perform different administrative operations in an information system, and Administrators have full access to the system and may pose insider threats. Superusers and administrators are the most trusted persons in an organisation. “Trust but verify” is an approach to have an eye on the superusers and administrators. Distributed ledger technology (Blockchain-based data storage) is an immutable data storage scheme and provides a built-in facility to share statistics among peers. Distributed ledgers are proposed to provide visible security and non-repudiation, which securely records administrators’ authentications requests. The presence of security, privacy, and accountability measures establish trust among its stakeholders. Securing information in an electronic data processing system is challenging, i.e., providing services and access control for the resources to only legitimate users. Authentication plays a vital role in systems’ security; therefore, authentication and identity management are the key subjects to provide information security services. The leading cause of information security breaches is the failure of identity management/authentication systems and insider threats. In this regard, visible security measures have more deterrence than other schemes. In this paper, an authentication scheme, “VisTAS,” has been introduced, which provides visible security and trusted authentication services to the tenants and keeps the records in the blockchain.

show abstract

Section: Related Workmentioning

confidence: 99%

VisTAS: blockchain-based visible and trusted remote authentication system

Ali

Ahmed

Khan

et al. 2021

PeerJ Computer Science

View full text Add to dashboard Cite

show abstract

“…Although desirable, mutual authentication comes at a cost in terms of overhead and computational complexity, which generally result in higher energy consumption. For this reason, much effort has been devoted to the design of lightweight and effective algorithms, such as [71][72][73][74][75]. For example, in [74] the authors exploits CoAP to design a mutual payload-based authentication scheme which replaces the native DTLS security framework with a lowercomplexity authentication mechanism.…”

Section: A Iot Device Identification and Authenticationmentioning

confidence: 99%

Securing the Internet of Things in the Age of Machine Learning and Software-Defined Networking

Restuccia

D’Oro

Melodia

2018

IEEE Internet Things J.

224

View full text Add to dashboard Cite

The Internet of Things (IoT) realizes a vision where billions of interconnected devices are deployed just about everywhere, from inside our bodies to the most remote areas of the globe. As the IoT will soon pervade every aspect of our lives and will be accessible from anywhere, addressing critical IoT security threats is now more important than ever. Traditional approaches where security is applied as an afterthought and as a "patch" against known attacks are insufficient. Indeed, nextgeneration IoT challenges will require a new secure-by-design vision, where threats are addressed proactively and IoT devices learn to dynamically adapt to different threats. To this end, machine learning and software-defined networking will be key to provide both reconfigurability and intelligence to the IoT devices. In this paper, we first provide a taxonomy and survey the state of the art in IoT security research, and offer a roadmap of concrete research challenges related to the application of machine learning and software-defined networking to address existing and nextgeneration IoT security threats.

show abstract

“…Table 1 lists possible schemes for IoT devices to identify smartphones. First, after verifying the identities of smartphone users, the Internet server can generate credentials based on the identification information of smartphones [ 20 ]. Therefore, an IoT device can restrict access so only the smartphone with the specified identification information can use associated credentials to connect to the device.…”

Section: The Generalized Requirementsmentioning

confidence: 99%

Toward a Robust Security Paradigm for Bluetooth Low Energy-Based Smart Objects in the Internet-of-Things

Cha

Yeh

Chen

2017

Sensors

View full text Add to dashboard Cite

Bluetooth Low Energy (BLE) has emerged as one of the most promising technologies to enable the Internet-of-Things (IoT) paradigm. In BLE-based IoT applications, e.g., wearables-oriented service applications, the Bluetooth MAC addresses of devices will be swapped for device pairings. The random address technique is adopted to prevent malicious users from tracking the victim’s devices with stationary Bluetooth MAC addresses and accordingly the device privacy can be preserved. However, there exists a tradeoff between privacy and security in the random address technique. That is, when device pairing is launched and one device cannot actually identify another one with addresses, it provides an opportunity for malicious users to break the system security via impersonation attacks. Hence, using random addresses may lead to higher security risks. In this study, we point out the potential risk of using random address technique and then present critical security requirements for BLE-based IoT applications. To fulfill the claimed requirements, we present a privacy-aware mechanism, which is based on elliptic curve cryptography, for secure communication and access-control among BLE-based IoT objects. Moreover, to ensure the security of smartphone application associated with BLE-based IoT objects, we construct a Smart Contract-based Investigation Report Management framework (SCIRM) which enables smartphone application users to obtain security inspection reports of BLE-based applications of interest with smart contracts.

show abstract

Federated End-to-End Authentication for the Constrained Internet of Things Using IBC and ECC

Cited by 19 publications

References 5 publications

VisTAS: blockchain-based visible and trusted remote authentication system

VisTAS: blockchain-based visible and trusted remote authentication system

Securing the Internet of Things in the Age of Machine Learning and Software-Defined Networking

Toward a Robust Security Paradigm for Bluetooth Low Energy-Based Smart Objects in the Internet-of-Things

Contact Info

Product

Resources

About