General Security Considerations of LoRaWAN Version 1.1 Infrastructures

Mundt, Thomas; Gladisch, Alexander; Rietschel, Simon; Bauer, Johann; Goltz, Johannes; Wiedenmann, Simeon

doi:10.1145/3265863.3265882

Cited by 6 publications

(2 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, there is no reference to know the current extent of usage of the LoRa devices that comply with LoRaWAN v.1.1 and their network deployment scenarios. It remains a faulty key-management issue for LoRaWAN v.1.0 end nodes until the hardware is not replaced completely [35].…”

Section: B Lorawan and Unique Security Threatsmentioning

confidence: 99%

Security Issues of Low Power Wide Area Networks in the Context of LoRa Networks

Basu¹,

Gu²,

Mohapatra³

2020

Preprint

View full text Add to dashboard Cite

Low Power Wide Area Networks (LPWAN) have been used to support low cost and mobile bi-directional communications for the Internet of Things (IoT), smart city and a wide range of industrial applications. A primary security concern of LPWAN technology is the attacks that block legitimate communication between nodes resulting in scenarios like loss of packets, delayed packet arrival, and skewed packet reaching the reporting gateway. LoRa (Long Range) is a promising wireless radio access technology that supports long-range communication at low data rates and low power consumption. LoRa is considered as one of the ideal candidates for building LPWANs. We use LoRa as a reference technology to review the IoT security threats on the air and the applicability of different countermeasures that have been adopted so far. LoRa extends the transmission range by controlling the spreading factor (SF) and in turn, the datarate. LoRa nodes that are close to the gateway use a small SF than the nodes which are far away. But it also implies long inthe-air transmission time, which makes the transmitted packets vulnerable to different kinds of malicious attacks, especially in the physical and the link layer. Therefore, it is not possible to enforce a fixed set of rules for all LoRa nodes since they have different levels of vulnerabilities. Our survey reveals that there is an urgent need for secure and uninterrupted communication between an end-device and the gateway, especially when the threat models are unknown in advance. We explore the traditional countermeasures and find that most of them are ineffective now, such as frequency hopping and spread spectrum methods. In order to adapt to new threats, the emerging countermeasures using game-theoretic approaches and reinforcement machine learning methods can effectively identify threats and dynamically choose the corresponding actions to resist threats, thereby making secured and reliable communications.

show abstract

Section: B Lorawan and Unique Security Threatsmentioning

confidence: 99%

Security Issues of Low Power Wide Area Networks in the Context of LoRa Networks

Basu¹,

Gu²,

Mohapatra³

2020

Preprint

View full text Add to dashboard Cite

show abstract

“…In LPWANs, especially for LoRa, security is a major concern. In the literature, several works have exposed the susceptibility of LoRa to attacks, in the phases of key management, network connection, and communications [3][4][5][6]. Although many security improvements have been added to the architecture of LoRa in more recent specifications, much work still needs to be done in this regard.…”

Section: Introductionmentioning

confidence: 99%

Enhancing Key Management in LoRaWAN with Permissioned Blockchain

Ribeiro

Filho

Ramos

et al. 2020

Sensors

View full text Add to dashboard Cite

Low-Power Wide-Area Network (LPWAN) is one of the enabling technologies of the Internet of Things (IoT), and focuses on providing long distance connectivity for a vast amount of smart devices. Currently, LoRa is one of the leading LPWAN solutions available for public use. In LPWANs, especially in LoRa, security is a major concern due to the resource constraints of the devices, the sensitivity level of the transmitted data, the large amount of connected devices, among other reasons. This paper studies the key management mechanism of LoRaWAN environments. A secure architecture for key management based on smart contracts and permissioned blockchain to enhance security and availability in LoRaWAN networks is proposed. To demonstrate the feasibility of the proposed blockchain-based LoRaWAN architecture, a working prototype has been created using open-source tools and commodity hardware. Performance analysis shows that the prototype presents similar execution time and latency values, when compared to a traditional system, especially for small and medium-sized LoRaWAN networks. We also discuss why the proposed solution can be used in environments with a large number of end-devices.

show abstract

LoRaWAN security issues and mitigation options by the example of agricultural IoT scenarios

Kuntke

Romanenko

Linsner

et al. 2022

Trans Emerging Tel Tech

View full text Add to dashboard Cite

The Internet of Things (IoT) is a major trend that is seen as a great opportunity to improve efficiency in many domains, including agriculture. This technology could transform the sector, improving the management and quality of agricultural operations, for example, crop farming. The most promising data transmission standard for this domain seems to be Long Range Wide Area Network (LoRaWAN), a popular representative of low power wide area network technologies today. LoRaWAN, like any wireless protocol, has properties that can be exploited by attackers, which has been a topic of multiple research papers in recent years. By conducting a systematic literature review, we build a recent list of attacks, as well as collect mitigation options. Taking a look at a concrete use case (IoT in agriculture) allows us to evaluate the practicality of both exploiting the vulnerabilities and implementing the countermeasures. We detected 16 attacks that we grouped into six attack types. Along with the attacks, we collect countermeasures for attack mitigation. Developers can use our findings to minimize the risks when developing applications based on LoRaWAN. These mostly theoretical security recommendations should encourage future works to evaluate the mitigations in practice.

show abstract

General Security Considerations of LoRaWAN Version 1.1 Infrastructures

Cited by 6 publications

References 4 publications

Security Issues of Low Power Wide Area Networks in the Context of LoRa Networks

Security Issues of Low Power Wide Area Networks in the Context of LoRa Networks

Enhancing Key Management in LoRaWAN with Permissioned Blockchain

LoRaWAN security issues and mitigation options by the example of agricultural IoT scenarios

Contact Info

Product

Resources

About