TwinPeaks: An approach for certificateless public key distribution for the internet and internet of things

Cho, Eunsang; Kim, Jeong-Nyeo; Park, Minkyung; Lee, Hyeonmin; Hamm, Chorom; Park, Soobin; Sohn, Sungmin; Kang, Minhyeok; Kwon, Ted Taekyoung

doi:10.1016/j.comnet.2020.107268

Cited by 7 publications

(1 citation statement)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Taking into account the difficulty of certificate lifecycle management in IoT scenarios, the authors in [27] propose TwinPeaks, an alternative to current PKIs built on Certificateless Public Key Cryptography (CL-PKC). In short, in order to remove the need for PKIs and digital certificates, the proposal is based on using public identities which are directly linked to public keys.…”

Section: Related Workmentioning

confidence: 99%

How to Survive Identity Management in the Industry 4.0 Era

et al. 2021

View full text Add to dashboard Cite

Industry 4.0 heavily builds on massive deployment of Industrial Internet of Things (IIoT) devices to monitor every aspect of the manufacturing processes. Since the data gathered by these devices impact the output of critical processes, identity management and communications security are critical aspects, which commonly rely on the deployment of X.509 certificates. Nevertheless, the provisioning and management of individual certificates for a high number of IIoT devices involves important challenges. In this paper, we present a solution to improve the management of digital certificates in IIoT environments, which relies on partially delegating the certificate enrolment process to an edge server. However, in order to preserve end-to-end security, private keys are never delegated. Additionally, for the protection of the communications between the edge server and the IIoT devices, an approach based on Identity Based Cryptography is deployed. The proposed solution considers also the issuance of very short-lived certificates, which reduces the risk of using expired or compromised certificates, and avoids the necessity of implementing performance expensive protocols such as OCSP. The proposed solution has been successfully tested as an efficient identity management solution for IIoT environments in a real industrial environment.

show abstract

Section: Related Workmentioning

confidence: 99%