BRISK: Dynamic Encryption Based Cipher for Long Term Security

Several emerging areas like the Internet of Things, sensor networks, healthcare and distributed networks feature resource-constrained devices that share secure and privacy-preserving data to accomplish some goal. The majority of standard cryptographic algorithms do not fit with these constrained devices due to heavy cryptographic components. In this paper, a new block cipher, BRISK, is proposed with a block size of 32-bit. The cipher design is straightforward due to simple round operations, and these operations can be efficiently run in hardware and suitable for software. Another major concept used with this cipher is dynamism during encryption for each session; that is, instead of using the same encryption algorithm, participants use different ciphers for each session. Professor Lars R. Knudsen initially proposed dynamic encryption in 2015, where the sender picks a cipher from a large pool of ciphers to encrypt the data and send it along with the encrypted message. The receiver does not know about the encryption technique used before receiving the cipher along with the message. However, in the proposed algorithm, instead of choosing a new cipher, the process uses the same cipher for each session, but varies the cipher specifications from a given small pool, e.g., the number of rounds, cipher components, etc. Therefore, the dynamism concept is used here in a different way.

Download Full-text

Towards Light Weight Cryptography Schemes for Resource Constraint Devices in IoT

Journal of Mobile Multimedia ◽

10.13052/jmm1550-4646.1521 ◽

2020 ◽

Author(s):

Santosh Pandurang Jadhav

Keyword(s):

Processing Capacity ◽

Light Weight ◽

Resource Constrained ◽

Computational Costs ◽

Encryption And Decryption ◽

Limited Power ◽

Iot Devices ◽

The Internet Of Things ◽

Resource Constrained Devices ◽

Constrained Devices

The Internet of Things (IoT) is becoming the most relevant next Internet-related revolution in the world of Technology. It permits millions of devices to be connected and communicate with each other. Beside ensuring reliable connectivity their security is also a great challenge. Abounding IoT devices have a minimum of storage and processing capacity and they usually need to be able to operate on limited power consumption. Security paths that depend maximum on encryption are not good for these resource constrained devices, because they are not suited for performing complicated encryption and decryption tasks quickly to be able to transmit data securely in real-time. This paper contains an overview of some of the cryptographic-based schemes related to communication and computational costs for resource constrained devices and considers some approaches towards the development of highly secure and lightweight security mechanisms for IoT devices.

Download Full-text

An Efficient Security Scheme for the Internet of Things with Resource-Constrained Devices

2019 IEEE 10th Annual Ubiquitous Computing, Electronics & Mobile Communication Conference (UEMCON) ◽

10.1109/uemcon47517.2019.8993102 ◽

2019 ◽

Author(s):

Xin-Wen Wu ◽

Waleed Farag ◽

Sanwar Ali ◽

Siddhivinayak Kulkarni

Keyword(s):

Internet Of Things ◽

The Internet ◽

Resource Constrained ◽

Security Scheme ◽

The Internet Of Things ◽

Resource Constrained Devices ◽

Constrained Devices

Download Full-text

Hybrid lightweight Signcryption scheme for IoT

Open Computer Science ◽

10.1515/comp-2020-0105 ◽

2021 ◽

Vol 11 (1) ◽

pp. 391-398

Author(s):

M. Sruthi ◽

Rajkumar Rajasekaran

Keyword(s):

Conventional Method ◽

Block Cipher ◽

Resource Constrained ◽

Session Key ◽

Lightweight Cryptography ◽

Lightweight Block Cipher ◽

Signcryption Scheme ◽

Resource Constrained Devices ◽

Constrained Devices

Abstract The information transmitted in IoT is susceptible to affect the user’s privacy, and hence the information ought to be transmitted securely. The conventional method to assure integrity, confidentiality, and non-repudiation is to first sign the message and then encrypt it. Signcryption is a technique where the signature and the encryption are performed in a single round. The current Signcryption system uses traditional cryptographic approaches that are overloaded for IoT, as it consists of resource-constrained devices and uses the weak session key to encrypt the data. We propose a hybrid Signcryption scheme that employs PRESENT, a lightweight block cipher algorithm to encrypt the data, and the session key is encrypted by ECC. The time taken to signcrypt the proposed Signcryption is better when compared to current Signcryption techniques, as it deploys lightweight cryptography techniques that are devoted to resource-constrained devices.

Download Full-text

Enterprise Security for the Internet of Things (IoT): Lightweight Bootstrapping with EAP-NOOB

Sensors ◽

10.3390/s20216101 ◽

2020 ◽

Vol 20 (21) ◽

pp. 6101

Author(s):

Aleksi Peltonen ◽

Eduardo Inglés ◽

Sampsa Latvala ◽

Dan Garcia-Carrillo ◽

Mohit Sethi ◽

...

Keyword(s):

Authentication Protocol ◽

The Internet ◽

Resource Constrained ◽

Window Blinds ◽

Enterprise Security ◽

Implementation Experience ◽

The Internet Of Things ◽

Extensible Authentication Protocol ◽

Resource Constrained Devices ◽

Constrained Devices

The emergence of radio technologies, such as Zigbee, Z-Wave, and Bluetooth Mesh, has transformed simple physical devices into smart objects that can understand and react to their environment. Devices, such as light bulbs, door locks, and window blinds, can now be connected to, and remotely controlled from, the Internet. Given the resource-constrained nature of many of these devices, they have typically relied on the use of universal global shared secrets for the initial bootstrapping and commissioning phase. Such a scheme has obvious security weaknesses and it also creates undesirable walled-gardens where devices of one ecosystem do not inter-operate with the other. In this paper, we investigate whether the standard Extensible Authentication Protocol (EAP) framework can be used for secure bootstrapping of resource-constrained devices. EAP naturally provides the benefits of per-device individual credentials, straightforward revocation, and isolation of devices. In particular, we look at the Nimble out-of-band authentication for EAP (EAP-NOOB) as a candidate EAP authentication method. EAP-NOOB greatly simplifies deployment of such devices as it does not require them to be pre-provisioned with credentials of any sort. Based on our implementation experience on off-the-shelf hardware, we demonstrate that lightweight EAP-NOOB is indeed a way forward to securely bootstrap such devices.

Download Full-text

Bridging the SNMP gap: Simple network monitoring the internet of things

Facta universitatis - series Electronics and Energetics ◽

10.2298/fuee1603475s ◽

2016 ◽

Vol 29 (3) ◽

pp. 475-487 ◽

Cited By ~ 2

Author(s):

Mihajlo Savic

Keyword(s):

Internet Of Things ◽

The Internet ◽

Cloud Environments ◽

Communication Needs ◽

Memory Resources ◽

The Internet Of Things ◽

Simple Network ◽

Resource Constrained Devices ◽

Competing Technologies ◽

Constrained Devices

Things that form Internet of Things can vary in every imaginable aspect. From simplest devices with barely any processing and memory resources, with communication handled by networking devices like switches and routers to powerful servers that provide needed back-end resources in cloud environments, all are needed for real world implementations of Internet of Things. Monitoring of the network and server parts of the infrastructure is a well known area with numerous approaches that enable efficient monitoring. Most prevalent technology used is SNMP that forms the part of the IP stack and is as such universally supported. On the other hand, ?things? domain is evolving very fast with a number of competing technologies used for communication and monitoring. When discussing small, constrained devices, the two most promising protocols are CoAP and MQTT. Combined, they cover wide area of communication needs for resource constrained devices, from simple messaging system to one that enables connecting to RESTful world. In this paper we present a possible solution to bridge the gap in monitoring by enabling SNMP access to monitoring data obtained from constrained devices that cannot feasibly support SNMP or are not intended to be used in such a manner.

Download Full-text

Fast lightweight block cipher design with involution substitution permutation network (SPN) structure

Indonesian Journal of Electrical Engineering and Computer Science ◽

10.11591/ijeecs.v20.i1.pp361-369 ◽

2020 ◽

Vol 20 (1) ◽

pp. 361

Author(s):

Omar A. Dawood

Keyword(s):

Block Cipher ◽

Block Size ◽

Limited Resources ◽

Security Level ◽

Embedded Devices ◽

Iot Applications ◽

Restricted Environment ◽

Lightweight Block Cipher ◽

The Internet Of Things ◽

Design Aspect

<p>In the present paper, a new cryptographic lightweight algorithm has been developed for the Internet of Things (IoT) applications. The submitted cipher designed with the involution Substitution Permutation Network SPN structure. The involution structure means that the same encryption algorithm is used in the decryption process except the ciphering key algorithm is applied in reverse order. The introduced algorithm encrypts the data with a block size of 128-bit 192-bit or 256-bit, which iterative with 10, 12 and 14-rounds respectively similar to the AES cipher. The design aspect supports an elegant structure with a secure involution round transformation. The main round is built without S-Box stage instead that it uses the on-fly immediate computing stage and the involution of mathematical invertible affine equations. The proposed cipher is adopted to work in a restricted environment and with limited resources pertaining to embedded devices. The proposed cipher introduces an accepted security level and reasonable Gate Equivalent (GE) estimation with fast implementation.</p>

Download Full-text