An ECC Based Secure Communication Protocol for Resource Constraints IoT Devices in Smart Home

Internet of Things (IoT) growing at a rate of exponential numbers in recent years has received extensive attention with BlockChain (BC) technology which provide trust to IoT with its immutable nature, decentralization in computing, resource constraints, security and privacy. The distributed ledger of transactions in BC is path leading technology for addressing Cyber Threats in the form of data theft; it provides secure application architecture which has proven track of record for securing data. IoT devices using BC enabled to communicate between objects, share data, decide based on business criteria and act as a medium to securely transmit information. This work provides lightweight BlockChain with two prominent consensus mechanism PoW – Proof of Work and PoS – Proof of Stake for smart IoT devices. Next, Smart Home Device (SMD) is ensures providing best-in-class Security and Privacy for smart home Appliances. Further provides future advances in the Approach.

Download Full-text

ARO_EDGE: A Technique to Ensure Data Security in Internet of Things (IoT)

Asian Journal of Computer Science and Technology ◽

10.51983/ajcst-2018.7.2.1873 ◽

2018 ◽

Vol 7 (2) ◽

pp. 52-56

Author(s):

A. Vithya Vijayalakshmi ◽

L. Arockiam

Keyword(s):

Health Care ◽

Data Security ◽

Secure Communication ◽

Smart Home ◽

Global Network ◽

Network Connection ◽

The World ◽

Smart Health ◽

Iot Devices ◽

Obfuscation Technique

Recently, e-health care, smart home, smart city, smart car and smart car services have been receiving attention all over the world. In smart health care, there are many sensors are communicating between each other and connected to the global network connection. Therefore, there is a problem in securing the data sensed from the various medical IoT devices. Lightweight and efficient way of providing secure communication in the IoT are the need of the hour. To overcome this problem, a technique has been proposed. This paper proposes a confidentiality technique, named ARO_EDGE to secure the data in IoT devices. This proposed confidentiality technique is based on data obfuscation technique to prevent the data from the attackers and unauthorized users.

Download Full-text

Sliding Window Protocol for Internet of Things

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.c6417.0910321 ◽

2021 ◽

Vol 10 (3) ◽

pp. 46-54

Author(s):

Md. Aaqeel Hasan* ◽

◽

Dr. Jaypal Medida ◽

N. Laxmi Prasanna ◽

◽

...

Keyword(s):

Internet Of Things ◽

Smart Home ◽

Resource Constraints ◽

Sliding Window ◽

Communication Technologies ◽

It Use ◽

Iot Security ◽

Memory Overhead ◽

Iot Devices ◽

High Computational Complexity

Internet of Things (IoT) refers to the concept of connecting non-traditional computers and related sources with the help of the internet. This includes incorporating basic computing and communication technologies for daily use into Physical things. Security and Confidentiality are two major challenges in IoT. In the current security mechanisms available for IoT, the limitations in the memory, energy resources, and CPU of IoT devices compromises the critical security specifications in IoT devices. Also, the centralized architectures for security are not appropriate for IoT because of a Single attack point. It is costly to defend against attacks targeted on centralized infrastructure. Therefore, it is important to decentralize the IoT security architecture to meet the requirements of resource constraints. Blockchain is a decentralized encryption system with a large number of uses. However, because of its high computational complexity and poor scalability, the Traditional Blockchain environment is not suitable for IoT applications. So, we introduce a Sliding window protocol to the traditional blockchain so that it will better suit the applications in the IoT environment. Changing the conventional blockchain and introducing a sliding window to it makes it use previous blocks in proof of work to shape the next hash block. SWBC's results are analyzed on a data stream generated from an IoT testbed (Smart Home) in real-time. The results show that the proposed sliding window protocol improves security and reduces memory overhead and consumes fewer resources for Security.

Download Full-text

Virtualizing AI at the Distributed Edge Towards Intelligent IoT Applications

Journal of Sensor and Actuator Networks ◽

10.3390/jsan10010013 ◽

2021 ◽

Vol 10 (1) ◽

pp. 13

Author(s):

Claudia Campolo ◽

Giacomo Genovese ◽

Antonio Iera ◽

Antonella Molinaro

Keyword(s):

Resource Constraints ◽

Smart Cities ◽

Traditional Approach ◽

Low Cost ◽

Iot Applications ◽

Software And Hardware ◽

Iot Devices ◽

Consumer Devices ◽

Hardware Platforms ◽

Smart Factories

Several Internet of Things (IoT) applications are booming which rely on advanced artificial intelligence (AI) and, in particular, machine learning (ML) algorithms to assist the users and make decisions on their behalf in a large variety of contexts, such as smart homes, smart cities, smart factories. Although the traditional approach is to deploy such compute-intensive algorithms into the centralized cloud, the recent proliferation of low-cost, AI-powered microcontrollers and consumer devices paves the way for having the intelligence pervasively spread along the cloud-to-things continuum. The take off of such a promising vision may be hurdled by the resource constraints of IoT devices and by the heterogeneity of (mostly proprietary) AI-embedded software and hardware platforms. In this paper, we propose a solution for the AI distributed deployment at the deep edge, which lays its foundation in the IoT virtualization concept. We design a virtualization layer hosted at the network edge that is in charge of the semantic description of AI-embedded IoT devices, and, hence, it can expose as well as augment their cognitive capabilities in order to feed intelligent IoT applications. The proposal has been mainly devised with the twofold aim of (i) relieving the pressure on constrained devices that are solicited by multiple parties interested in accessing their generated data and inference, and (ii) and targeting interoperability among AI-powered platforms. A Proof-of-Concept (PoC) is provided to showcase the viability and advantages of the proposed solution.

Download Full-text

IoT Traffic: Modeling and Measurement Experiments

IoT ◽

10.3390/iot2010008 ◽

2021 ◽

Vol 2 (1) ◽

pp. 140-162

Author(s):

Hung Nguyen-An ◽

Thomas Silverston ◽

Taku Yamazaki ◽

Takumi Miyoshi

Keyword(s):

Smart Home ◽

Large Scale ◽

Traffic Modeling ◽

The Novel ◽

Network Behavior ◽

Performance Accuracy ◽

Traffic Generator ◽

Multiple Devices ◽

Iot Devices ◽

The Internet Of Things

We now use the Internet of things (IoT) in our everyday lives. The novel IoT devices collect cyber–physical data and provide information on the environment. Hence, IoT traffic will count for a major part of Internet traffic; however, its impact on the network is still widely unknown. IoT devices are prone to cyberattacks because of constrained resources or misconfigurations. It is essential to characterize IoT traffic and identify each device to monitor the IoT network and discriminate among legitimate and anomalous IoT traffic. In this study, we deployed a smart-home testbed comprising several IoT devices to study IoT traffic. We performed extensive measurement experiments using a novel IoT traffic generator tool called IoTTGen. This tool can generate traffic from multiple devices, emulating large-scale scenarios with different devices under different network conditions. We analyzed the IoT traffic properties by computing the entropy value of traffic parameters and visually observing the traffic on behavior shape graphs. We propose a new method for identifying traffic entropy-based devices, computing the entropy values of traffic features. The method relies on machine learning to classify the traffic. The proposed method succeeded in identifying devices with a performance accuracy up to 94% and is robust with unpredictable network behavior with traffic anomalies spreading in the network.

Download Full-text

Drone Secure Communication Protocol for Future Sensitive Applications in Military Zone

Sensors ◽

10.3390/s21062057 ◽

2021 ◽

Vol 21 (6) ◽

pp. 2057

Author(s):

Yongho Ko ◽

Jiyoon Kim ◽

Daniel Gerbi Duguma ◽

Philip Virgil Astillo ◽

Ilsun You ◽

...

Keyword(s):

Performance Evaluation ◽

Secure Communication ◽

Communication Protocol ◽

Denial Of Service ◽

Mutual Authentication ◽

Information Leakage ◽

Security Protocol ◽

Security Requirements ◽

Forward Secrecy ◽

Perfect Forward Secrecy

Unmanned Aerial Vehicle (UAV) plays a paramount role in various fields, such as military, aerospace, reconnaissance, agriculture, and many more. The development and implementation of these devices have become vital in terms of usability and reachability. Unfortunately, as they become widespread and their demand grows, they are becoming more and more vulnerable to several security attacks, including, but not limited to, jamming, information leakage, and spoofing. In order to cope with such attacks and security threats, a proper design of robust security protocols is indispensable. Although several pieces of research have been carried out with this regard, there are still research gaps, particularly concerning UAV-to-UAV secure communication, support for perfect forward secrecy, and provision of non-repudiation. Especially in a military scenario, it is essential to solve these gaps. In this paper, we studied the security prerequisites of the UAV communication protocol, specifically in the military setting. More importantly, a security protocol (with two sub-protocols), that serves in securing the communication between UAVs, and between a UAV and a Ground Control Station, is proposed. This protocol, apart from the common security requirements, achieves perfect forward secrecy and non-repudiation, which are essential to a secure military communication. The proposed protocol is formally and thoroughly verified by using the BAN-logic (Burrow-Abadi-Needham logic) and Scyther tool, followed by performance evaluation and implementation of the protocol on a real UAV. From the security and performance evaluation, it is indicated that the proposed protocol is superior compared to other related protocols while meeting confidentiality, integrity, mutual authentication, non-repudiation, perfect forward secrecy, perfect backward secrecy, response to DoS (Denial of Service) attacks, man-in-the-middle protection, and D2D (Drone-to-Drone) security.

Download Full-text

A Secure and Scalable Smart Home Gateway to Bridge Technology Fragmentation

Sensors ◽

10.3390/s21113587 ◽

2021 ◽

Vol 21 (11) ◽

pp. 3587

Author(s):

Ezequiel Simeoni ◽

Eugenio Gaeta ◽

Rebeca I. García-Betances ◽

Dave Raggett ◽

Alejandro M. Medrano-Gil ◽

...

Keyword(s):

Smart Home ◽

Home Automation ◽

Dynamic Configuration ◽

Home Gateway ◽

Security Authentication ◽

Living Lab ◽

Automation Systems ◽

Authentication And Authorization ◽

Iot Devices ◽

Bridge Technology

Internet of Things (IoT) technologies are already playing an important role in our daily activities as we use them and rely on them to increase our abilities, connectivity, productivity and quality of life. However, there are still obstacles to achieving a unique interface able to transfer full control to users given the diversity of protocols, properties and specifications in the varied IoT ecosystem. Particularly for the case of home automation systems, there is a high degree of fragmentation that limits interoperability, increasing the complexity and costs of developments and holding back their real potential of positively impacting users. In this article, we propose implementing W3C’s Web of Things Standard supported by home automation ontologies, such as SAREF and UniversAAL, to deploy the Living Lab Gateway that allows users to consume all IoT devices from a smart home, including those physically wired and using KNX® technology. This work, developed under the framework of the EC funded Plan4Act project, includes relevant features such as security, authentication and authorization provision, dynamic configuration and injection of devices, and devices abstraction and mapping into ontologies. Its deployment is explained in two scenarios to show the achieved technology’s degree of integration, the code simplicity for developers and the system’s scalability: one consisted of external hardware interfacing with the smart home, and the other of the injection of a new sensing device. A test was executed providing metrics that indicate that the Living Lab Gateway is competitive in terms of response performance.

Download Full-text

IMSC-EIoTD: Identity Management and Secure Communication for Edge IoT Devices

Sensors ◽

10.3390/s20226546 ◽

2020 ◽

Vol 20 (22) ◽

pp. 6546

Author(s):

Kazi Masum Sadique ◽

Rahim Rahmani ◽

Paul Johannesson

Keyword(s):

Secure Communication ◽

Identity Management ◽

Security Protocols ◽

Spin Model ◽

The Internet ◽

Human Society ◽

Proposed Model ◽

Authentication And Authorization ◽

Quality Of Living ◽

Iot Devices

The Internet of things (IoT) will accommodate several billions of devices to the Internet to enhance human society as well as to improve the quality of living. A huge number of sensors, actuators, gateways, servers, and related end-user applications will be connected to the Internet. All these entities require identities to communicate with each other. The communicating devices may have mobility and currently, the only main identity solution is IP based identity management which is not suitable for the authentication and authorization of the heterogeneous IoT devices. Sometimes devices and applications need to communicate in real-time to make decisions within very short times. Most of the recently proposed solutions for identity management are cloud-based. Those cloud-based identity management solutions are not feasible for heterogeneous IoT devices. In this paper, we have proposed an edge-fog based decentralized identity management and authentication solution for IoT devices (IoTD) and edge IoT gateways (EIoTG). We have also presented a secure communication protocol for communication between edge IoT devices and edge IoT gateways. The proposed security protocols are verified using Scyther formal verification tool, which is a popular tool for automated verification of security protocols. The proposed model is specified using the PROMELA language. SPIN model checker is used to confirm the specification of the proposed model. The results show different message flows without any error.

Download Full-text

HomeTec Software for Security Aspects of Smart Home Devices Based on IoT

10.54216/jcim.050101 ◽

2021 ◽

pp. 5-16

Author(s):

Parth Rustagi ◽

◽

...

Keyword(s):

Smart Home ◽

Denial Of Service ◽

Security Protocols ◽

The Internet ◽

Security Threats ◽

Deep Dive ◽

Cost Cutting ◽

Full Control ◽

Iot Devices ◽

Service Data

As useful as it gets to connect devices to the internet to make life easier and more comfortable, it also opens the gates to various cyber threats. The connection of Smart Home devices to the internet makes them vulnerable to malicious hackers that infiltrate the system. Hackers can penetrate these systems and have full control over devices. This can lead to denial of service, data leakage, invasion of privacy, etc. Thus security is a major aspect of Smart home devices. However, many companies manufacturing these Smart Home devices have little to no security protocols in their devices. In the process of making the IoT devices cheaper, various cost-cutting is done on the security protocols in IoT devices. In some way, many manufactures of the devices don’t even consider this as a factor to build upon. This leaves the devices vulnerable to attacks. Various authorities have worked upon to standardize the security aspects for the IoT and listed out guidelines for manufactures to follow, but many fail to abide by them. This paper introduces and talks about the various threats, various Security threats to Smart Home devices. It takes a deep dive into the solutions for the discussed threats. It also discusses their prevention. Lastly, it discusses various preventive measures and good practices to be incorporated to protect devices from any future attacks.

Download Full-text