Secure Network Access Authentication for IoT Devices: EAP Framework vs. Individual Protocols

2021 ◽  
Vol 5 (3) ◽  
pp. 34-39
Author(s):  
Mohit Sethi ◽  
Tuomas Aura
Keyword(s):  
Network Access ◽  
Access Authentication ◽  
Secure Network ◽  
Iot Devices

scholarly journals Towards Secure Network Computing Services for Lightweight Clients Using Blockchain

2018 ◽  
Vol 2018 ◽  
pp. 1-12 ◽  
Author(s):  
Yang Xu ◽  
Guojun Wang ◽  
Jidian Yang ◽  
Ju Ren ◽  
Yaoxue Zhang ◽  
...  
Keyword(s):  
Service Providers ◽  
Security Analysis ◽  
Service Provisioning ◽  
Network Computing ◽  
Security Risks ◽  
Blockchain Technology ◽  
Computing Services ◽  
Viable Solution ◽  
Secure Network ◽  
Iot Devices

The emerging network computing technologies have significantly extended the abilities of the resource-constrained IoT devices through the network-based service sharing techniques. However, such a flexible and scalable service provisioning paradigm brings increased security risks to terminals due to the untrustworthy exogenous service codes loading from the open network. Many existing security approaches are unsuitable for IoT environments due to the high difficulty of maintenance or the dependencies upon extra resources like specific hardware. Fortunately, the rise of blockchain technology has facilitated the development of service sharing methods and, at the same time, it appears a viable solution to numerous security problems. In this paper, we propose a novel blockchain-based secure service provisioning mechanism for protecting lightweight clients from insecure services in network computing scenarios. We introduce the blockchain to maintain all the validity states of the off-chain services and edge service providers for the IoT terminals to help them get rid of untrusted or discarded services through provider identification and service verification. In addition, we take advantage of smart contracts which can be triggered by the lightweight clients to help them check the validities of service providers and service codes according to the on-chain transactions, thereby reducing the direct overhead on the IoT devices. Moreover, the adoptions of the consortium blockchain and the proof of authority consensus mechanism also help to achieve a high throughput. The theoretical security analysis and evaluation results show that our approach helps the lightweight clients get rid of untrusted edge service providers and insecure services effectively with acceptable latency and affordable costs.

Secure Network Access Using Multiple Applications of AT&T's Smart Card

1994 ◽  
Vol 73 (5) ◽  
pp. 61-72 ◽  
Author(s):  
Stephen A. Sherman ◽  
Richard Skibo ◽  
Richard S. Murray
Keyword(s):  
Smart Card ◽  
Network Access ◽  
Secure Network

scholarly journals Spectrum Management Schemes for Internet of Remote Things (IoRT) Devices in 5G Networks via GEO Satellite

2019 ◽  
Vol 11 (12) ◽  
pp. 257 ◽  
Author(s):  
Gbolahan Aiyetoro ◽  
Pius Owolawi
Keyword(s):  
Mobile Networks ◽  
Performance Metrics ◽  
Dynamic Scheduling ◽  
Spectrum Management ◽  
Satellite Networks ◽  
Network Access ◽  
5G Networks ◽  
New Paradigm ◽  
Air Interface ◽  
Iot Devices

The rapid growth of not just mobile devices but also Internet of Things (IoT) devices has introduced a new paradigm in mobile networks. This evolution and the continuous need to provide spectrum efficient, high data rates, low latency, and low energy consumption radio access networks have led to the emergence of fifth generation (5G) networks. Due to technical and economical limitations, the satellite air interface is expected to complement the 5G terrestrial air interface in the provision of 5G services including IoT communications. More importantly, it is on this premise that the 5G satellite air interface is expected to provide network access to IoT devices in rural and remote areas termed Internet of Remote Things (IoRT). While this remains an interesting solution, several radio resource management issues exist. One of them, spectrum management, in the 5G satellite as it affects IoRT communications, remains unclear. Hence, the aim of this paper is to investigate and recommend the spectrum management scheme that will be most suitable not only for Human-to-Human communications but also Machine-to-Machine communications in 5G satellite networks. In order to conduct this investigation, a new dynamic scheduling scheme that will be suitable for such a scenario is proposed in this paper. The investigation is conducted through simulations, using throughput, delay, spectral efficiency, and fairness index as the performance metrics.

scholarly journals Security-integrated nuclear process access control

2021 ◽  
Author(s):  
Helen Cheung
Keyword(s):  
Access Control ◽  
Performance Monitoring ◽  
Cost Savings ◽  
Nuclear Data ◽  
Nuclear Safety ◽  
Network Access ◽  
Nuclear Process ◽  
Access Controls ◽  
Access Authentication ◽  
Safety Operation

The intent of this thesis research is to develop a concept/methodology to advance technologies for controls of network accesses to the industrial processes of safety/operation-critical and to contribute to the nuclear process control modernization with improved nuclear operation security and consequently increased nuclear safety and cost savings. This thesis is focused on the security-integrated nuclear process network-access controls for modernizing nuclear operations. This thesis research commenced with assessments of the current states of nuclear processes in the live nuclear generating stations and identified improvements on the current nuclear practices and security concerns of using the network-based intelligent features of modern process controls for nuclear operations. This thesis has created SNP - Security-integrated Nuclear Process, OBAC - Operation Based Access Control, NOAA - Nuclear Operation Access Authentication, CSM - Cost Savings Model, etc. as the fundamental developments for contributions to the nuclear operations modernization with improved operation security and subsequently increased nuclear safety and cost savings in daily nuclear operations. The SNP is to transform the current nuclear practices into network-based nuclear operations that include equipment performance monitoring, nuclear data processing, nuclear equipment control and maintenance. The OBAC is an operation-based access control built upon the core nuclear operations and facilitates the security and quality controls of network accesses to nuclear operations. The NOAA is to provide user security authentication for access to nuclear operation network, which is composed of APP for access pre-access authentication and AQP for access qualification authentication. The CSM is designed for evaluations of the SNP and associated designs in terms of cost savings opportunity. The feasibility and practicality of these new designs are illustrated in the thesis, by analytical and numerical methods. The significance of these new designs is tremendous, resulting in potentially significant cost savings in daily nuclear generation, in addition with increased nuclear operation network security and subsequently the nuclear safety that is priceless.

scholarly journals EM Analysis in the IoT Context: Lessons Learned from an Attack on Thread

2018 ◽  
pp. 73-97
Author(s):  
Daniel Dinu ◽  
Ilya Kizhvatov
Keyword(s):  
Secure Communication ◽  
Lessons Learned ◽  
Side Channel ◽  
Network Access ◽  
Root Cause ◽  
Channel Analysis ◽  
Iot Devices ◽  
The Internet Of Things ◽  
Full Network

The distinguishing feature of the Internet of Things is that many devices get interconnected. The threat of side-channel attacks in this setting is less understood than the threat of traditional network and software exploitation attacks that are perceived to be more powerful.This work is a case study of Thread, an emerging network and transport level stack designed to facilitate secure communication between heterogeneous IoT devices. We perform the first side-channel vulnerability analysis of the Thread networking stack. We leverage various network mechanisms to trigger manipulations of the security material or to get access to the network credentials. We choose the most feasible attack vector to build a complete attack that combines network specific mechanisms and Differential Electromagnetic Analysis. When successfully applied on a Thread network, the attack gives full network access to the adversary. We evaluate the feasibility of our attack in a TI CC2538 setup running OpenThread, a certified open-source implementation of the stack.The full attack does not succeed in our setting. The root cause for this failure is not any particular security feature of the protocol or the implementation, but a side-effect of a feature not related to security. We summarize the problems that we find in the protocol with respect to side-channel analysis, and suggest a range of countermeasures to prevent our attack and the other attack vectors we identified during the vulnerability analysis.In general, we demonstrate that elaborate security mechanisms of Thread make a side-channel attack not trivial to mount. Similar to a modern software exploit, it requires chaining multiple vulnerabilities. Nevertheless, such attacks are feasible. Being perhaps too expensive for settings like smart homes, they pose a relatively higher threat to the commercial setting. We believe our experience provides a useful lesson to designers of IoT protocols and devices.

Network Access Authentication

2012 ◽  
pp. 347-420
Keyword(s):  
Network Access ◽  
Access Authentication

A secure network access protocol (SNAP)

2004 ◽  
Author(s):  
A.F. Al Shahri ◽  
D.G. Smith ◽  
J.M. Irvine
Keyword(s):  
Network Access ◽  
Access Protocol ◽  
Secure Network
Sign in / Sign up

Export Citation Format

Share Document