Cost-Effective Proxy Signcryption Scheme for Internet of Things

The Internet of things (IoT) has emerged into a revolutionary technology that enables a wide range of features and applications given the proliferation of sensors and actuators embedded in everyday objects, as well as the ubiquitous availability of high-speed Internet. When nearly everything is connected to the Internet, security and privacy concerns will become more significant. Furthermore, owing to the resource-constrained nature of IoT devices, they are unable to perform standard cryptographic computations. As a result, there is a critical need for efficient and secure lightweight cryptographic scheme that can meet the demands of resource-constrained IoT devices. In this study, we propose a lightweight proxy in which a person/party can delegate its signing authority to a proxy agent. Existing proxy signcryption security approaches are computationally costly and rely on RSA, bilinear pairing, and elliptic curves cryptography (ECC). The hyperelliptic curve cryptosystem (HECC), on the other hand, employs a smaller key size while maintaining the same level of security. When assessed using the random oracle model (ROM), the proposed scheme provides resilience against indistinguishable under adaptive chosen ciphertext attacks (IND-CCA) and unforgeable under adaptive chosen message attacks (UU-ACMA). To demonstrate the viability of the proposed scheme, security analyses and comparisons with existing schemes are performed. The findings show that the proposed scheme provides high security while reducing computational and communication costs.

Download Full-text

A Survey of Authentication Schemes in the Internet of Things

International Journal of Smart Security Technologies ◽

10.4018/ijsst.2019010102 ◽

2019 ◽

Vol 6 (1) ◽

pp. 15-30 ◽

Cited By ~ 1

Author(s):

Yasmine Labiod ◽

Abdelaziz Amara Korba ◽

Nacira Ghoualmi-Zine

Keyword(s):

Internet Of Things ◽

Security Requirements ◽

Security And Privacy ◽

The Internet ◽

Privacy And Security ◽

Depth Study ◽

Authentication Schemes ◽

Iot Devices ◽

Privacy Issues ◽

The Internet Of Things

In the recent years, the Internet of Things (IoT) has been widely deployed in different daily life aspects such as home automation, electronic health, the electric grid, etc. Nevertheless, the IoT paradigm raises major security and privacy issues. To secure the IoT devices, many research works have been conducted to counter those issues and discover a better way to remove those risks, or at least reduce their effects on the user's privacy and security requirements. This article mainly focuses on a critical review of the recent authentication techniques for IoT devices. First, this research presents a taxonomy of the current cryptography-based authentication schemes for IoT. In addition, this is followed by a discussion of the limitations, advantages, objectives, and attacks supported of current cryptography-based authentication schemes. Finally, the authors make in-depth study on the most relevant authentication schemes for IoT in the context of users, devices, and architecture that are needed to secure IoT environments and that are needed for improving IoT security and items to be addressed in the future.

Download Full-text

Smart Internet of Things (IoT) Applications

Handbook of Research on Implementation and Deployment of IoT Projects in Smart Cities - Advances in Civil and Industrial Engineering ◽

10.4018/978-1-5225-9199-3.ch003 ◽

2019 ◽

pp. 33-42

Author(s):

Rahul Verma

Keyword(s):

Internet Of Things ◽

Cyber Physical Systems ◽

Security And Privacy ◽

Smart Device ◽

The Internet ◽

Iot Applications ◽

Individual Concepts ◽

The World ◽

Iot Devices ◽

The Internet Of Things

The internet of things (IoT) is the new buzzword in technological corridors with most technology companies announcing a smart device of sorts that runs on internet of things (IoT). Cities around the world are getting “smarter” every day through the implementation of internet of things (IoT) devices. Cities around the world are implementing individual concepts on their way to becoming smart. The services are automated and integrated end to end using internet of things (IoT) devices. The chapter presents an array of internet of things (IoT) applications. Also, cyber physical systems are becoming more vulnerable since the internet of things (IoT) attacks are common and threatening the security and privacy of such systems. The main aim of this chapter is to bring more research in the application aspects of smart internet of things (IoT).

Download Full-text

Intelligent Algorithms of Wireless Communication for Internet of Things Service Security and Privacy Assurance

10.21203/rs.3.rs-749325/v1 ◽

2021 ◽

Author(s):

Yuanguo Wang ◽

Xiaogang Jiang ◽

Qian Yu ◽

Xiuling Zhang ◽

Bailu Zhao ◽

...

Keyword(s):

Internet Of Things ◽

Communication Networks ◽

Data Exchange ◽

Large Scale ◽

Low Complexity ◽

Internet Security ◽

Security And Privacy ◽

The Internet ◽

Management Service ◽

The Internet Of Things

Abstract Due to its huge application potential, the Internet of Things has received extensive attention from governments, academia and industry. The core concepts of the Internet of Things are perception, control, transmission and intelligence. Through technical means, the coordination of things and things, people and things, and people and people has been realized, thus forming a network based on sensor networks, the Internet, and mobile communication networks. A larger complex network system. However, restricted by the characteristics of network structure, terminal equipment, communication methods, application scenarios, etc., some security and privacy issues unique to the Internet of Things cannot be directly solved by existing Internet security technologies. Aiming at the general high complexity of existing algorithms, this article starts with the different phase-frequency characteristics of different filters, and designs a new low-complexity reduction system algorithm. According to the characteristics of the system that the filter structure can be flexibly selected, the method randomly allocates different filters to each sub-carrier and adjusts the phase of signal superimposition, thereby constructing a coordinated communication facility and management service coordination suitable for large-scale distributed IoT services. The interactive access control architecture realizes the confidentiality of data exchange between services.

Download Full-text

Secure Communications for Resource-Constrained IoT Devices

Sensors ◽

10.3390/s20133637 ◽

2020 ◽

Vol 20 (13) ◽

pp. 3637

Author(s):

Abd-Elhamid M. Taha ◽

Abdulmonem M. Rashwan ◽

Hossam S. Hassanein

Keyword(s):

Internet Of Things ◽

Secure Communication ◽

The Internet ◽

Secure Communications ◽

Message Authentication ◽

Authentication Codes ◽

Resource Constrained ◽

Iot Devices ◽

The Internet Of Things ◽

Constrained Devices

The importance of securing communications on the Internet of Things (IoT) cannot be overstated. This is especially the case in light of the increasing proliferation of IoT devices and instances, as well as the growing dependence on their usage. Meanwhile, there have recently been mounting concerns over a wide array of vulnerabilities in IoT communications. The objective of this work is to address constraints in IoT devices that are “resource-constrained”, which are devices that are limited in terms of computing, energy, communication, or range capabilities, whether in terms of nominal or temporal limitations. Specifically, we propose a framework for resource-aiding constrained devices to facilitate secure communication. Without loss of generalization, the framework’s viability is illustrated by focusing on a group of security functions that utilize message authentication codes, which is a strongly representative example of resource-intensive security functions. Aspects of the framework are further demonstrated in processing cores commonly used in commercial IoT devices.

Download Full-text

The Future of Low-End Motes in the Internet of Things: A Prospective Paper

Electronics ◽

10.3390/electronics9010111 ◽

2020 ◽

Vol 9 (1) ◽

pp. 111 ◽

Cited By ~ 1

Author(s):

Daniel Oliveira ◽

Miguel Costa ◽

Sandro Pinto ◽

Tiago Gomes

Keyword(s):

Internet Of Things ◽

Reconfigurable Computing ◽

Sensor Nodes ◽

Security And Privacy ◽

The Internet ◽

Wireless Sensor Nodes ◽

Privacy Concerns ◽

Energy Needs ◽

Iot Devices ◽

The Internet Of Things

Undeniably, the Internet of Things (IoT) ecosystem continues to evolve at a breakneck pace, exceeding all growth expectations and ubiquity barriers. From sensor to cloud, this giant network keeps breaking technological bounds in several domains, and wireless sensor nodes (motes) are expected to be predominant as the number of IoT devices grows towards the trillions. However, their future in the IoT ecosystem still seems foggy, where several challenges, such as (i) device’s connectivity, (ii) intelligence at the edge, (iii) security and privacy concerns, and (iv) growing energy needs, keep pulling in opposite directions. This prospective paper offers a succinct and forward-looking review of recent trends, challenges, and state-of-the-art solutions of low-end IoT motes, where reconfigurable computing technology plays a key role in tomorrow’s IoT devices.

Download Full-text

A Comparative Study of Post-Quantum Cryptosystems for Internet-of-Things Applications

Sensors ◽

10.3390/s22020489 ◽

2022 ◽

Vol 22 (2) ◽

pp. 489

Author(s):

Jose-Antonio Septien-Hernandez ◽

Magali Arellano-Vazquez ◽

Marco Antonio Contreras-Cruz ◽

Juan-Pablo Ramirez-Paredes

Keyword(s):

Internet Of Things ◽

Quantum Algorithms ◽

The Internet ◽

Quantum Computers ◽

Resource Constrained ◽

Public Key Cryptosystems ◽

Shor's Algorithm ◽

Iot Devices ◽

Imminent Threat ◽

The Internet Of Things

The existence of quantum computers and Shor’s algorithm poses an imminent threat to classical public-key cryptosystems. These cryptosystems are currently used for the exchange of keys between servers and clients over the Internet. The Internet of Things (IoT) is the next step in the evolution of the Internet, and it involves the connection of millions of low-powered and resource-constrained devices to the network. Because quantum computers are becoming more capable, the creation of a new cryptographic standard that cannot be compromised by them is indispensable. There are several current proposals of quantum-resistant or post-quantum algorithms that are being considered for future standards. Given that the IoT is increasing in popularity, and given its resource-constrained nature, it is worth adapting those new standards to IoT devices. In this work, we study some post-quantum cryptosystems that could be suitable for IoT devices, adapting them to work with current cryptography and communication software, and conduct a performance measurement on them, obtaining guidelines for selecting the best for different applications in resource-constrained hardware. Our results show that many of these algorithms can be efficiently executed in current IoT hardware, providing adequate protection from the attacks that quantum computers will eventually be capable of.

Download Full-text

A Comprehensive and Systematic Survey on the Internet of Things: Security and Privacy Challenges, Security Frameworks, Enabling Technologies, Threats, Vulnerabilities and Countermeasures

Computers ◽

10.3390/computers9020044 ◽

2020 ◽

Vol 9 (2) ◽

pp. 44 ◽

Cited By ~ 2

Author(s):

Muath A. Obaidat ◽

Suhaib Obeidat ◽

Jennifer Holst ◽

Abdullah Al Hayajneh ◽

Joseph Brown

Keyword(s):

Internet Of Things ◽

Cyber Attacks ◽

Security And Privacy ◽

The Internet ◽

Comprehensive Overview ◽

Architecture Model ◽

Research Areas ◽

Iot Devices ◽

The Impact ◽

The Internet Of Things

The Internet of Things (IoT) has experienced constant growth in the number of devices deployed and the range of applications in which such devices are used. They vary widely in size, computational power, capacity storage, and energy. The explosive growth and integration of IoT in different domains and areas of our daily lives has created an Internet of Vulnerabilities (IoV). In the rush to build and implement IoT devices, security and privacy have not been adequately addressed. IoT devices, many of which are highly constrained, are vulnerable to cyber attacks, which threaten the security and privacy of users and systems. This survey provides a comprehensive overview of IoT in regard to areas of application, security architecture frameworks, recent security and privacy issues in IoT, as well as a review of recent similar studies on IoT security and privacy. In addition, the paper presents a comprehensive taxonomy of attacks on IoT based on the three-layer architecture model; perception, network, and application layers, as well as a suggestion of the impact of these attacks on CIA objectives in representative devices, are presented. Moreover, the study proposes mitigations and countermeasures, taking a multi-faceted approach rather than a per layer approach. Open research areas are also covered to provide researchers with the most recent research urgent questions in regard to securing IoT ecosystem.

Download Full-text

QoS Enabled Layered Based Clustering for Reactive Flooding in the Internet of Things

Symmetry ◽

10.3390/sym11050634 ◽

2019 ◽

Vol 11 (5) ◽

pp. 634 ◽

Cited By ~ 1

Author(s):

Fawad Ali Khan ◽

Rafidah Md Noor ◽

Miss Laiha Mat Kiah ◽

Noorzaily Mohd Noor ◽

Saleh M. Altowaijri ◽

...

Keyword(s):

Energy Consumption ◽

Internet Of Things ◽

Research Work ◽

Hybrid Approach ◽

Computational Time ◽

The Internet ◽

Wide Range ◽

Iot Devices ◽

The Internet Of Things ◽

Network Flooding

The Internet of Things has gained substantial attention over the last few years, because of connecting daily things in a wide range of application and domains. A large number of sensors require bandwidth and network resources to give-and-take queries among a heterogeneous IoT network. Network flooding is a key questioning strategy for successful exchange of queries. However, the risk of the original flooding is prone to unwanted and redundant network queries which may lead to heavy network traffic. Redundant, unwanted, and flooded queries are major causes of inefficient utilization of resources. IoT devices consume more energy and high computational time. More queries leads to consumption of more bandwidth, cost, and miserable QoS. Current existing approaches focused primarily on how to speed up the basic routing for IoT devices. However, solutions for flooding are not being addressed. In this paper, we propose a cluster-based flooding (CBF) as an interoperable solution for network and sensor layer devices which is also capable minimizing the energy consumption, cost, network flooding, identifying, and eliminating of redundant flooding queries using query control mechanisms. The proposed CBF divides the network into different clusters, local queries for information are proactively maintained by the intralayer cluster (IALC), while the interlayer cluster (IELC) is responsible for reactively obtain the routing queries to the destinations outside the cluster. CBF is a hybrid approach, having the potential to be more efficient against traditional schemes in term of query traffic generation. However, in the absence of appropriate redundant query detection and termination techniques, the CBF may generate more control traffic compared to the standard flooding techniques. In this research work, we used Cooja simulator to evaluate the performance of the proposed CBF. According to the simulation results the proposed technique has superiority in term of traffic delay, QoS/throughput, and energy consumption, under various performance metrics compared with traditional flooding and state of the art.

Download Full-text

PRISEC: Comparison of Symmetric Key Algorithms for IoT Devices

Sensors ◽

10.3390/s19194312 ◽

2019 ◽

Vol 19 (19) ◽

pp. 4312 ◽

Cited By ~ 8

Author(s):

Daniel A. F. Saraiva ◽

Valderi Reis Quietinho Leithardt ◽

Diandre de Paula ◽

André Sales Mendes ◽

Gabriel Villarrubia González ◽

...

Keyword(s):

Internet Of Things ◽

Power Consumption ◽

Advanced Encryption Standard ◽

The Internet ◽

Secure Communications ◽

Resource Constrained ◽

Symmetric Key ◽

Iot Devices ◽

Resource Constrained Devices ◽

Constrained Devices

With the growing number of heterogeneous resource-constrained devices connected to the Internet, it becomes increasingly challenging to secure the privacy and protection of data. Strong but efficient cryptography solutions must be employed to deal with this problem, along with methods to standardize secure communications between these devices. The PRISEC module of the UbiPri middleware has this goal. In this work, we present the performance of the AES (Advanced Encryption Standard), RC6 (Rivest Cipher 6), Twofish, SPECK128, LEA, and ChaCha20-Poly1305 algorithms in Internet of Things (IoT) devices, measuring their execution times, throughput, and power consumption, with the main goal of determining which symmetric key ciphers are best to be applied in PRISEC. We verify that ChaCha20-Poly1305 is a very good option for resource constrained devices, along with the lightweight block ciphers SPECK128 and LEA.

Download Full-text

A Survey on Emerging Security Issues, Challenges, and Solutions for Internet of Things (IoTs)

10.4018/978-1-7998-7789-9.ch009 ◽

2022 ◽

pp. 148-175

Author(s):

Anish Khan ◽

Dragan Peraković

Keyword(s):

Internet Of Things ◽

Security And Privacy ◽

Future Research ◽

Security Issues ◽

Digital World ◽

Private Data ◽

Wide Range ◽

Future Research Directions ◽

Iot Devices ◽

Privacy Issues

The internet of things is a cutting-edge technology that is vulnerable to all sorts of fictitious solutions. As a new phase of computing emerges in the digital world, it intends to produce a huge number of smart gadgets that can host a wide range of applications and operations. IoT gadgets are a perfect target for cyber assaults because of their wide dispersion, availability/accessibility, and top-notch computing power. Furthermore, as numerous IoT devices gather and investigate private data, they become a gold mine for hostile actors. Hence, the matter of fact is that security, particularly the potential to diagnose compromised nodes, as well as the collection and preservation of testimony of an attack or illegal activity, have become top priorities. This chapter delves into the timeline and the most challenging security and privacy issues that exist in the present scenario. In addition to this, some open issues and future research directions are also discussed.

Download Full-text