Privacy-Enhanced MQTT Protocol for Massive IoT

The growing expectations for ubiquitous sensing have led to the integration of countless embedded sensors, actuators, and RFIDs in our surroundings. Combined with rapid developments in high-speed wireless networks, these resource-constrained devices are paving the road for the Internet-of-Things paradigm, a computing model aiming to bring together millions of heterogeneous and pervasive elements. However, it is commonly accepted that the Privacy consideration remains one of its main challenges, a notion that does not only encompasses malicious individuals but can also be extended to honest-but-curious third-parties. In this paper, we study the design of a privacy-enhanced communication protocol for lightweight IoT devices. Applying the proposed approach to MQTT, a highly popular lightweight publish/subscribe communication protocol prevents no valuable information from being extracted from the messages flowing through the broker. In addition, it also prevents partners re-identification. Starting from a privacy-ideal, but unpractical, exact transposition of the Oblivious Transfer (OT) technology to MQTT, this paper follows an iterative process where each previous model’s drawbacks are appropriately mitigated all the while trying to preserve acceptable privacy levels. Our work provides resistance to statistical analysis attacks and dynamically supports new client participation. Additionally the whole proposal is based on the existence of a non-communicating 3rd party during pre-development. This particular contribution reaches a proof-of-concept stage through implementation, and achieves its goals thanks to OT’s indistinguishability property as well as hash-based topic obfuscations.

Download Full-text

Towards Light Weight Cryptography Schemes for Resource Constraint Devices in IoT

Journal of Mobile Multimedia ◽

10.13052/jmm1550-4646.1521 ◽

2020 ◽

Author(s):

Santosh Pandurang Jadhav

Keyword(s):

Processing Capacity ◽

Light Weight ◽

Resource Constrained ◽

Computational Costs ◽

Encryption And Decryption ◽

Limited Power ◽

Iot Devices ◽

The Internet Of Things ◽

Resource Constrained Devices ◽

Constrained Devices

The Internet of Things (IoT) is becoming the most relevant next Internet-related revolution in the world of Technology. It permits millions of devices to be connected and communicate with each other. Beside ensuring reliable connectivity their security is also a great challenge. Abounding IoT devices have a minimum of storage and processing capacity and they usually need to be able to operate on limited power consumption. Security paths that depend maximum on encryption are not good for these resource constrained devices, because they are not suited for performing complicated encryption and decryption tasks quickly to be able to transmit data securely in real-time. This paper contains an overview of some of the cryptographic-based schemes related to communication and computational costs for resource constrained devices and considers some approaches towards the development of highly secure and lightweight security mechanisms for IoT devices.

Download Full-text

S×C4IoT: A Security-by-contract Framework for Dynamic Evolving IoT Devices

ACM Transactions on Sensor Networks ◽

10.1145/3480462 ◽

2022 ◽

Vol 18 (1) ◽

pp. 1-51

Author(s):

Alberto Giaretta ◽

Nicola Dragoni ◽

Fabio Massacci

Keyword(s):

Fog Computing ◽

Life Cycles ◽

Information Flows ◽

Storage Space ◽

Proof Of Concept ◽

Human Beings ◽

The Past ◽

Iot Devices ◽

And Storage ◽

The Internet Of Things

The Internet of Things (IoT) revolutionised the way devices, and human beings, cooperate and interact. The interconnectivity and mobility brought by IoT devices led to extremely variable networks, as well as unpredictable information flows. In turn, security proved to be a serious issue for the IoT, far more serious than it has been in the past for other technologies. We claim that IoT devices need detailed descriptions of their behaviour to achieve secure default configurations, sufficient security configurability, and self-configurability. In this article, we propose S×C4IoT, a framework that addresses these issues by combining two paradigms: Security by Contract (S×C) and Fog computing. First, we summarise the necessary background such as the basic S×C definitions. Then, we describe how devices interact within S×C4IoT and how our framework manages the dynamic evolution that naturally result from IoT devices life-cycles. Furthermore, we show that S×C4IoT can allow legacy S×C-noncompliant devices to participate with an S×C network, we illustrate two different integration approaches, and we show how they fit into S×C4IoT. Last, we implement the framework as a proof-of-concept. We show the feasibility of S×C4IoT and we run different experiments to evaluate its impact in terms of communication and storage space overhead.

Download Full-text

Integration of Heterogeneous Devices and Communication Models via the Cloud in the Constrained Internet of Things

International Journal of Distributed Sensor Networks ◽

10.1155/2015/683425 ◽

2015 ◽

Vol 2015 ◽

pp. 1-16 ◽

Cited By ~ 9

Author(s):

Floris Van den Abeele ◽

Jeroen Hoebeke ◽

Ingrid Moerman ◽

Piet Demeester

Keyword(s):

Internet Of Things ◽

Network Connectivity ◽

Heterogeneous Devices ◽

Communication Models ◽

Iot Devices ◽

Control And Management ◽

The Impact ◽

Communication Methods ◽

The Internet Of Things ◽

Constrained Devices

As the Internet of Things continues to expand in the coming years, the need for services that span multiple IoT application domains will continue to increase in order to realize the efficiency gains promised by the IoT. Today, however, service developers looking to add value on top of existing IoT systems are faced with very heterogeneous devices and systems. These systems implement a wide variety of network connectivity options, protocols (proprietary or standards-based), and communication methods all of which are unknown to a service developer that is new to the IoT. Even within one IoT standard, a device typically has multiple options for communicating with others. In order to alleviate service developers from these concerns, this paper presents a cloud-based platform for integrating heterogeneous constrained IoT devices and communication models into services. Our evaluation shows that the impact of our approach on the operation of constrained devices is minimal while providing a tangible benefit in service integration of low-resource IoT devices. A proof of concept demonstrates the latter by means of a control and management dashboard for constrained devices that was implemented on top of the presented platform. The results of our work enable service developers to more easily implement and deploy services that span a wide variety of IoT application domains.

Download Full-text

Communication Protocol in Internet of Things

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.f4705.049620 ◽

2020 ◽

Vol 9 (4) ◽

pp. 1737-1740

Keyword(s):

Internet Of Things ◽

Communication Protocol ◽

Communication Protocols ◽

Raspberry Pi ◽

The Internet ◽

Message Queue ◽

Machine To Machine Communication ◽

Machine Communication ◽

The Internet Of Things ◽

Constrained Devices

Constrained devices are commonly used in the Internet of Things systems. Since these devices have limited communication and computation resources, communication protocols which are lightweight are needed. A lightweight protocol called Message Queue Telemetry Transport, which is a publish/subscribe messaging protocol, is utilized with the constrained devices. Hence, this paper is aimed at monitoring data by using machine-to-machine communication protocol with the help of an IoT device, Raspberry Pi.

Download Full-text

Force Multiplier Effect of Futuristic Battlefield Preparedness by Adapting the Internet of Things (IoT) Concept

Indonesian Journal of Electrical Engineering and Computer Science ◽

10.11591/ijeecs.v9.i2.pp316-321 ◽

2018 ◽

Vol 9 (2) ◽

pp. 316 ◽

Cited By ~ 1

Author(s):

G Kannan ◽

N Manoharan

Keyword(s):

Internet Of Things ◽

The Internet ◽

Embedded Computing ◽

Ubiquitous Sensing ◽

Multiplier Effect ◽

Iot Devices ◽

Primary Focus ◽

Battlefield Environment ◽

The Internet Of Things

<span lang="EN-US">The present-day Battlefield environment depicts a scenario wherein various heterogeneous warfighting vehicles/equipment are conglomerated, and the high command takes a decision based on the different inputs and data received from the warfighting entities. This aspect generates voluminous data and communication directives occupying the complete frequency spectrum and moving up and down. This paper proposes a scheme based on the Internet of Things (IoT) philosophy. The primary focus will be to deploy ubiquitous sensing enabled technologies (IoT) in all the battlefield fighting entities. This medium in effect means the interconnection of uniquely identifiable embedded computing-like devices and formulation of an internet infrastructure. The newly proposed IoT devices in all the battlefield fighting entities will gather, infer and understand in-situ commands and data and in turn pass on to the highest decision-making authority. A simple IoT based model will be deployed in the battlefield scenario enhancing the force multiplier effect.</span>

Download Full-text

CoopECC: A Collaborative Cryptographic Mechanism for the Internet of Things

Journal of Sensors ◽

10.1155/2021/8878513 ◽

2021 ◽

Vol 2021 ◽

pp. 1-8

Author(s):

Wassim Jerbi ◽

Abderrahmen Guermazi ◽

Omar Cheikhrouhou ◽

Hafedh Trabelsi

Keyword(s):

Cluster Head ◽

Computation Time ◽

Cryptographic Protocol ◽

Computing Power ◽

Security Issues ◽

Iot Applications ◽

Iot Devices ◽

Power And Energy ◽

The Internet Of Things ◽

Constrained Devices

The emergence of IoT applications has risen the security issues of the big data sent by the IoT devices. The design of lightweight cryptographic algorithms becomes a necessity. Moreover, elliptic curve cryptography (ECC) is a promising cryptographic technology that has been used in IoT. However, connected objects are resource-constrained devices, with limited computing power and energy power. Driven by these motivations, we propose and develop a secure cryptographic protocol called CoopECC which leverages the organization of IoT nodes into cluster to distribute the load of cluster head (CH) among its cluster members. This technique proves that it optimizes the resource consumption of the IoT nodes including computation and energy consumption. Performance evaluation, done with TOSSIM simulator, shows that the proposed protocol CoopECC outperforms the original ECC algorithm, in terms of computation time, consumed energy, and the network’s lifespan.

Download Full-text

An Efficient Interface for the Integration of IoT Devices with Smart Grids

Sensors ◽

10.3390/s20102849 ◽

2020 ◽

Vol 20 (10) ◽

pp. 2849

Author(s):

Felipe Viel ◽

Luis Augusto Silva ◽

Valderi Reis Quietinho Leithardt ◽

Juan Francisco De Paz Santana ◽

Raimundo Celeste Ghizoni Teive ◽

...

Keyword(s):

Information Exchange ◽

Smart Grids ◽

Communication Protocol ◽

Power Grids ◽

Communication Overhead ◽

Software Interface ◽

Iot Devices ◽

The Many ◽

The Internet Of Things ◽

Efficient Software

The evolution of computing devices and ubiquitous computing has led to the development of the Internet of Things (IoT). Smart Grids (SGs) stand out among the many applications of IoT and comprise several embedded intelligent technologies to improve the reliability and the safety of power grids. SGs use communication protocols for information exchange, such as the Open Smart Grid Protocol (OSGP). However, OSGP does not support the integration with devices compliant with the Constrained Application Protocol (CoAP), a communication protocol used in conventional IoT systems. In this sense, this article presents an efficient software interface that provides integration between OSGP and CoAP. The results obtained demonstrate the effectiveness of the proposed solution, which presents low communication overhead and enables the integration between IoT and SG systems.

Download Full-text

Secure Communications for Resource-Constrained IoT Devices

Sensors ◽

10.3390/s20133637 ◽

2020 ◽

Vol 20 (13) ◽

pp. 3637

Author(s):

Abd-Elhamid M. Taha ◽

Abdulmonem M. Rashwan ◽

Hossam S. Hassanein

Keyword(s):

Internet Of Things ◽

Secure Communication ◽

The Internet ◽

Secure Communications ◽

Message Authentication ◽

Authentication Codes ◽

Resource Constrained ◽

Iot Devices ◽

The Internet Of Things ◽

Constrained Devices

The importance of securing communications on the Internet of Things (IoT) cannot be overstated. This is especially the case in light of the increasing proliferation of IoT devices and instances, as well as the growing dependence on their usage. Meanwhile, there have recently been mounting concerns over a wide array of vulnerabilities in IoT communications. The objective of this work is to address constraints in IoT devices that are “resource-constrained”, which are devices that are limited in terms of computing, energy, communication, or range capabilities, whether in terms of nominal or temporal limitations. Specifically, we propose a framework for resource-aiding constrained devices to facilitate secure communication. Without loss of generalization, the framework’s viability is illustrated by focusing on a group of security functions that utilize message authentication codes, which is a strongly representative example of resource-intensive security functions. Aspects of the framework are further demonstrated in processing cores commonly used in commercial IoT devices.

Download Full-text

Implementing a Symmetric Lightweight Cryptosystem in Highly Constrained IoT Devices by Using a Chaotic S-Box

Symmetry ◽

10.3390/sym13010129 ◽

2021 ◽

Vol 13 (1) ◽

pp. 129

Author(s):

Badr M. Alshammari ◽

Ramzi Guesmi ◽

Tawfik Guesmi ◽

Haitham Alsaif ◽

Ahmed Alzamil

Keyword(s):

Secure Communication ◽

Ieee 802.15.4 ◽

Security Analysis ◽

Advanced Encryption Standard ◽

The Internet ◽

Iot Devices ◽

The One ◽

Nist Tests ◽

The Internet Of Things ◽

Constrained Devices

In the Internet of Things (IoT), a lot of constrained devices are interconnected. The data collected from those devices can be the target of cyberattacks. In this paper, a lightweight cryptosystem that can be efficiently implemented in highly constrained IOT devices is proposed. The algorithm is mainly based on Advanced Encryption Standard (AES) and a new chaotic S-box. Since its adoption by the IEEE 802.15.4 protocol, AES in embedded platforms have been increasingly used. The main cryptographic properties of the generated S-box have been validated. The randomness of the generated S-box has been confirmed by the NIST tests. Experimental results and security analysis demonstrated that the cryptosystem can, on the one hand, reach good encryption results and respects the limitation of the sensor’s resources, on the other hand. So the proposed solution could be reliably applied in image encryption and secure communication between networked smart objects.

Download Full-text

Hardware Implementation of Secure Lightweight Cryptographic Designs for IoT Applications

Security and Communication Networks ◽

10.1155/2020/8860598 ◽

2020 ◽

Vol 2020 ◽

pp. 1-13

Author(s):

Wajih El Hadj Youssef ◽

Ali Abdelli ◽

Fethi Dridi ◽

Mohsen Machhout

Keyword(s):

High Performance ◽

Security Analysis ◽

Smart Devices ◽

Security Level ◽

Test Results ◽

Cryptographic Primitives ◽

Application Deployment ◽

Iot Devices ◽

The Internet Of Things ◽

Constrained Devices

The recent expansion of the Internet of Things is creating a new world of smart devices in which security implications are very significant. Besides the claimed security level, the IoT devices are usually featured with constrained resources, such as low computation capability, low memory, and limited battery. Lightweight cryptographic primitives are proposed in the context of IoT while considering the trade-off between security guarantee and good performance. In this paper, we present optimized hardware, lightweight cryptographic designs, of 32-bit datapath, LED 64/128, SIMON 64/128, and SIMECK 64/128 algorithms, for constrained devices. Our proposed designs are investigated on Spartan-3, Spartan-6, and Zynq-7000 FPGA platforms in terms of area, speed, efficiency, and power consumption. The proposed designs achieved a high throughput up to 891.99 Mbps, 838.95 Mbps, and 210.13 Mbps for SIMECK 64/128, SIMON 64/128, and LED 64/128 on Zynq-7000, respectively. A deep comparison between our three proposed designs is elaborated on different FPGA families for adequate FPGAs-based application deployment. Test results and security analysis show that not only can our proposed designs achieve good encryption results with high performance and a low reduced cost but also they are secure enough to resist statistical attacks.

Download Full-text