A Study on Product Authentication and Authorization

The proliferation of smart devices in the Internet of Things (IoT) networks creates significant security challenges for the communications between such devices. Blockchain is a decentralized and distributed technology that can potentially tackle the security problems within the 5G-enabled IoT networks. This paper proposes a Multi layer Blockchain Security model to protect IoT networks while simplifying the implementation. The concept of clustering is utilized in order to facilitate the multi-layer architecture. The K-unknown clusters are defined within the IoT network by applying techniques that utillize a hybrid Evolutionary Computation Algorithm while using Simulated Annealing and Genetic Algorithms. The chosen cluster heads are responsible for local authentication and authorization. Local private blockchain implementation facilitates communications between the cluster heads and relevant base stations. Such a blockchain enhances credibility assurance and security while also providing a network authentication mechanism. The open-source Hyperledger Fabric Blockchain platform is deployed for the proposed model development. Base stations adopt a global blockchain approach to communicate with each other securely. The simulation results demonstrate that the proposed clustering algorithm performs well when compared to the earlier reported approaches. The proposed lightweight blockchain model is also shown to be better suited to balance network latency and throughput as compared to a traditional global blockchain.

Download Full-text

A Secure and Scalable Smart Home Gateway to Bridge Technology Fragmentation

Sensors ◽

10.3390/s21113587 ◽

2021 ◽

Vol 21 (11) ◽

pp. 3587

Author(s):

Ezequiel Simeoni ◽

Eugenio Gaeta ◽

Rebeca I. García-Betances ◽

Dave Raggett ◽

Alejandro M. Medrano-Gil ◽

...

Keyword(s):

Smart Home ◽

Home Automation ◽

Dynamic Configuration ◽

Home Gateway ◽

Security Authentication ◽

Living Lab ◽

Automation Systems ◽

Authentication And Authorization ◽

Iot Devices ◽

Bridge Technology

Internet of Things (IoT) technologies are already playing an important role in our daily activities as we use them and rely on them to increase our abilities, connectivity, productivity and quality of life. However, there are still obstacles to achieving a unique interface able to transfer full control to users given the diversity of protocols, properties and specifications in the varied IoT ecosystem. Particularly for the case of home automation systems, there is a high degree of fragmentation that limits interoperability, increasing the complexity and costs of developments and holding back their real potential of positively impacting users. In this article, we propose implementing W3C’s Web of Things Standard supported by home automation ontologies, such as SAREF and UniversAAL, to deploy the Living Lab Gateway that allows users to consume all IoT devices from a smart home, including those physically wired and using KNX® technology. This work, developed under the framework of the EC funded Plan4Act project, includes relevant features such as security, authentication and authorization provision, dynamic configuration and injection of devices, and devices abstraction and mapping into ontologies. Its deployment is explained in two scenarios to show the achieved technology’s degree of integration, the code simplicity for developers and the system’s scalability: one consisted of external hardware interfacing with the smart home, and the other of the injection of a new sensing device. A test was executed providing metrics that indicate that the Living Lab Gateway is competitive in terms of response performance.

Download Full-text

IMSC-EIoTD: Identity Management and Secure Communication for Edge IoT Devices

Sensors ◽

10.3390/s20226546 ◽

2020 ◽

Vol 20 (22) ◽

pp. 6546

Author(s):

Kazi Masum Sadique ◽

Rahim Rahmani ◽

Paul Johannesson

Keyword(s):

Secure Communication ◽

Identity Management ◽

Security Protocols ◽

Spin Model ◽

The Internet ◽

Human Society ◽

Proposed Model ◽

Authentication And Authorization ◽

Quality Of Living ◽

Iot Devices

The Internet of things (IoT) will accommodate several billions of devices to the Internet to enhance human society as well as to improve the quality of living. A huge number of sensors, actuators, gateways, servers, and related end-user applications will be connected to the Internet. All these entities require identities to communicate with each other. The communicating devices may have mobility and currently, the only main identity solution is IP based identity management which is not suitable for the authentication and authorization of the heterogeneous IoT devices. Sometimes devices and applications need to communicate in real-time to make decisions within very short times. Most of the recently proposed solutions for identity management are cloud-based. Those cloud-based identity management solutions are not feasible for heterogeneous IoT devices. In this paper, we have proposed an edge-fog based decentralized identity management and authentication solution for IoT devices (IoTD) and edge IoT gateways (EIoTG). We have also presented a secure communication protocol for communication between edge IoT devices and edge IoT gateways. The proposed security protocols are verified using Scyther formal verification tool, which is a popular tool for automated verification of security protocols. The proposed model is specified using the PROMELA language. SPIN model checker is used to confirm the specification of the proposed model. The results show different message flows without any error.

Download Full-text

Authentication and Authorization Rules Sharing for Internet of Things

Software Networking ◽

10.13052/jsn2445-9739.2017.003 ◽

2016 ◽

Vol 2017 (1) ◽

pp. 35-52 ◽

Cited By ~ 1

Author(s):

Michal Trnka ◽

Tomas Cerny ◽

◽

Keyword(s):

Internet Of Things ◽

Authentication And Authorization

Download Full-text

Formal Verification of Authentication and Service Authorization Protocols in 5G-Enabled Device-to-Device Communications Using ProVerif

Electronics ◽

10.3390/electronics10131608 ◽

2021 ◽

Vol 10 (13) ◽

pp. 1608

Author(s):

Ed Kamya Kiyemba Edris ◽

Mahdi Aiash ◽

Jonathan Loo

Keyword(s):

Service Providers ◽

Security Analysis ◽

Mobile Network ◽

Network Services ◽

Control Mechanisms ◽

D2d Communications ◽

Fifth Generation ◽

Device To Device ◽

Pi Calculus ◽

Authentication And Authorization

Device-to-Device (D2D) communications will be used as an underlay technology in the Fifth Generation mobile network (5G), which will make network services of multiple Service Providers (SP) available anywhere. The end users will be allowed to access and share services using their User Equipments (UEs), and thus they will require seamless and secured connectivity. At the same time, Mobile Network Operators (MNOs) will use the UE to offload traffic and push contents closer to users relying on D2D communications network. This raises security concerns at different levels of the system architecture and highlights the need for robust authentication and authorization mechanisms to provide secure services access and sharing between D2D users. Therefore, this paper proposes a D2D level security solution that comprises two security protocols, namely, the D2D Service security (DDSec) and the D2D Attributes and Capability security (DDACap) protocols, to provide security for access, caching and sharing data in network-assisted and non-network-assisted D2D communications scenarios. The proposed solution applies Identity-based Encryption (IBE), Elliptic Curve Integrated Encryption Scheme (ECIES) and access control mechanisms for authentication and authorization procedures. We formally verified the proposed protocols using ProVerif and applied pi calculus. We also conducted a security analysis of the proposed protocols.

Download Full-text