book

IoT Security

by Madhusanka Liyanage, An Braeken, Pardeep Kumar, Mika Ylianttila

February 2020

Intermediate to advanced

320 pages

11h 11m

English

Wiley

Read now

Unlock full access

IoTThe Need for SecurityThe Need for AuthenticationIntended AudienceBook Organization
1.1 Introduction1.2 IoT Architecture and Taxonomy1.3 Standardization Efforts1.4 IoT ApplicationsAcknowledgementReferences
2.1 Introduction2.2 Attacks and Countermeasures2.3 Authentication and Authorization2.4 Other Security Features and Related Issues2.5 Discussion2.6 Future Research Directions2.7 ConclusionsReferences
3.1 Introduction3.2 Related Work3.3 System Model and Assumptions3.4 Scheme in Normal Mode3.5 Authentication3.6 Scheme in Change Mode3.7 Security Analysis3.8 Efficiency3.9 ConclusionsAcknowledgementReferences

4.1 Introduction to ECC4.2 ECC Based Implicit Certificates4.3 ECC‐Based Signcryption4.4 ECC‐Based Group Communication4.5 Implementation Aspects4.6 DiscussionReferences
5.1 Introduction5.2 Lattice‐Based Cryptography5.3 Lattice‐Based Primitives5.4 Lattice‐Based Cryptography for IoT5.5 ConclusionReferences
6.1 Introduction6.2 Related Work6.3 Network Model and Adversary Model6.4 Proposed Scheme6.5 Security and Performance Evaluation6.6 ConclusionReferences
7.1 Introduction7.2 Related Work7.3 Network Model, Threat Model and Security Requirements7.4 Proposed Access Control Model in IIoT7.5 Security and Performance Evaluations7.6 ConclusionsReferences
8.1 Introduction to Gadget‐Free World8.2 Introduction to Biometrics8.3 Gadget‐Free Authentication8.4 Preliminary Aspects8.5 The System8.6 Security Analysis8.7 Performance Analysis8.8 ConclusionsAcknowledgementReferences
9.1 Introduction9.2 IoT‐Related Concerns9.3 Design Decisions9.4 WebMaDa's History9.5 WebMaDa 2.19.6 Implementation9.7 Proof of Operability9.8 Summary and ConclusionsReferencesNotes
10.1 Introduction10.2 Related Work10.3 Preliminaries10.4 Proposed System10.5 Security Evaluation10.6 Performance10.7 ConclusionsReferences
11.1 Introduction11.2 System Scheme: Synchronization without Correlation11.3 The Chaotic Followers11.4 The Complete System11.5 Conclusions and OutlookAcknowledgementsAuthor Contributions StatementAdditional InformationReferences
12.1 Introduction12.2 Remote Patient Monitoring Architecture12.3 Security Related to eHealth12.4 Remote Patient Monitoring Security12.5 ConclusionReferences
13.1 Introduction13.2 Preliminaries13.3 Proposed Scheme13.4 Security Analysis13.5 Performance Analysis13.6 ConclusionsReferences
14.1 Introduction14.2 Related Work14.3 Overview of Use‐Cases and Security Goals14.4 Proposed Approach14.5 Evaluation Results14.6 ConclusionReferencesNotes

Content preview from IoT Security

3Symmetric Key‐Based Authentication with an Application to Wireless Sensor Networks

An Braeken

Abstract

This chapter starts with an introduction on different methods to provide key establishment and authentication using symmetric key‐based mechanisms limited to hashing, xoring and encryption/decryption operations. Based on an idea coming from the context of multi‐server authentication, and already applied in several IoT contexts, we present a new key management protocol for wireless sensor networks with hierarchical architecture, using solely symmetric key‐based operations. The protocol establishes confidentiality, integrity, and authentication. It supports various communication scenarios, has limited storage requirements, is highly energy efficient by minimizing the number of communication phases and cryptographic operations, and avoids message fragmentation as much as possible. With the pre‐installation of an individual secret key with the base station and some additional key material different for cluster head and cluster node, all possible keys in the network can be efficiently on‐the‐fly computed and updated. We discuss the differences with the well‐known LEAP key management system for wireless sensor networks.

3.1 Introduction

When a common secret is shared between two entities, symmetric key schemes in authenticated encryption (AE) mode, like for instance AES‐GCM or AES‐CCM, can be applied. However, in order to construct such an authenticated key, called the session key, ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Practical Internet of Things Security

Brian Russell, Drew Van Duren

Demystifying Internet of Things Security: Successful IoT Device/Edge and Platform Security Deployment

Sunil Cheruvu, Anil Kumar, Ned Smith, David M. Wheeler

Securing the Internet of Things

Shancang Li, Li Da Xu

Orchestrating and Automating Security for the Internet of Things: Delivering Advanced Security Capabilities from Edge to Cloud for IoT

Anthony Sabella, Rik Irons-Mclean, Marcelo Yannuzzi

Publisher Resources

ISBN: 9781119527923Purchase book

Abstract