Verification of IoT Devices by Means of a Shared Secret
Tomasz Krokosz , Jarogniew Rykowski
AbstractThe paper presents a new proposal to solve the problem of confirming the identity of devices in urban Internet of Things environment. The approach is dedicated to Bluetooth Low Energy devices and broadcast transmission. The main goal of the approach is to obtain a suitable level of security and trust with reasonable energy (resources) usage and minimal cost of cryptographic functions. In the case direct interaction with an IoT device is not possible, all the traditional approaches for the verification of trust fail. Moreover, due to the limited resources of a typical IoT device (memory, CPU, battery life), implementation of traditional verification mechanisms is not feasible. In our approach, the IoT devices are detected and inspected by a dedicated application (executed in a smartphone) prepared by a trusted third party (usually city administrator). The system acts as a base for a trusted, generic information system of the city area. The implementation of trust is based on a modified shared-secret algorithm and an exchange of some parameters at the installation phase for each device. Later on, each device is operating autonomously and off-line, transmitting the information only in broadcast mode. The application, while detecting a signal from a device, is able to assess the level of trust towards the device and the information received. The solution assumes backward compatibility with devices and applications which do not require verification of the trust.
|Publication size in sheets||0.55|
|Book||Borzemski Leszek, Świątek Jerzy, Wilimowska Zofia (eds.): Information Systems Architecture and Technology: Proceedings of 40th Anniversary International Conference on Information Systems Architecture and Technology – ISAT 2019 : Part I, Advances in Intelligent Systems and Computing, vol. 1050, 2020, Springer, ISBN 978-3-030-30439-3, [978-3-030-30440-9], 340 p., DOI:10.1007/978-3-030-30440-9|
|Keywords in Polish||identyfikowalność urządzeń, Internet Rzeczy, dowód autentyczności, współdzielenie sekretu|
|Keywords in English||Device identity, Identity of devices on the Internet of Things, Proof of identity, Secret sharing|
|Score||= 20.0, 24-04-2020, ChapterFromConference|
|Uwagi||First Online: 05 September 2019|
* presented citation count is obtained through Internet information analysis and it is close to the number calculated by the Publish or Perish system.