معماری تاسیس انجمن امن بر اساس تکنولوژی های خودراه اندازی
Abstract
1. Introduction
2. Related work
3. Preliminaries
4. Security associations establishment
5. Interactions description
6. IoT use case: Building Automation
7. Evaluation results
8. Conclusions and future work
Acknowledgments
References
Abstract
The next generation of IoT scenarios must consider security aspects as a first class component. As a core aspect, key management is crucial for the establishment of security associations between endpoints. According to it, in this work we propose a novel architecture of security association establishment based on bootstrapping technologies in order to manage the life-cycle of cryptographic keys in IoT. Based on our previous work, we propose a key derivation process by using a lightweight bootstrapping mechanism specifically designed for IoT. Then, the derived cryptographic material is used as an authentication credential of the EDHOC protocol, which represents a standardisation effort for key agreement in IoT. EDHOC is an application layer alternative to the DTLS handshake, in order to provide end-to-end security properties even in the presence of intermediate entities, such as proxies. Evaluation results prove the feasibility of our approach, which represents one of the first efforts to consider application layer security approaches for the IoT.