Lightweight secure bootstrap and message attestation in the Internet of Things

Gritti, Clémentine; Molva, Refik; Önen, Melek
SAC 2018, 33rd ACM/SIGAPP Symposium On Applied Computing, April 9-13, 2018, Pau, France

Internet of Things (IoT) offers new opportunities for business, technology and science but it also raises new challenges in terms of security and privacy, mainly because of the inherent characteristics of this environment: IoT devices come from a variety of manufacturers and operators and these devices suffer from constrained resources in terms of computation, communication and storage. In this paper, we address the problem of trust establishment for IoT and propose a security solution that consists of a secure bootstrap mechanism for device identification as well as a message attestation mechanism for aggregate response validation. To achieve both security requirements, we approach the problem in a confined environment, named SubNets of Things (SNoT), where various devices depend on it. In this context, devices are uniquely and securely identified thanks to their environment and their role within it. Additionally, the underlying message authentication technique features signature aggregation and hence, generates one
compact response on behalf of all devices in the subnet.

DOI
HAL
Type:
Conférence
City:
Pau
Date:
2018-04-09
Department:
Sécurité numérique
Eurecom Ref:
5392
Copyright:
© ACM, 2018. This is the author's version of the work. It is posted here by permission of ACM for your personal use. Not for redistribution. The definitive version was published in SAC 2018, 33rd ACM/SIGAPP Symposium On Applied Computing, April 9-13, 2018, Pau, France http://dx.doi.org/10.1145/3167132.3167218

PERMALINK : https://www.eurecom.fr/publication/5392