Abstract
The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.
| Original language | English (US) |
|---|---|
| Title of host publication | Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017 |
| Publisher | Association for Computing Machinery, Inc |
| Pages | 219-229 |
| Number of pages | 11 |
| ISBN (Electronic) | 9781450350846 |
| DOIs | |
| State | Published - Jul 18 2017 |
| Event | 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017 - Boston, United States Duration: Jul 18 2017 → Jul 20 2017 |
Other
| Other | 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017 |
|---|---|
| Country | United States |
| City | Boston |
| Period | 7/18/17 → 7/20/17 |
Fingerprint
ASJC Scopus subject areas
- Computer Networks and Communications
- Safety, Risk, Reliability and Quality
Cite this
ESIoT : Enabling secure management of the internet of things. / Kim, Jun Young; Hu, Wen; Sarkar, Dilip; Jha, Sanjay.
Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017. Association for Computing Machinery, Inc, 2017. p. 219-229.Research output: Chapter in Book/Report/Conference proceeding › Conference contribution
}
TY - GEN
T1 - ESIoT
T2 - Enabling secure management of the internet of things
AU - Kim, Jun Young
AU - Hu, Wen
AU - Sarkar, Dilip
AU - Jha, Sanjay
PY - 2017/7/18
Y1 - 2017/7/18
N2 - The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.
AB - The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.
UR - http://www.scopus.com/inward/record.url?scp=85027724220&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85027724220&partnerID=8YFLogxK
U2 - 10.1145/3098243.3098252
DO - 10.1145/3098243.3098252
M3 - Conference contribution
AN - SCOPUS:85027724220
SP - 219
EP - 229
BT - Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017
PB - Association for Computing Machinery, Inc
ER -