ESIoT

Enabling secure management of the internet of things

Jun Young Kim, Wen Hu, Dilip Sarkar, Sanjay Jha

Research output: Chapter in Book/Report/Conference proceedingConference contribution

7 Citations (Scopus)

Abstract

The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.

Original languageEnglish (US)
Title of host publicationProceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017
PublisherAssociation for Computing Machinery, Inc
Pages219-229
Number of pages11
ISBN (Electronic)9781450350846
DOIs
StatePublished - Jul 18 2017
Event10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017 - Boston, United States
Duration: Jul 18 2017Jul 20 2017

Other

Other10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017
CountryUnited States
CityBoston
Period7/18/177/20/17

Fingerprint

Cryptography
Servers
Scalability
Access control
Internet
Network protocols
Internet of things
Communication
Industry

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Safety, Risk, Reliability and Quality

Cite this

Kim, J. Y., Hu, W., Sarkar, D., & Jha, S. (2017). ESIoT: Enabling secure management of the internet of things. In Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017 (pp. 219-229). Association for Computing Machinery, Inc. https://doi.org/10.1145/3098243.3098252

ESIoT : Enabling secure management of the internet of things. / Kim, Jun Young; Hu, Wen; Sarkar, Dilip; Jha, Sanjay.

Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017. Association for Computing Machinery, Inc, 2017. p. 219-229.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Kim, JY, Hu, W, Sarkar, D & Jha, S 2017, ESIoT: Enabling secure management of the internet of things. in Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017. Association for Computing Machinery, Inc, pp. 219-229, 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017, Boston, United States, 7/18/17. https://doi.org/10.1145/3098243.3098252
Kim JY, Hu W, Sarkar D, Jha S. ESIoT: Enabling secure management of the internet of things. In Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017. Association for Computing Machinery, Inc. 2017. p. 219-229 https://doi.org/10.1145/3098243.3098252
Kim, Jun Young ; Hu, Wen ; Sarkar, Dilip ; Jha, Sanjay. / ESIoT : Enabling secure management of the internet of things. Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017. Association for Computing Machinery, Inc, 2017. pp. 219-229
@inproceedings{b3b077265e1a44bdb96252587b6cf387,
title = "ESIoT: Enabling secure management of the internet of things",
abstract = "The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.",
author = "Kim, {Jun Young} and Wen Hu and Dilip Sarkar and Sanjay Jha",
year = "2017",
month = "7",
day = "18",
doi = "10.1145/3098243.3098252",
language = "English (US)",
pages = "219--229",
booktitle = "Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017",
publisher = "Association for Computing Machinery, Inc",

}

TY - GEN

T1 - ESIoT

T2 - Enabling secure management of the internet of things

AU - Kim, Jun Young

AU - Hu, Wen

AU - Sarkar, Dilip

AU - Jha, Sanjay

PY - 2017/7/18

Y1 - 2017/7/18

N2 - The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.

AB - The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.

UR - http://www.scopus.com/inward/record.url?scp=85027724220&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85027724220&partnerID=8YFLogxK

U2 - 10.1145/3098243.3098252

DO - 10.1145/3098243.3098252

M3 - Conference contribution

SP - 219

EP - 229

BT - Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017

PB - Association for Computing Machinery, Inc

ER -