ESIoT: Enabling secure management of the internet of things

Jun Young Kim; Wen Hu; Dilip Sarkar; Sanjay Jha

doi:10.1145/3098243.3098252

ESIoT: Enabling secure management of the internet of things

Jun Young Kim, Wen Hu, Dilip Sarkar, Sanjay Jha

Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

10 Scopus citations

Abstract

The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.

Original language	English (US)
Title of host publication	Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017
Publisher	Association for Computing Machinery, Inc
Pages	219-229
Number of pages	11
ISBN (Electronic)	9781450350846
DOIs	https://doi.org/10.1145/3098243.3098252
State	Published - Jul 18 2017
Event	10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017 - Boston, United States Duration: Jul 18 2017 → Jul 20 2017

Other

Other	10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017
Country	United States
City	Boston
Period	7/18/17 → 7/20/17

ASJC Scopus subject areas

Computer Networks and Communications
Safety, Risk, Reliability and Quality

Access to Document

10.1145/3098243.3098252

Fingerprint Dive into the research topics of 'ESIoT: Enabling secure management of the internet of things'. Together they form a unique fingerprint.

Cite this

Kim, J. Y., Hu, W., Sarkar, D., & Jha, S. (2017). ESIoT: Enabling secure management of the internet of things. In Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017 (pp. 219-229). Association for Computing Machinery, Inc. https://doi.org/10.1145/3098243.3098252

ESIoT : Enabling secure management of the internet of things. / Kim, Jun Young; Hu, Wen; Sarkar, Dilip; Jha, Sanjay.

Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017. Association for Computing Machinery, Inc, 2017. p. 219-229.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Kim, JY, Hu, W, Sarkar, D & Jha, S 2017, ESIoT: Enabling secure management of the internet of things. in Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017. Association for Computing Machinery, Inc, pp. 219-229, 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017, Boston, United States, 7/18/17. https://doi.org/10.1145/3098243.3098252

@inproceedings{b3b077265e1a44bdb96252587b6cf387,

title = "ESIoT: Enabling secure management of the internet of things",

abstract = "The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.",

author = "Kim, {Jun Young} and Wen Hu and Dilip Sarkar and Sanjay Jha",

year = "2017",

month = jul,

day = "18",

doi = "10.1145/3098243.3098252",

language = "English (US)",

pages = "219--229",

booktitle = "Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017",

publisher = "Association for Computing Machinery, Inc",

note = "10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017 ; Conference date: 18-07-2017 Through 20-07-2017",

}

TY - GEN

T1 - ESIoT

T2 - 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017

AU - Kim, Jun Young

AU - Hu, Wen

AU - Sarkar, Dilip

AU - Jha, Sanjay

PY - 2017/7/18

Y1 - 2017/7/18

N2 - The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.

AB - The Internet of Things (IoT) is an emerging paradigm, where the ubiquitous devices can form the networks and connect to Internet. Security and management of devices remain open challenges for the IoT. We adopt the management framework of industry consortium THREAD, where a group of devices cooperating to accomplish the same task (called policy) are administrated by a designated device called commissioner and together they form a policy group. All these policy groups are further managed by a centralized server. In this hierarchical network structure, the secure distribution of the policy information, access control, and group key from the centralized server to commissioner and its peers become challenging given the pervasive, complex and heterogeneous properties of devices. To solve this, we propose protocols/mechanisms along with a variant of Broadcast Encryption called Secure Identity-Based Broadcast Encryption (SIBBE) and demonstrate the feasibility for secure distribution of information to the IoT devices from centralized server. Most of the related work is based on the Attribute-based Encryption (ABE) for IoT devices, which has scalability issues with the number of attributes. Our experimental and simulation evaluations show that our scheme outperforms the existing schemes in terms of scalability, latency, and communication overhead.

UR - http://www.scopus.com/inward/record.url?scp=85027724220&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85027724220&partnerID=8YFLogxK

U2 - 10.1145/3098243.3098252

DO - 10.1145/3098243.3098252

M3 - Conference contribution

AN - SCOPUS:85027724220

SP - 219

EP - 229

BT - Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2017

PB - Association for Computing Machinery, Inc

Y2 - 18 July 2017 through 20 July 2017

ER -