The University of Southampton
×
Filter your search:
University of Southampton Institutional Repository

ASSURE: A hardware-baSed SecUrity pRotocol for resourcE-constrained IoT systems

ASSURE: A hardware-baSed SecUrity pRotocol for resourcE-constrained IoT systems
ASSURE: A hardware-baSed SecUrity pRotocol for resourcE-constrained IoT systems
The internet of Things technology is expected to generate tremendous economic benefits; this promise is undermined by major security threats.
This is mainly due to the ubiquitous nature of this technology, which makes it easy for potential adversities to have access to IoT devices and carry well-established attacks. The development of defence mechanisms, in this case, is a challenging task, this is due to the fact that most IoT devices have limited computing and energy resources, which makes it hard to implement classic cryptographic algorithms. This paper address this challenge by proposing a lightweight mutual authentication and key agreement protocol named ASSURE based on Rivest Cipher (RC5) and physically unclonable functions (PUFs). To understand the effectiveness of this protocol, a rigorous security analysis under various cyberattack scenarios is performed. In order to evaluate the overheads of the proposed solution, a wireless sensor network using typical IoT devices
called Zolertia Zoul re-mote, is constructed. The functionality of the proposed scheme is verified using a server-client configuration. Then energy consumption and memory utilisation are estimated and compared with the existing solutions, namely: the DTLS (datagram transport layer security) handshake protocol in pre-shared secret (Key) mode and UDP (user datagram protocol). Experimental analysis results indicate that the proposed protocol can save up to 39.5% energy and uses 14% less memory compared to the DTLS handshake protocol.
2509-3436
1-18
Yilmaz, Yildiran
6b5cc6e0-2711-4c0c-8f68-5bca77184d08
Aniello, Leonardo
9846e2e4-1303-4b8b-9092-5d8e9bb514c3
Halak, Basel
8221f839-0dfd-4f81-9865-37def5f79f33
Yilmaz, Yildiran
6b5cc6e0-2711-4c0c-8f68-5bca77184d08
Aniello, Leonardo
9846e2e4-1303-4b8b-9092-5d8e9bb514c3
Halak, Basel
8221f839-0dfd-4f81-9865-37def5f79f33

Yilmaz, Yildiran, Aniello, Leonardo and Halak, Basel (2021) ASSURE: A hardware-baSed SecUrity pRotocol for resourcE-constrained IoT systems. Journal of Hardware and Systems Security, 5, 1-18. (doi:10.1007/s41635-020-00102-0).

Record type: Article

Abstract

The internet of Things technology is expected to generate tremendous economic benefits; this promise is undermined by major security threats.
This is mainly due to the ubiquitous nature of this technology, which makes it easy for potential adversities to have access to IoT devices and carry well-established attacks. The development of defence mechanisms, in this case, is a challenging task, this is due to the fact that most IoT devices have limited computing and energy resources, which makes it hard to implement classic cryptographic algorithms. This paper address this challenge by proposing a lightweight mutual authentication and key agreement protocol named ASSURE based on Rivest Cipher (RC5) and physically unclonable functions (PUFs). To understand the effectiveness of this protocol, a rigorous security analysis under various cyberattack scenarios is performed. In order to evaluate the overheads of the proposed solution, a wireless sensor network using typical IoT devices
called Zolertia Zoul re-mote, is constructed. The functionality of the proposed scheme is verified using a server-client configuration. Then energy consumption and memory utilisation are estimated and compared with the existing solutions, namely: the DTLS (datagram transport layer security) handshake protocol in pre-shared secret (Key) mode and UDP (user datagram protocol). Experimental analysis results indicate that the proposed protocol can save up to 39.5% energy and uses 14% less memory compared to the DTLS handshake protocol.

Text
eprint_v - Accepted Manuscript
Available under License University of Southampton Accepted Manuscript Licence.
Download (2MB)

More information

Accepted/In Press date: 20 August 2020
e-pub ahead of print date: 4 September 2020
Published date: 1 March 2021
Learn more about Cyber Security research Learn more about School of Electronics and Computer Science research Learn more about Cyber Security research

Identifiers

Local EPrints ID: 443504
URI: http://eprints.soton.ac.uk/id/eprint/443504
DOI: doi:10.1007/s41635-020-00102-0
ISSN: 2509-3436
PURE UUID: 9d13dd44-6b86-4e4f-bbd2-6b50e3cc79fc
ORCID for Yildiran Yilmaz: ORCID iD orcid.org/0000-0002-5337-6090
ORCID for Leonardo Aniello: ORCID iD orcid.org/0000-0003-2886-8445
ORCID for Basel Halak: ORCID iD orcid.org/0000-0003-3470-7226

Catalogue record

Date deposited: 27 Aug 2020 16:31
Last modified: 17 Mar 2024 03:48

Export record

Altmetrics

Contributors

Author: Yildiran Yilmaz ORCID iD
Author: Leonardo Aniello ORCID iD
Author: Basel Halak ORCID iD

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Library staff additional information
Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×