Title: Architecture of security association establishment based on bootstrapping technologies for enabling secure IoT infrastructures
Authors: PEREZ SALVADORGARCIA CARRILLO DANMARIN LOPEZ RAFAELHERNANDEZ RAMOS JOSE LUISMARIN PEREZ RAFAELSKARMETA ANTONIO
Citation: FUTURE GENERATION COMPUTER SYSTEMS-THE INTERNATIONAL JOURNAL OF ESCIENCE vol. 95 p. 570-585
Publisher: ELSEVIER SCIENCE BV
Publication Year: 2019
JRC N°: JRC113136
ISSN: 0167-739X (online)
URI: https://www.sciencedirect.com/science/article/pii/S0167739X18325573
http://publications.jrc.ec.europa.eu/repository/handle/JRC113136
DOI: 10.1016/j.future.2019.01.038
Type: Articles in periodicals and books
Abstract: The next generation of IoT scenarios must consider security aspects as a first class component. As a core aspect, key management is crucial for the establishment of security associations between endpoints. According to it, in this work we propose a novel architecture of security association establishment based on bootstrapping technologies in order to manage the life-cycle of cryptographic keys in IoT. Based on our previous work, we propose a key derivation process by using a lightweight bootstrapping mechanism specifically designed for IoT. Then, the derived cryptographic material is used as an authentication credential of the EDHOC protocol, which represents a standardization effort for key agreement in IoT. EDHOC is an application layer alternative to the DTLS handshake, in order to provide end-to-end security properties even in the presence of intermediate entities, such as proxies. Evaluation results prove the feasibility of our approach, which represents one of the first efforts to consider application layer security approaches for the IoT.
JRC Directorate:Space, Security and Migration

Files in This Item:
There are no files associated with this item.


Items in repository are protected by copyright, with all rights reserved, unless otherwise indicated.