REST-ful CoAP Message Authentication

2015 International Workshop on Secure Internet of Things (SIoT) Pub Date : 2015-09-21 DOI:10.1109/SIOT.2015.8

Hoai Viet Nguyen, Luigi Lo Iacono

{"title":"REST-ful CoAP Message Authentication","authors":"Hoai Viet Nguyen, Luigi Lo Iacono","doi":"10.1109/SIOT.2015.8","DOIUrl":null,"url":null,"abstract":"One core technology for implementing and integrating the architectural principles of REST into the Internet of Things (IoT) is CoAP, a REST-ful application protocol for constrained networks and devices. Since CoAP defaults to UDP as transport protocol, the protection of CoAP-based systems is realised by the adoption of DTLS, a transport-oriented security protocol for datagrams. This is, however, in many cases not a sufficient safeguard, since messages in distributed systems -- as obtained, e.g., by the adoption of REST -- are commonly transported via multiple intermediate components. This induces the need for message-oriented protection means supplementing transport security for IoT scenarios with high security demands.This paper approaches an important part of this requirement by introducing a REST-ful CoAP message authentication scheme. The overarching goal of this work is, though, to establish a message-oriented security layer for CoAP. Here, specific challenges are stemming from the architectural style REST and the resource-restrictiveness of IoT networks and devices. The present contribution reaches this goal for authentication by proposing a REST-ful CoAP message signature generation and verification scheme.","PeriodicalId":312831,"journal":{"name":"2015 International Workshop on Secure Internet of Things (SIoT)","volume":"27 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-09-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"18","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 International Workshop on Secure Internet of Things (SIoT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SIOT.2015.8","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 18

Abstract

One core technology for implementing and integrating the architectural principles of REST into the Internet of Things (IoT) is CoAP, a REST-ful application protocol for constrained networks and devices. Since CoAP defaults to UDP as transport protocol, the protection of CoAP-based systems is realised by the adoption of DTLS, a transport-oriented security protocol for datagrams. This is, however, in many cases not a sufficient safeguard, since messages in distributed systems -- as obtained, e.g., by the adoption of REST -- are commonly transported via multiple intermediate components. This induces the need for message-oriented protection means supplementing transport security for IoT scenarios with high security demands.This paper approaches an important part of this requirement by introducing a REST-ful CoAP message authentication scheme. The overarching goal of this work is, though, to establish a message-oriented security layer for CoAP. Here, specific challenges are stemming from the architectural style REST and the resource-restrictiveness of IoT networks and devices. The present contribution reaches this goal for authentication by proposing a REST-ful CoAP message signature generation and verification scheme.

查看原文本刊更多论文

REST-ful CoAP消息身份验证

实现REST架构原则并将其集成到物联网(IoT)中的一项核心技术是CoAP，这是一种用于受限网络和设备的restful应用协议。由于CoAP默认使用UDP作为传输协议，基于CoAP的系统的保护是通过采用DTLS来实现的，DTLS是一种面向传输的数据报安全协议。然而，在许多情况下，这并不是一个足够的保护措施，因为分布式系统中的消息——例如，通过采用REST获得的消息——通常通过多个中间组件传输。这导致需要面向消息的保护手段，以补充具有高安全要求的物联网场景的传输安全。本文通过引入REST-ful CoAP消息身份验证方案来解决此需求的重要部分。不过，这项工作的总体目标是为CoAP建立一个面向消息的安全层。在这里，具体的挑战来自于架构风格REST和物联网网络和设备的资源限制。目前的贡献通过提出一个REST-ful CoAP消息签名生成和验证方案来实现这一身份验证目标。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2015 International Workshop on Secure Internet of Things (SIoT)

自引率

0.00%

发文量