A Sovereign PKI for IoT Devices Based on the Blockchain Technology

2021 18th International Computer Conference on Wavelet Active Media Technology and Information Processing (ICCWAMTIP) Pub Date : 2021-12-17 DOI:10.1109/ICCWAMTIP53232.2021.9674095

I. Obiri, Jingcong Yang, Qi Xia, Jianbin Gao

{"title":"A Sovereign PKI for IoT Devices Based on the Blockchain Technology","authors":"I. Obiri, Jingcong Yang, Qi Xia, Jianbin Gao","doi":"10.1109/ICCWAMTIP53232.2021.9674095","DOIUrl":null,"url":null,"abstract":"In the Internet of Things (IoT) environment, public key distribution and device authentication remain the most significant security challenges. To validate the authenticity of the identity of IoT devices, existing solutions depend on Public Key Infrastructure (PKI) backed by Certificate Authorities (CA). CA-based PKI has flaws in terms of a single point of failure and certificate transparency. While some blockchain-based PKI solutions exist, they either have a high storage overhead or require a lot of cryptographic computations in the smart contract, which can exceed the transaction size limit on the blockchain network. Hence, we propose a sovereign PKI for IoT devices based on blockchain technology, in which individual controls and maintains the public and private keys for the IoT devices he or she owns. Public keys are kept in a decentralized key store database (DKSB). The blockchain serves as the ground proof for authenticating identities (public keys) on the DKSB. Cryptographic operations like identity authentication are done off-chain without incurring transaction fees.","PeriodicalId":358772,"journal":{"name":"2021 18th International Computer Conference on Wavelet Active Media Technology and Information Processing (ICCWAMTIP)","volume":"3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-12-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 18th International Computer Conference on Wavelet Active Media Technology and Information Processing (ICCWAMTIP)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCWAMTIP53232.2021.9674095","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

Abstract

In the Internet of Things (IoT) environment, public key distribution and device authentication remain the most significant security challenges. To validate the authenticity of the identity of IoT devices, existing solutions depend on Public Key Infrastructure (PKI) backed by Certificate Authorities (CA). CA-based PKI has flaws in terms of a single point of failure and certificate transparency. While some blockchain-based PKI solutions exist, they either have a high storage overhead or require a lot of cryptographic computations in the smart contract, which can exceed the transaction size limit on the blockchain network. Hence, we propose a sovereign PKI for IoT devices based on blockchain technology, in which individual controls and maintains the public and private keys for the IoT devices he or she owns. Public keys are kept in a decentralized key store database (DKSB). The blockchain serves as the ground proof for authenticating identities (public keys) on the DKSB. Cryptographic operations like identity authentication are done off-chain without incurring transaction fees.

查看原文本刊更多论文

基于区块链技术的物联网设备主权PKI

在物联网(IoT)环境中，公钥分发和设备认证仍然是最重要的安全挑战。为了验证物联网设备身份的真实性，现有的解决方案依赖于由证书颁发机构(CA)支持的公钥基础设施(PKI)。基于ca的PKI在单点故障和证书透明度方面存在缺陷。虽然存在一些基于区块链的PKI解决方案，但它们要么具有很高的存储开销，要么需要在智能合约中进行大量的加密计算，这可能超过区块链网络上的交易大小限制。因此，我们提出了一个基于区块链技术的物联网设备主权PKI，其中个人控制和维护他或她拥有的物联网设备的公钥和私钥。公钥保存在分散的密钥存储数据库(DKSB)中。区块链作为DKSB上验证身份(公钥)的基础证明。身份认证等加密操作是在链下完成的，不会产生交易费用。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2021 18th International Computer Conference on Wavelet Active Media Technology and Information Processing (ICCWAMTIP)

自引率

0.00%

发文量