Nazmus Sakib, Md Yeasin Ali, Nuran Mubashshira Momo, Marzia Islam Mumu, Masum Al Nahid, Fairuz Rahaman Chowdhury, Md Sadek Ferdous
{"title":"Secure Ownership Management and Transfer of Consumer Internet of Things Devices with Self-sovereign Identity","authors":"Nazmus Sakib, Md Yeasin Ali, Nuran Mubashshira Momo, Marzia Islam Mumu, Masum Al Nahid, Fairuz Rahaman Chowdhury, Md Sadek Ferdous","doi":"arxiv-2408.17184","DOIUrl":null,"url":null,"abstract":"The popularity of the Internet of Things (IoT) has driven its usage in our\nhomes and industries over the past 10-12 years. However, there have been some\nmajor issues related to identity management and ownership transfer involving\nIoT devices, particularly for consumer IoT devices, e. g. smart appliances such\nas smart TVs, smart refrigerators, and so on. There have been a few attempts to\naddress this issue; however, user-centric and effective ownership and identity\nmanagement of IoT devices have not been very successful so far. Recently,\nblockchain technology has been used to address these issues with limited\nsuccess. This article presents a Self-sovereign Identity (SSI) based system\nthat facilitates a secure and user-centric ownership management and transfer of\nconsumer IoT devices. The system leverages a number of emerging technologies,\nsuch as blockchain and decentralized identifiers (DID), verifiable credentials\n(VC), under the umbrella of SSI. We present the architecture of the system\nbased on a threat model and requirement analysis, discuss the implementation of\na Proof-of-Concept based on the proposed system and illustrate a number of\nuse-cases with their detailed protocol flows. Furthermore, we analyse its\nsecurity using ProVerif, a state-of-the art protocol verification tool and\nexamine its performance.","PeriodicalId":501168,"journal":{"name":"arXiv - CS - Emerging Technologies","volume":"3 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-08-30","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"arXiv - CS - Emerging Technologies","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/arxiv-2408.17184","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
The popularity of the Internet of Things (IoT) has driven its usage in our
homes and industries over the past 10-12 years. However, there have been some
major issues related to identity management and ownership transfer involving
IoT devices, particularly for consumer IoT devices, e. g. smart appliances such
as smart TVs, smart refrigerators, and so on. There have been a few attempts to
address this issue; however, user-centric and effective ownership and identity
management of IoT devices have not been very successful so far. Recently,
blockchain technology has been used to address these issues with limited
success. This article presents a Self-sovereign Identity (SSI) based system
that facilitates a secure and user-centric ownership management and transfer of
consumer IoT devices. The system leverages a number of emerging technologies,
such as blockchain and decentralized identifiers (DID), verifiable credentials
(VC), under the umbrella of SSI. We present the architecture of the system
based on a threat model and requirement analysis, discuss the implementation of
a Proof-of-Concept based on the proposed system and illustrate a number of
use-cases with their detailed protocol flows. Furthermore, we analyse its
security using ProVerif, a state-of-the art protocol verification tool and
examine its performance.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
