面向物联网的安全元素:eLock用例:正在进行的工作-邀请论文

2016 Second International Conference on Mobile and Secure Services (MobiSecServ) Pub Date : 2016-03-24 DOI:10.1109/MOBISECSERV.2016.7440228

P. Urien

{"title":"面向物联网的安全元素:eLock用例:正在进行的工作-邀请论文","authors":"P. Urien","doi":"10.1109/MOBISECSERV.2016.7440228","DOIUrl":null,"url":null,"abstract":"Security and trust are major prerequisites for the deployment of Internet of Things (IoT) infrastructures. In this paper we present secure elements providing TLS and DTLS stacks, and running the CoAP protocol dedicated to IoT systems. These secure elements are used in an electronic lock context, in which the lock is a CoAP server and the key a CoAP client. We define two main security domains one for key interaction with the lock, and the other for key generation. These two domains are associated to applications running in SIM cards managed by mobile applications. Key generators are hosted in secure elements plugged in key servers, built over the RACS protocol. We introduce an innovative double TLS concept that avoids application tampering by cloud provider. Finally we discuss scalability issues of this approach.","PeriodicalId":296302,"journal":{"name":"2016 Second International Conference on Mobile and Secure Services (MobiSecServ)","volume":"35 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-03-24","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"Towards secure elements for the Internet of Things: The eLock use case: Work in progress — Invited paper\",\"authors\":\"P. Urien\",\"doi\":\"10.1109/MOBISECSERV.2016.7440228\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Security and trust are major prerequisites for the deployment of Internet of Things (IoT) infrastructures. In this paper we present secure elements providing TLS and DTLS stacks, and running the CoAP protocol dedicated to IoT systems. These secure elements are used in an electronic lock context, in which the lock is a CoAP server and the key a CoAP client. We define two main security domains one for key interaction with the lock, and the other for key generation. These two domains are associated to applications running in SIM cards managed by mobile applications. Key generators are hosted in secure elements plugged in key servers, built over the RACS protocol. We introduce an innovative double TLS concept that avoids application tampering by cloud provider. Finally we discuss scalability issues of this approach.\",\"PeriodicalId\":296302,\"journal\":{\"name\":\"2016 Second International Conference on Mobile and Secure Services (MobiSecServ)\",\"volume\":\"35 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-03-24\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 Second International Conference on Mobile and Secure Services (MobiSecServ)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/MOBISECSERV.2016.7440228\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 Second International Conference on Mobile and Secure Services (MobiSecServ)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MOBISECSERV.2016.7440228","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

摘要

安全和信任是部署物联网(IoT)基础设施的主要先决条件。在本文中，我们介绍了提供TLS和DTLS堆栈的安全元素，并运行专用于物联网系统的CoAP协议。这些安全元素用于电子锁上下文中，其中锁是CoAP服务器，密钥是CoAP客户端。我们定义了两个主要的安全域，一个用于密钥与锁的交互，另一个用于密钥生成。这两个域与运行在由移动应用程序管理的SIM卡中的应用程序相关联。密钥生成器托管在插入密钥服务器的安全元素中，基于RACS协议构建。我们引入了一种创新的双TLS概念，避免了云提供商对应用程序的篡改。最后，我们讨论了这种方法的可伸缩性问题。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Towards secure elements for the Internet of Things: The eLock use case: Work in progress — Invited paper

Security and trust are major prerequisites for the deployment of Internet of Things (IoT) infrastructures. In this paper we present secure elements providing TLS and DTLS stacks, and running the CoAP protocol dedicated to IoT systems. These secure elements are used in an electronic lock context, in which the lock is a CoAP server and the key a CoAP client. We define two main security domains one for key interaction with the lock, and the other for key generation. These two domains are associated to applications running in SIM cards managed by mobile applications. Key generators are hosted in secure elements plugged in key servers, built over the RACS protocol. We introduce an innovative double TLS concept that avoids application tampering by cloud provider. Finally we discuss scalability issues of this approach.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2016 Second International Conference on Mobile and Secure Services (MobiSecServ)

自引率

0.00%

发文量