Innovative TLS/DTLS security modules for IoT applications: Concepts and experiments

Pascal Urien

doi:10.1007/978-3-319-47063-4_1

Innovative TLS/DTLS security modules for IoT applications: Concepts and experiments

Pascal Urien

Université Paris-Saclay

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

The Internet of Things is a new technological step in the anytime, everywhere, anything IP connectivity context. Things (sensors, wearable objects, connected cars…) are equipped with computers and various communication resources. IoT devices deal with Wireless Local Area Network, Wireless Personal Area Network, Near Field Communication, or new operated radio networks with low throughput such as SIGFOX or LoRA. In this context security and trust are very critical topics, both for users and service providers. In this paper we present new and innovative security modules based on ISO7816 chips, which have been recently introduced by an IETF draft. These low cost, low power, tamper resistant devices, run TLS and DTLS stacks. DTLS is the datagram adaptation of the well known TLS protocol, which is de facto standard for the internet security. It is the security layer of the Constrained Application Protocol (CoAP) targeting sensors networks in a context of smart energy and building automation. We shortly recall TLS and DTLS features, and introduce the flights concept. We present the TLS/DTLS security module interface, which is based on previous work dealing with the EAP-TLS protocol, widely used for authentication in wireless networks and VPNs. We describe our prototype platform based on a java framework that implement a software bridge with the TLS/DTLS security module and which is compatible with the popular Raspberry Pi board. Finally we detail the experimental performances, compatible with the constraints of IoT, observed for an implementation running in a javacard.

Original language	English
Title of host publication	Internet of Things
Subtitle of host publication	IoT Infrastructures - 2nd International Summit, IoT 360° 2015, Revised Selected Papers
Editors	Miguel Elias Mitre Campista, Andrey Somov, Benny Mandler, Hakima Chaouchi, Maria Fazio, Dagmar Caganova, Stefano Giordano, Johann Marquez-Barja, Sherali Zeadally, Mohamad Badra, Radu-Laurentiu Vieriu
Publisher	Springer Verlag
Pages	3-15
Number of pages	13
ISBN (Print)	9783319470627
DOIs	https://doi.org/10.1007/978-3-319-47063-4_1
Publication status	Published - 1 Jan 2016
Externally published	Yes
Event	2nd International Summit on Internet of Things, IoT 360° 2015 - Rome, Italy Duration: 27 Oct 2015 → 29 Oct 2015

Publication series

Name	Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST
Volume	169
ISSN (Print)	1867-8211

Conference

Conference	2nd International Summit on Internet of Things, IoT 360° 2015
Country/Territory	Italy
City	Rome
Period	27/10/15 → 29/10/15

Keywords

DTLS
IoT
Secure element
Security
TLS

Access to Document

10.1007/978-3-319-47063-4_1

Cite this

Urien, P. (2016). Innovative TLS/DTLS security modules for IoT applications: Concepts and experiments. In M. E. M. Campista, A. Somov, B. Mandler, H. Chaouchi, M. Fazio, D. Caganova, S. Giordano, J. Marquez-Barja, S. Zeadally, M. Badra, & R.-L. Vieriu (Eds.), Internet of Things: IoT Infrastructures - 2nd International Summit, IoT 360° 2015, Revised Selected Papers (pp. 3-15). (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 169). Springer Verlag. https://doi.org/10.1007/978-3-319-47063-4_1

Urien, Pascal. / Innovative TLS/DTLS security modules for IoT applications : Concepts and experiments. Internet of Things: IoT Infrastructures - 2nd International Summit, IoT 360° 2015, Revised Selected Papers. editor / Miguel Elias Mitre Campista ; Andrey Somov ; Benny Mandler ; Hakima Chaouchi ; Maria Fazio ; Dagmar Caganova ; Stefano Giordano ; Johann Marquez-Barja ; Sherali Zeadally ; Mohamad Badra ; Radu-Laurentiu Vieriu. Springer Verlag, 2016. pp. 3-15 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST).

@inproceedings{6a8fbea0f6ea485585e464c4fb361c74,

title = "Innovative TLS/DTLS security modules for IoT applications: Concepts and experiments",

abstract = "The Internet of Things is a new technological step in the anytime, everywhere, anything IP connectivity context. Things (sensors, wearable objects, connected cars…) are equipped with computers and various communication resources. IoT devices deal with Wireless Local Area Network, Wireless Personal Area Network, Near Field Communication, or new operated radio networks with low throughput such as SIGFOX or LoRA. In this context security and trust are very critical topics, both for users and service providers. In this paper we present new and innovative security modules based on ISO7816 chips, which have been recently introduced by an IETF draft. These low cost, low power, tamper resistant devices, run TLS and DTLS stacks. DTLS is the datagram adaptation of the well known TLS protocol, which is de facto standard for the internet security. It is the security layer of the Constrained Application Protocol (CoAP) targeting sensors networks in a context of smart energy and building automation. We shortly recall TLS and DTLS features, and introduce the flights concept. We present the TLS/DTLS security module interface, which is based on previous work dealing with the EAP-TLS protocol, widely used for authentication in wireless networks and VPNs. We describe our prototype platform based on a java framework that implement a software bridge with the TLS/DTLS security module and which is compatible with the popular Raspberry Pi board. Finally we detail the experimental performances, compatible with the constraints of IoT, observed for an implementation running in a javacard.",

keywords = "DTLS, IoT, Secure element, Security, TLS",

author = "Pascal Urien",

note = "Publisher Copyright: {\textcopyright} ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2016.; 2nd International Summit on Internet of Things, IoT 360° 2015 ; Conference date: 27-10-2015 Through 29-10-2015",

year = "2016",

month = jan,

day = "1",

doi = "10.1007/978-3-319-47063-4\_1",

language = "English",

isbn = "9783319470627",

series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",

publisher = "Springer Verlag",

pages = "3--15",

editor = "Campista, \{Miguel Elias Mitre\} and Andrey Somov and Benny Mandler and Hakima Chaouchi and Maria Fazio and Dagmar Caganova and Stefano Giordano and Johann Marquez-Barja and Sherali Zeadally and Mohamad Badra and Radu-Laurentiu Vieriu",

booktitle = "Internet of Things",

}

Urien, P 2016, Innovative TLS/DTLS security modules for IoT applications: Concepts and experiments. in MEM Campista, A Somov, B Mandler, H Chaouchi, M Fazio, D Caganova, S Giordano, J Marquez-Barja, S Zeadally, M Badra & R-L Vieriu (eds), Internet of Things: IoT Infrastructures - 2nd International Summit, IoT 360° 2015, Revised Selected Papers. Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, vol. 169, Springer Verlag, pp. 3-15, 2nd International Summit on Internet of Things, IoT 360° 2015, Rome, Italy, 27/10/15. https://doi.org/10.1007/978-3-319-47063-4_1

Innovative TLS/DTLS security modules for IoT applications: Concepts and experiments. / Urien, Pascal.
Internet of Things: IoT Infrastructures - 2nd International Summit, IoT 360° 2015, Revised Selected Papers. ed. / Miguel Elias Mitre Campista; Andrey Somov; Benny Mandler; Hakima Chaouchi; Maria Fazio; Dagmar Caganova; Stefano Giordano; Johann Marquez-Barja; Sherali Zeadally; Mohamad Badra; Radu-Laurentiu Vieriu. Springer Verlag, 2016. p. 3-15 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 169).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Innovative TLS/DTLS security modules for IoT applications

T2 - 2nd International Summit on Internet of Things, IoT 360° 2015

AU - Urien, Pascal

N1 - Publisher Copyright: © ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering 2016.

PY - 2016/1/1

Y1 - 2016/1/1

N2 - The Internet of Things is a new technological step in the anytime, everywhere, anything IP connectivity context. Things (sensors, wearable objects, connected cars…) are equipped with computers and various communication resources. IoT devices deal with Wireless Local Area Network, Wireless Personal Area Network, Near Field Communication, or new operated radio networks with low throughput such as SIGFOX or LoRA. In this context security and trust are very critical topics, both for users and service providers. In this paper we present new and innovative security modules based on ISO7816 chips, which have been recently introduced by an IETF draft. These low cost, low power, tamper resistant devices, run TLS and DTLS stacks. DTLS is the datagram adaptation of the well known TLS protocol, which is de facto standard for the internet security. It is the security layer of the Constrained Application Protocol (CoAP) targeting sensors networks in a context of smart energy and building automation. We shortly recall TLS and DTLS features, and introduce the flights concept. We present the TLS/DTLS security module interface, which is based on previous work dealing with the EAP-TLS protocol, widely used for authentication in wireless networks and VPNs. We describe our prototype platform based on a java framework that implement a software bridge with the TLS/DTLS security module and which is compatible with the popular Raspberry Pi board. Finally we detail the experimental performances, compatible with the constraints of IoT, observed for an implementation running in a javacard.

AB - The Internet of Things is a new technological step in the anytime, everywhere, anything IP connectivity context. Things (sensors, wearable objects, connected cars…) are equipped with computers and various communication resources. IoT devices deal with Wireless Local Area Network, Wireless Personal Area Network, Near Field Communication, or new operated radio networks with low throughput such as SIGFOX or LoRA. In this context security and trust are very critical topics, both for users and service providers. In this paper we present new and innovative security modules based on ISO7816 chips, which have been recently introduced by an IETF draft. These low cost, low power, tamper resistant devices, run TLS and DTLS stacks. DTLS is the datagram adaptation of the well known TLS protocol, which is de facto standard for the internet security. It is the security layer of the Constrained Application Protocol (CoAP) targeting sensors networks in a context of smart energy and building automation. We shortly recall TLS and DTLS features, and introduce the flights concept. We present the TLS/DTLS security module interface, which is based on previous work dealing with the EAP-TLS protocol, widely used for authentication in wireless networks and VPNs. We describe our prototype platform based on a java framework that implement a software bridge with the TLS/DTLS security module and which is compatible with the popular Raspberry Pi board. Finally we detail the experimental performances, compatible with the constraints of IoT, observed for an implementation running in a javacard.

KW - DTLS

KW - IoT

KW - Secure element

KW - Security

KW - TLS

U2 - 10.1007/978-3-319-47063-4_1

DO - 10.1007/978-3-319-47063-4_1

M3 - Conference contribution

AN - SCOPUS:85000365275

SN - 9783319470627

T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST

SP - 3

EP - 15

BT - Internet of Things

A2 - Campista, Miguel Elias Mitre

A2 - Somov, Andrey

A2 - Mandler, Benny

A2 - Chaouchi, Hakima

A2 - Fazio, Maria

A2 - Caganova, Dagmar

A2 - Giordano, Stefano

A2 - Marquez-Barja, Johann

A2 - Zeadally, Sherali

A2 - Badra, Mohamad

A2 - Vieriu, Radu-Laurentiu

PB - Springer Verlag

Y2 - 27 October 2015 through 29 October 2015

ER -

Urien P. Innovative TLS/DTLS security modules for IoT applications: Concepts and experiments. In Campista MEM, Somov A, Mandler B, Chaouchi H, Fazio M, Caganova D, Giordano S, Marquez-Barja J, Zeadally S, Badra M, Vieriu RL, editors, Internet of Things: IoT Infrastructures - 2nd International Summit, IoT 360° 2015, Revised Selected Papers. Springer Verlag. 2016. p. 3-15. (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST). doi: 10.1007/978-3-319-47063-4_1

Innovative TLS/DTLS security modules for IoT applications: Concepts and experiments

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this