Evaluation of Out-of-Band Channels for IoT Security

Sampsa Latvala, Mohit Sethi, Tuomas Aura

Tutkimustuotos: LehtiartikkeliArticleScientificvertaisarvioitu

135 Lataukset (Pure)

Abstrakti

Secure bootstrapping is the process by which a device gets the necessary configuration information and security credentials to become operational. In many pervasive computing and Internet-of-Things scenarios, it is often not possible to rely on the existence of a trusted third party or other network infrastructure for bootstrapping. Therefore, several device bootstrapping protocols rely on an out-of-band (OOB) channel for initial device authentication and configuration. We begin this paper by understanding the need for OOB channels and performing a literature survey of existing standards and devices that rely on OOB channels. We then look at one candidate bootstrapping protocol: Nimble out-of-band authentication for EAP (EAP-NOOB). We provide a brief overview of the EAP-NOOB protocol and describe its unique OOB channel requirements. Thereafter, we implement three OOB channels for EAP-NOOB using near-field communication, quick response codes, and sound. Using our implementation, we evaluate the usability, security, benefits, and limitations of each of the OOB channels.
AlkuperäiskieliEnglanti
Artikkeli18
JulkaisuSN Computer Science
Vuosikerta1
DOI - pysyväislinkit
TilaJulkaistu - tammikuuta 2020
OKM-julkaisutyyppiA1 Julkaistu artikkeli, soviteltu

Sormenjälki Sukella tutkimusaiheisiin 'Evaluation of Out-of-Band Channels for IoT Security'. Ne muodostavat yhdessä ainutlaatuisen sormenjäljen.

Siteeraa tätä