Group-IKEv2 for multicast IPsec in the internet of things
2019 (English)In: International Journal of Security and Networks (IJSN), ISSN 1747-8405, E-ISSN 1747-8413, Vol. 14, no 1, p. 10-22Article in journal (Refereed) Published
Abstract [en]
This paper presents Group-IKEv2, a group key management protocol supporting secure group communication based on multicast IPsec. Group-IKEv2 is an adaptation of the IKEv2 protocol for the IPsec suite, and is especially designed to address internet of things (IoT) scenarios composed of resource-constrained devices. Compared to static approaches, Group-IKEv2 enables dynamic and flexible establishment of IPsec group security associations as well as group key material. Also, it integrates the management and renewal of group key material, both on a periodical fashion and upon group membership changes. We have implemented Group-IKEv2 for the Contiki OS and tested it on the OpenMote resource-constrained platform. Our experimental performance evaluation confirms that Group-IKEv2 is affordable and deployable also on constrained IoT devices.
Place, publisher, year, edition, pages
Inderscience Enterprises Ltd. , 2019. Vol. 14, no 1, p. 10-22
Keywords [en]
Group communication, Group-IKEv2, Internet of things, Key management, Multicast IPsec, Secure communication, Security, Multicasting, Security of data, Experimental performance evaluations, Group communications, Group key management protocols, Resourceconstrained devices, Secure group communications
National Category
Computer and Information Sciences
Identifiers
URN: urn:nbn:se:ri:diva-38462DOI: 10.1504/IJSN.2019.098908Scopus ID: 2-s2.0-85064263362OAI: oai:DiVA.org:ri-38462DiVA, id: diva2:1313806
2019-05-062019-05-062023-06-08Bibliographically approved