Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Evaluating the performance of the OSCORE security protocol in constrained IoT environments
RISE Research Institutes of Sweden, Digital Systems, Data Science. Lund University, Sweden. (Cybersecurity Unit)ORCID iD: 0000-0002-0135-683x
Lund University, Sweden; Combitech AB, Sweden.
Ericsson AB, Sweden.
Combitech AB, Sweden.
Show others and affiliations
2021 (English)In: Internet of Things: Engineering Cyber Physical Human Systems, E-ISSN 2542-6605, Vol. 13, article id 100333Article in journal (Refereed) Published
Abstract [en]

The Constrained Application Protocol (CoAP) is a standard communication protocol for resource-constrained devices in the Internet of Things (IoT). Many IoT deployments require proxies to support asynchronous communication between edge devices and the back-end. This allows (non-trusted) proxies to access sensitive parts of CoAP messages. Object Security for Constrained RESTful Environments (OSCORE) is a recent standard protocol that provides end-to-end security for CoAP messages at the application layer. Unlike the commonly used standard Datagram Transport Layer Security (DTLS), OSCORE efficiently provides selective integrity protection and encryption on different parts of CoAP messages. Thus, OSCORE enables end-to-end security through intermediary (non-trusted) proxies, while still allowing them to perform their expected services, with considerable security and privacy improvements.

To assess whether these security features consume too much of the limited resources available on a constrained device, we have implemented OSCORE (the implementation is available as open-source), and evaluated its efficiency. This paper provides a comprehensive, comparative and experimental performance evaluation of OSCORE on real resource-constrained IoT devices, using the operating system Contiki-NG as IoT software platform. In particular, we experimentally evaluated the efficiency of our OSCORE implementation on resource-constrained devices running Contiki-NG, in comparison with the DTLS implementation TinyDTLS maintained by the Eclipse Foundation. The evaluation results show that our OSCORE implementation displays moderately better performance than TinyDTLS, in terms of per-message network overhead, memory usage, message round-trip time and energy efficiency, thus providing the security improvements of OSCORE with no additional performance penalty.

Place, publisher, year, edition, pages
2021. Vol. 13, article id 100333
Keywords [en]
Security, OSCORE, CoAP, Internet of things, Constrained devices, End-to-end security
National Category
Communication Systems Computer Systems Embedded Systems
Identifiers
URN: urn:nbn:se:ri:diva-52779DOI: 10.1016/j.iot.2020.100333OAI: oai:DiVA.org:ri-52779DiVA, id: diva2:1541757
Projects
EU FP7 SEGRID (Grant agreement 607109)EIT-Digital High Impact Initiative ACTIVEVINNOVA/Celtic-Plus CyberWIVINNOVA/Celtic-Next CRITISECEU H2020 SIFIS-Home (Grant agreement 952652)SSF SEC4Factory (Grant agreement RIT17-0032)Wallenberg AI, Autonomous Systems and Software Program (WASP) funded by the Knut and Alice Wallenberg FoundationAvailable from: 2021-04-02 Created: 2021-04-02 Last updated: 2023-05-25Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full text

Authority records

Gunnarsson, MartinTiloca, Marco

Search in DiVA

By author/editor
Gunnarsson, MartinTiloca, Marco
By organisation
Data Science
In the same journal
Internet of Things: Engineering Cyber Physical Human Systems
Communication SystemsComputer SystemsEmbedded Systems

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 232 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf