Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Secure Communication for the IoT: EDHOC and (Group) OSCORE Protocols
RISE Research Institutes of Sweden, Digital Systems, Data Science.ORCID iD: 0000-0002-9437-5764
RISE Research Institutes of Sweden, Digital Systems, Data Science.ORCID iD: 0000-0001-8842-9810
Ericsson Research, Sweden.
Ericsson Research, Sweden.
Show others and affiliations
2024 (English)In: IEEE Access, E-ISSN 2169-3536, Vol. 12, p. 49865-Article in journal (Refereed) Published
Abstract [en]

Communication security of an Internet-of-Things (IoT) product depends on the variety of protocols employed throughout its lifetime. The underlying low-power radio communication technologies impose constraints on maximum transmission units and data rates. Surpassing maximum transmission unit thresholds has an important effect on the efficiency of the solution: transmitting multiple fragments over low-power IoT radio technologies is often prohibitively expensive. Furthermore, IoT communication paradigms such as one-to-many require novel solutions to support the applications executing on constrained devices. Over the last decade, the Internet Engineering Task Force (IETF) has been working through its various Working Groups on defining lightweight protocols for Internet-of-Things use cases. “Lightweight” refers to the minimal processing overhead, memory footprint and number of bytes in the air, compared to the protocol counterparts used for non-constrained devices in the Internet. This article overviews the standardization efforts in the IETF on lightweight communication security protocols. It introduces EDHOC, a key exchange protocol, OSCORE and Group OSCORE, application data protection protocols adapted for securing IoT applications. The article additionally highlights the design considerations taken into account during the design of these protocols, an aspect not present in the standards documents. Finally, we present an evaluation of these protocols in terms of the message sizes and compare with the non-constrained counterpart, the (D)TLS protocol. We demonstrate that the novel key exchange protocol EDHOC achieves ×5 reduction over DTLS 1.3 authenticated with pre-shared keys in terms of total number of bytes transmitted over the air, while keeping the benefits of authentication with asymmetric credentials.

Place, publisher, year, edition, pages
Institute of Electrical and Electronics Engineers Inc. , 2024. Vol. 12, p. 49865-
Keywords [en]
Authentication; Internet of things; Internet protocols; Network security; Radio communication; Radio transmission; Secure communication; Signal encoding; CoAP; Communication system security; Communications security; EDHOC; Encodings; Internet engineering task forces; OSCORE; Protection; Security; Standardization
National Category
Electrical Engineering, Electronic Engineering, Information Engineering
Identifiers
URN: urn:nbn:se:ri:diva-73052DOI: 10.1109/ACCESS.2024.3384095Scopus ID: 2-s2.0-85189629993OAI: oai:DiVA.org:ri-73052DiVA, id: diva2:1852310
Available from: 2024-04-17 Created: 2024-04-17 Last updated: 2024-05-27Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Höglund, RikardTiloca, Marco

Search in DiVA

By author/editor
Höglund, RikardTiloca, Marco
By organisation
Data Science
In the same journal
IEEE Access
Electrical Engineering, Electronic Engineering, Information Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 46 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf