Nesnelerin İnterneti için Güvenli Ağ Geçidi

Abstract

Internet of Things (IoT) devices includes connected devices such as industrial embedded devices, vehicles, smart home appliance, sensors, and actuators. Even non-internet-enabled physical devices can be part of the IoT system through gateways. IoT platforms are getting the attraction of the attackers because of the security weakness of the constrained devices. They can use the IoT devices for DDOS attacking or directly attack the device to damage the overall system. Since several communication industry standard protocols such as MQTT, AMQP, and COAP can be utilized in an environment, communication between devices can be provided through a broker. Unencrypted communications can be sniffed therefore username and passwords can be stolen, or message can be modified by the attacker. We need to provide secure authentication and encrypted communication in order to make the systems secure. One way is the utilization of TLS based approaches can be utilized, but memory constrained devices cannot handle asymmetric encryption algorithms. In this paper, we propose a new approach for IoT gateways with utilization of a secure element has storage for keys, true random generator and FIPS standard AES 128 bit encryption capability. We utilized the secure element/chip in two different embedded devices to test the approach and measure performances. We developed a new embedded device includes ARM Cortex M0 for this study and also utilize a demo card includes ARM Cortex M3. We also propose a new method utilizes physical I 2 C property of the ARM Cortex M3 to provide fast and secure communication. The approach includes a new authentication method and encrypted communication based on the secure element’s properties. We also investigate on the message integrity based on the cryptographic hash and cyclic redundancy check algorithms.