With the increasing number of Internet of Things devices, it is crucial to keep them up-to-date to prevent cyber attacks. Traditional centralized delivery is not suitable for scaling and also can be too expensive to run for small vendors. Thus, finding a fully secure, scalable, yet cost-efficient firmware update distribution strategy is always an open research problem. This paper tries to answer those problems by proposing Patchman, a secure decentralized firmware update delivery service for the Internet of Things ecosystem leveraging blockchain. When a new firmware patch is available, vendors make a bid in the smart contract for anyone to join as firmware distributors. For each successful delivery to targeted devices, distributors are rewarded with tokens. Meanwhile, devices gain a reputation score every time they successfully install an update. To ensure robustness and fairness, we develop secure fair exchange protocols using verifiable proof-of-delivery and proof-of-installation. Those proofs can be traded in the blockchain for rewards and reputation scores increase, proving that the proof-holders have successfully processed a firmware delivery and firmware installation task. This way, the firmware update delivery can be executed safely without centralized third-party control. Our evaluation results show that our implementation complies with the five security goals that we envision. We also have successfully punished malicious actions by confiscating their deposits and requiring them to pay up to four times of base deposit value when they join the next update task, ensuring the fairness of our protocol. Furthermore, we generate low processing delay overhead compared to existing works that rely on Zero-Knowledge Proofs. The gas usage consumption from our approach also produced a competitive result despite our works supporting more features than existing works, ensuring the efficiency of our proposal.
Read full abstract