DTLShps : SDN-based DTLS handshake protocol simplification for IoT

DTLShps : SDN-based DTLS handshake protocol simplification for IoT

Datagram transport layer security (DTLS) protocol is widely used in Internet of Things (IoT) for providing security services. The computational overhead makes it hard to implement DTLS on resource-constrained IoT devices. The two significant costly computations in the DTLS handshake are the Diffie-H...

Full description

Saved in:
Bibliographic Details
Main Authors: Ma, Y., Yan, L., Huang, X., Ma, Maode, Li, D.
Other Authors: School of Electrical and Electronic Engineering
Format: Article
Language:English
Published: 2021
Subjects:
Engineering::Electrical and electronic engineering
BAN Logic
Datagram Transport Layer Security (DTLS)
Online Access:https://hdl.handle.net/10356/154195
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Nanyang Technological University
Language: English
id sg-ntu-dr.10356-154195
record_format dspace
spelling sg-ntu-dr.10356-1541952021-12-31T13:55:02Z DTLShps : SDN-based DTLS handshake protocol simplification for IoT Ma, Y. Yan, L. Huang, X. Ma, Maode Li, D. School of Electrical and Electronic Engineering Engineering::Electrical and electronic engineering BAN Logic Datagram Transport Layer Security (DTLS) Datagram transport layer security (DTLS) protocol is widely used in Internet of Things (IoT) for providing security services. The computational overhead makes it hard to implement DTLS on resource-constrained IoT devices. The two significant costly computations in the DTLS handshake are the Diffie-Hellman (DH) key exchange and the certificate verification. A simplified handshake protocol of DTLS (DTLShps) is proposed to reduce the computational overhead of the IoT devices for a general scenario of end-to-end communications based on software-defined networking (SDN). First, a controller is utilized to generate a symmetric key dynamically, then encrypt and distribute this key to two communicating IoT devices. Second, the certificate verification is shifted from the IoT device to the more powerful controller. Third, the controller replaces the DTLS server to make a cookie exchange with the DTLS client. Furthermore, the BAN logic and the tool Scyther are used to validate the security of our scheme. The performance evaluation shows that not only the computational overhead and the energy consumption in the IoT devices are effectively decreased but also the overall duration of the whole handshake is reduced. This work was supported by the Joint Funds of National Natural Science Foundation of China and Xinjiang, under Project U1603261. 2021-12-16T02:04:18Z 2021-12-16T02:04:18Z 2020 Journal Article Ma, Y., Yan, L., Huang, X., Ma, M. & Li, D. (2020). DTLShps : SDN-based DTLS handshake protocol simplification for IoT. IEEE Internet of Things Journal, 7(4), 3349-3362. https://dx.doi.org/10.1109/JIOT.2020.2967464 2327-4662 https://hdl.handle.net/10356/154195 10.1109/JIOT.2020.2967464 2-s2.0-85083723860 4 7 3349 3362 en IEEE Internet of Things Journal © 2020 IEEE. All rights reserved.
institution Nanyang Technological University
building NTU Library
continent Asia
country Singapore
Singapore
content_provider NTU Library
collection DR-NTU
language English
topic Engineering::Electrical and electronic engineering
BAN Logic
Datagram Transport Layer Security (DTLS)
spellingShingle Engineering::Electrical and electronic engineering
BAN Logic
Datagram Transport Layer Security (DTLS)
Ma, Y.
Yan, L.
Huang, X.
Ma, Maode
Li, D.
DTLShps : SDN-based DTLS handshake protocol simplification for IoT
description Datagram transport layer security (DTLS) protocol is widely used in Internet of Things (IoT) for providing security services. The computational overhead makes it hard to implement DTLS on resource-constrained IoT devices. The two significant costly computations in the DTLS handshake are the Diffie-Hellman (DH) key exchange and the certificate verification. A simplified handshake protocol of DTLS (DTLShps) is proposed to reduce the computational overhead of the IoT devices for a general scenario of end-to-end communications based on software-defined networking (SDN). First, a controller is utilized to generate a symmetric key dynamically, then encrypt and distribute this key to two communicating IoT devices. Second, the certificate verification is shifted from the IoT device to the more powerful controller. Third, the controller replaces the DTLS server to make a cookie exchange with the DTLS client. Furthermore, the BAN logic and the tool Scyther are used to validate the security of our scheme. The performance evaluation shows that not only the computational overhead and the energy consumption in the IoT devices are effectively decreased but also the overall duration of the whole handshake is reduced.
author2 School of Electrical and Electronic Engineering
author_facet School of Electrical and Electronic Engineering
Ma, Y.
Yan, L.
Huang, X.
Ma, Maode
Li, D.
format Article
author Ma, Y.
Yan, L.
Huang, X.
Ma, Maode
Li, D.
author_sort Ma, Y.
title DTLShps : SDN-based DTLS handshake protocol simplification for IoT
title_short DTLShps : SDN-based DTLS handshake protocol simplification for IoT
title_full DTLShps : SDN-based DTLS handshake protocol simplification for IoT
title_fullStr DTLShps : SDN-based DTLS handshake protocol simplification for IoT
title_full_unstemmed DTLShps : SDN-based DTLS handshake protocol simplification for IoT
title_sort dtlshps : sdn-based dtls handshake protocol simplification for iot
publishDate 2021
url https://hdl.handle.net/10356/154195
_version_ 1722355281073012736

Similar Items