<p>Internet of Things (IoT) devices are used in several critical lifesaving and industrial applications. The IoT devices use self-signed certificates to establish trust between the devices. Self-signed certificates are more vulnerable to cyber threats compared to certificate authorized by Certification Authority (CA). Conventional certificate formats like Distinguished Encoding Rules (DER) encoded X.509 demand increased memory and processing resources. In this work, a novel attempt is made to implement Concise Binary Object Representation (CBOR) encoded certificates in an IoT environment by embedding them into existing Public Key Infrastructure (PKI) infrastructures, including mechanisms such as Online Certificate Status Protocol (OCSP) for validation and revocation. Experimental results show that the CBOR based certificate provides 15% to 73% memory footprint reduction compared to traditional ASN.1-based X.509 certificates. The reduced memory size by the proposed approach makes them ideal for secured IoT communication without adding any additional overhead on resource constrained devices.</p>

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

A novel CBOR based CA certificate for IoT device security

  • M. Vellaipandi,
  • B. Bharathi,
  • K. Gobinath,
  • Marshal R,
  • Rakesh Kaur,
  • K. K. Soundra Pandian

摘要

Internet of Things (IoT) devices are used in several critical lifesaving and industrial applications. The IoT devices use self-signed certificates to establish trust between the devices. Self-signed certificates are more vulnerable to cyber threats compared to certificate authorized by Certification Authority (CA). Conventional certificate formats like Distinguished Encoding Rules (DER) encoded X.509 demand increased memory and processing resources. In this work, a novel attempt is made to implement Concise Binary Object Representation (CBOR) encoded certificates in an IoT environment by embedding them into existing Public Key Infrastructure (PKI) infrastructures, including mechanisms such as Online Certificate Status Protocol (OCSP) for validation and revocation. Experimental results show that the CBOR based certificate provides 15% to 73% memory footprint reduction compared to traditional ASN.1-based X.509 certificates. The reduced memory size by the proposed approach makes them ideal for secured IoT communication without adding any additional overhead on resource constrained devices.