delegation-based authentication and authorization for the ip-based iot
TRANSCRIPT
Delegation-based Authentication and Authorization
for the IP-based IoTEmbedded Security Lab.
Park Joon-young
Introduction
Limited Processing Power
Limited Storage
Low Bandwidth
Inefficient Energy
Unreliable Environment
Sensors will have..
DTLS Protocol
• TLS on Datagram
• 6 Message Flight
• Public-key-based + Symmetric-key-based
• Verifies correctness
Run-time Req. (RAM)
• Public-key Calculation + Certificate Parsing (1.4kB)
• DTLS handshake (1.3kB) + stack size (1.8kB)
6.2kB + 1.8kB10kB10kB
OSAPP
Implementation Size (ROM)
•DTLS handshake (relic toolkit, 16kB)
•Certificate Parsing (1.5kB) + Certificate Verification + Time Synchronization
64kB RAM + ROM
Evaluation• symmetric-key-based tinyDTLS (openSSL)
• WiSMote platform (Arduino, raspberry pi..)
• 16MHz MSP430 µ-controller (intel i3-2500, ARM..)
• 16kB RAM, 128kB ROM
• Contiki OS (Windows, Linux..)
• FlockLab (oscilloscope)
EvaluationRun-time
Client-side Computation Server-side Computation
Verification / Decryption of Session Ticket Generating new Session Ticket