Conference paper

Appeared in: Proceedings 2015 International Workshop on Secure Internet of Things

Publication year: 2016

Pages: 35-43

ISBN: 978-1-4673-7770-6

eISBN: 978-1-4673-7769-0

DOI Link: https://doi.org/10.1109/SIOT.2015.8

Conference: 2015 International Workshop on Secure Internet of Things (SIoT)

Abstract: 

One core technology for implementing and integrating the architectural principles of REST into the Internet of Things (IoT) is CoAP, a REST-ful application protocol for constrained networks and devices. Since CoAP defaults to UDP as transport protocol, the protection of CoAP-based systems is realised by the adoption of DTLS, a transport-oriented security protocol for datagrams. This is, however, in many cases not a sufficient safeguard, since messages in distributed systems -- as obtained, e.g., by the adoption of REST -- are commonly transported via multiple intermediate components. This induces the need for message-oriented protection means supplementing transport security for IoT scenarios with high security demands.This paper approaches an important part of this requirement by introducing a REST-ful CoAP message authentication scheme. The overarching goal of this work is, though, to establish a message-oriented security layer for CoAP. Here, specific challenges are stemming from the architectural style REST and the resource-restrictiveness of IoT networks and devices. The present contribution reaches this goal for authentication by proposing a REST-ful CoAP message signature generation and verification scheme.

Harvard Citation style: Nguyen, H. and Lo Iacono, L. (2016) REST-ful CoAP Message Authentication, in Proceedings 2015 International Workshop on Secure Internet of Things. Piscataway, NJ: IEEE. pp. 35-43. https://doi.org/10.1109/SIOT.2015.8

APA Citation style: Nguyen, H., & Lo Iacono, L. (2016). REST-ful CoAP Message Authentication. In Proceedings 2015 International Workshop on Secure Internet of Things. (pp. 35-43). IEEE. https://doi.org/10.1109/SIOT.2015.8