Computational complexity of public key cryptography over sensor nodes is not anymore a blocking concern in modern devices which natively (and efficiently) support elliptic curve cryptography. The problem has rather shifted toward the significant airtime consumption required to exchange multiple messages and certificates so as to perform authentication and key agreement. This letter addresses such problem by exploiting implicit certificates (elliptic curve Qu-Vanstone). We specifically propose a novel key management protocol (KMP) which suitably integrates implicit certificates with a standard elliptic curve Diffie-Hellman exchange, and performs authentication and key derivation. As confirmed by a proof-of-concept implementation and relevant experimental results, the proposed KMP guarantees maximal airtime savings (up to 86.7%) with respect to conventional approaches, robust key negotiation, fast rekeying, and efficient protection against replay attacks.
Public Key Authentication and Key Agreement in IoT Devices with Minimal Airtime Consumption / Sciancalepore, Savio; Piro, Giuseppe; Boggia, Gennaro; Bianchi, Giuseppe. - In: IEEE EMBEDDED SYSTEMS LETTERS. - ISSN 1943-0663. - 9:1(2017), pp. 1-4. [10.1109/LES.2016.2630729]
Public Key Authentication and Key Agreement in IoT Devices with Minimal Airtime Consumption
SCIANCALEPORE, Savio;PIRO, Giuseppe;BOGGIA, Gennaro;
2017-01-01
Abstract
Computational complexity of public key cryptography over sensor nodes is not anymore a blocking concern in modern devices which natively (and efficiently) support elliptic curve cryptography. The problem has rather shifted toward the significant airtime consumption required to exchange multiple messages and certificates so as to perform authentication and key agreement. This letter addresses such problem by exploiting implicit certificates (elliptic curve Qu-Vanstone). We specifically propose a novel key management protocol (KMP) which suitably integrates implicit certificates with a standard elliptic curve Diffie-Hellman exchange, and performs authentication and key derivation. As confirmed by a proof-of-concept implementation and relevant experimental results, the proposed KMP guarantees maximal airtime savings (up to 86.7%) with respect to conventional approaches, robust key negotiation, fast rekeying, and efficient protection against replay attacks.| File | Dimensione | Formato | |
|---|---|---|---|
|
SciancaleporeIEEEESL2017_cameraready.pdf
accesso aperto
Descrizione: Submitted version
Tipologia:
Documento in Pre-print
Licenza:
Creative commons
Dimensione
704.08 kB
Formato
Adobe PDF
|
704.08 kB | Adobe PDF | Visualizza/Apri |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
