Team Project
„Evaluation of Security Protocols for the Internet of Things“
The Internet of Things (IoT) is seen as one of the most ground breaking and game-changing evolutions of information technology in modern times. Modern factories utilize so-called cyber-physical systems: they create a virtual copy of the physical world in order to monitor physical processes and make decentralized decisions. Over the Internet of Things, cyber-physical systems communicate and cooperate with each other and with humans in real time.
More and more often IoT infrastructures become targets for (corporate) hackers and (industrial) spies. Therefore, security solutions are to be implemented in order to resist such attacks. It is important to guarantee authenticity and confidentiality of the data. Therefore, cryptographic primitives which allow to encrypt and authenticate the data is the essential part of IOT security. However, in many cases IoT devices have to cope with constrained resources, e.g., memory, computing power, and battery supply. Often this results into security problems as ”traditional” crypto algorithms are either too resource-consuming or, in the worst case, do not work at all on such devices.
-
Kick-Off Meeting
The kickoff meeting took place on March 5th 2019.
-
Goal
The goal of this project is to evaluate the suitability of certain security protocols for lightweight IoT devices. This should be achieved by implementing them on Arduino Uno R3 and comparing the performance metrics of these implementations.
-
Background Material
Below the links to the recommended material are given.
Arduino Tutorials
- From CD coming with the kit
- Official web-page
- Arduino Cryptographic library
- Arduino communication protocols tutorial
Oscilloscope Tutorials
The current plan is to use a PicoScope, which is the modern alternative to the traditional benchtop oscilloscope.
The 2000 Series PicoScope of 100 MHz Bandwidth will be ordered soon
The user guide and the data sheet can be found on the device web-page
There also exists a youtube channel which demonstrates different tools and features
We recommend you to start with the following videosCryptographic Primitives
Packet 1 (New protocols) - Hash functions.
Task: to implement and to evaluate.
-
Implemented in Arduino Cryptographic Library
Packet 2 (Protocols evaluated during previous team projects)
Task: to measure power and energy consumption properly (using an oscilloscope). We will provide you the source code and the results of the former evaluation
-
Block ciphers
- AES
Implemented in Arduino Cryptographic Library - PRESENT
Implementation - Midori
- SIMON and SPECK
SPECK is implemented in Arduino Cryptographic Library - MISTY
- PRINCE
- AES
-
Authentication protocols based on Hard Learning Problems
- HB and HB+
Protocols referred as AUTH, suggested in the paper
-
Stream ciphers
-
Authenticated encryption algorithms
-
Guidelines
- Often the documents with the description of the protocols contain extra information which is not relevant to the team project. So I would suggest that you only focus on those parts which discuss specifications and implementation details.
- If there already exist implementations, suitable for Arudino UNO, you do not have to make them by yourself. I would suggest that you check for the existing source code in the following order
- Some protocols are already included in the Arduino Crypto Library rweather.github.io/
arduinolibs/ crypto.html - For some of the primitives there exist webpages devoted to them, as e.g. Quark
- Contact the authors and ask for a reference implementation and/
or for the test vectors. Even if it will be coded using a different programming language, this should be helpful to come up with your own implementations. - Google if the required implementation was done by a third party. Here you have to be especially careful and you will have verify if the implementation is correct.
- Often different primitives are using the same building blocks or even have the same structure. If you still need to implement the primitive by yourself check if there already exists a similar design which is already implemented.