A Lightweight and Secure Data Collection Serverless Protocol Demonstrated in an Active RFIDs Scenario
| Autor: | Malika Belkadi, Amina Cherif, Damien Sauveron |
|---|---|
| Přispěvatelé: | Mathématiques & Sécurité de l'information (XLIM-MATHIS), XLIM (XLIM), Université de Limoges (UNILIM)-Centre National de la Recherche Scientifique (CNRS)-Université de Limoges (UNILIM)-Centre National de la Recherche Scientifique (CNRS) |
| Jazyk: | angličtina |
| Rok vydání: | 2019 |
| Předmět: |
0209 industrial biotechnology
Data collection business.industry Computer science Mobile broadband Wearable computer 020206 networking & telecommunications Context (language use) 02 engineering and technology Beacon [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR] 020901 industrial engineering & automation Hardware and Architecture 0202 electrical engineering electronic engineering information engineering Radio-frequency identification Wireless business Protocol (object-oriented programming) Software ComputingMilieux_MISCELLANEOUS Computer network |
| Zdroj: | ACM Transactions on Embedded Computing Systems (TECS) ACM Transactions on Embedded Computing Systems (TECS), ACM, 2019, 18 (3), pp.1-27. ⟨10.1145/3274667⟩ |
| ISSN: | 1539-9087 1558-3465 |
| DOI: | 10.1145/3274667⟩ |
| Popis: | In the growing Internet of Things context, thousands of computing devices with various functionalities are producing data (from environmental sensors or other sources). However, they are also collecting, storing, processing and transmitting data to eventually communicate them securely to third parties (e.g., owners of devices or cloud data storage). The deployed devices are often battery-powered mobile or static nodes equipped with sensors and/or actuators, and they communicate using wireless technologies. Examples include unmanned aerial vehicles, wireless sensor nodes, smart beacons, and wearable health objects. Such resource-constrained devices include Active Radio Frequency IDentification (RFID) nodes, and these are used to illustrate our proposal. In most scenarios, these nodes are unattended in an adverse environment, so data confidentiality must be ensured from the sensing phase through to delivery to authorized entities: in other words, data must be securely stored and transmitted to prevent attack by active adversaries even if the nodes are captured. However, due to the scarce resources available to nodes in terms of energy, storage, and/or computation, the proposed security solution has to be lightweight. In this article, we propose a serverless protocol to enable Mobile Data Collectors (MDCs), such as drones, to securely collect data from mobile and static Active RFID nodes and then deliver them later to an authorized third party. The whole solution ensures data confidentiality at each step (from the sensing phase, before data collection by the MDC, once data have been collected by MDC, and during final delivery), while fulfilling the lightweight requirements for the resource-limited entities involved. To assess the suitability of the protocol against the performance requirements, it was implemented on the most resource-constrained devices to get the worst possible results. In addition, to prove the protocol fulfills the security requirements, it was analyzed using security games and also formally verified using the AVISPA and ProVerif tools. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|