Towards Secure and Privacy-Preserving IoT Enabled Smart Home: Architecture and Experimental Study

Mamun Abu-Tair; Soufiene Djahel; Philip Perry; Bryan Scotney; Unsub Zia; Jorge Martinez Carracedo; Ali Sajjad

doi:10.3390/s20216131

Towards Secure and Privacy-Preserving IoT Enabled Smart Home: Architecture and Experimental Study

Sensors ◽

10.3390/s20216131 ◽

2020 ◽

Vol 20 (21) ◽

pp. 6131

Author(s):

Mamun Abu-Tair ◽

Soufiene Djahel ◽

Philip Perry ◽

Bryan Scotney ◽

Unsub Zia ◽

...

Keyword(s):

Experimental Study ◽

Smart Home ◽

Privacy Preservation ◽

Smart Cities ◽

Security And Privacy ◽

Test Cases ◽

Security Threats ◽

Hardware Implementations ◽

Cryptographic Algorithms ◽

Iot Devices

Internet of Things (IoT) technology is increasingly pervasive in all aspects of our life and its usage is anticipated to significantly increase in future Smart Cities to support their myriad of revolutionary applications. This paper introduces a new architecture that can support several IoT-enabled smart home use cases, with a specified level of security and privacy preservation. The security threats that may target such an architecture are highlighted along with the cryptographic algorithms that can prevent them. An experimental study is performed to provide more insights about the suitability of several lightweight cryptographic algorithms for use in securing the constrained IoT devices used in the proposed architecture. The obtained results showed that many modern lightweight symmetric cryptography algorithms, as CLEFIA and TRIVIUM, are optimized for hardware implementations and can consume up to 10 times more energy than the legacy techniques when they are implemented in software. Moreover, the experiments results highlight that CLEFIA significantly outperforms TRIVIUM under all of the investigated test cases, and the latter performs 100 times worse than the legacy cryptographic algorithms tested.

Download Full-text

Security Privacy in Internet of Things(IOT)

International Journal of Advanced Research in Computer Science and Software Engineering ◽

10.23956/ijarcsse.v7i12.504 ◽

2018 ◽

Vol 7 (12) ◽

pp. 57

Author(s):

Samruddhi S. Burhade ◽

Sonal N. Deshmukh

Keyword(s):

Internet Of Things ◽

Public Safety ◽

Smart Cities ◽

Security And Privacy ◽

The Internet ◽

Security Threats ◽

Embedded Computing ◽

Iot Devices ◽

The Internet Of Things

The Internet Of Things(IOT) is interconnection between identifiable embedded computing devices. Internet of Things is highly on the rise from smart cities, environment, health, energy, vehicle, transport, public safety to our daily essentials. Internet of Things has completely revitalized these areas. IOT expect the advanced connectivity with devices services. This paper highlighted the security and privacy aspect of IOT and various security threats which are given in each concept related to IOT. Various techniques are used for security and privacy of IOT devices and easy to adapt by users.

Download Full-text

HomeTec Software for Security Aspects of Smart Home Devices Based on IoT

10.54216/jcim.050101 ◽

2021 ◽

pp. 5-16

Author(s):

Parth Rustagi ◽

◽

...

Keyword(s):

Smart Home ◽

Denial Of Service ◽

Security Protocols ◽

The Internet ◽

Security Threats ◽

Deep Dive ◽

Cost Cutting ◽

Full Control ◽

Iot Devices ◽

Service Data

As useful as it gets to connect devices to the internet to make life easier and more comfortable, it also opens the gates to various cyber threats. The connection of Smart Home devices to the internet makes them vulnerable to malicious hackers that infiltrate the system. Hackers can penetrate these systems and have full control over devices. This can lead to denial of service, data leakage, invasion of privacy, etc. Thus security is a major aspect of Smart home devices. However, many companies manufacturing these Smart Home devices have little to no security protocols in their devices. In the process of making the IoT devices cheaper, various cost-cutting is done on the security protocols in IoT devices. In some way, many manufactures of the devices don’t even consider this as a factor to build upon. This leaves the devices vulnerable to attacks. Various authorities have worked upon to standardize the security aspects for the IoT and listed out guidelines for manufactures to follow, but many fail to abide by them. This paper introduces and talks about the various threats, various Security threats to Smart Home devices. It takes a deep dive into the solutions for the discussed threats. It also discusses their prevention. Lastly, it discusses various preventive measures and good practices to be incorporated to protect devices from any future attacks.

Download Full-text

The Role of AI-Based Integrated Physical Security Governance for Optimizing IoT Devices Connectivity in Smart Cities

AI-Based Services for Smart Cities and Urban Infrastructure - Advances in Computational Intelligence and Robotics ◽

10.4018/978-1-7998-5024-3.ch014 ◽

2021 ◽

pp. 289-309

Author(s):

Rajan R. ◽

Venkata Subramanian Dayanandan ◽

Shankar P. ◽

Ranganath Tngk

Keyword(s):

Smart City ◽

Smart Cities ◽

Security Threats ◽

Security Measures ◽

Physical Security ◽

Security Technology ◽

Security Controls ◽

World Class ◽

Iot Devices

A smart city aims at developing an ecosystem wherein the citizens will have instant access to amenities required for a healthy and safe living. Since the mission of smart city is to develop and integrate many facilities, it is envisaged that there is a need for making the information available instantly for right use of such infrastructure. So, there exists a need to design and implement a world-class physical security measures which acts as a bellwether to protect people life from physical security threats. It is a myth that if placing adequate number of cameras alone would enhance physical security controls in smart cities. There is a need for designing and building comprehensive physical security controls, based on the principles of “layered defense-in-depth,” which integrates all aspects of physical security controls. This chapter will review presence of existing physical security technology controls for smart cities in line with the known security threats and propose the need for an AI-enabled physical security premise.

Download Full-text

Security Risk Measurement for Information Leakage in IoT-Based Smart Homes from a Situational Awareness Perspective

Sensors ◽

10.3390/s19092148 ◽

2019 ◽

Vol 19 (9) ◽

pp. 2148 ◽

Cited By ~ 13

Author(s):

Mookyu Park ◽

Haengrok Oh ◽

Kyungho Lee

Keyword(s):

Smart Home ◽

Situational Awareness ◽

Personal Information ◽

Human Life ◽

Information Leakage ◽

Security Threats ◽

Security Risk ◽

Iot Security ◽

Home Based ◽

Iot Devices

Internet-of-Things (IoT) is a technology that is extensively being used in various fields. Companies like Samsung, LG, and Apple are launching home appliances that use IoT as a part of their smart home business. Currently, Intelligent Things which combine artificial intelligence (AI) and IoT are being developed. Most of these devices are configured to collect and respond to human behavior (motion, voice, etc.) through built-in sensors. If IoT devices do not ensure high security, personal information could be leaked. This paper describes the IoT security threats that can cause information leakage from a hierarchical viewpoint of cyberspace. In addition, because these smart home-based IoT devices are closely related to human life, considering social damage is a problem. To overcome this, we propose a framework to measure the risk of IoT devices based on security scenarios that can occur in a smart home.

Download Full-text

Lightweight MIPv6 with IPSec Support

Mobile Information Systems ◽

10.1155/2014/563274 ◽

2014 ◽

Vol 10 (1) ◽

pp. 37-77 ◽

Cited By ~ 8

Author(s):

Antonio J. Jara ◽

David Fernandez ◽

Pablo Lopez ◽

Miguel A. Zamora ◽

Antonio F. Skarmeta

Keyword(s):

Smart Cities ◽

Mobile Ipv6 ◽

Security And Privacy ◽

Mobility Support ◽

Memory Processing ◽

Constrained Environments ◽

Iot Devices ◽

The One ◽

New Generation ◽

Constrained Devices

Mobility management is a desired feature for the emerging Internet of Things (IoT). Mobility aware solutions increase the connectivity and enhance adaptability to changes of the location and infrastructure. IoT is enabling a new generation of dynamic ecosystems in environments such as smart cities and hospitals. Dynamic ecosystems require ubiquitous access to Internet, seamless handover, flexible roaming policies, and an interoperable mobility protocol with existing Internet infrastructure. These features are challenges for IoT devices, which are usually constrained devices with low memory, processing, communication and energy capabilities. This work presents an analysis of the requirements and desirable features for the mobility support in the IoT, and proposes an efficient solution for constrained environments based on Mobile IPv6 and IPSec. Compatibility with IPv6-existing protocols has been considered a major requirement in order to offer scalable and inter-domain solutions that were not limited to specific application domains in order to enable a new generation of application and services over Internet-enabled dynamic ecosystems, and security support based on IPSec has been also considered, since dynamic ecosystems present several challenges in terms of security and privacy. This work has, on the one hand, analysed suitability of Mobile IPv6 and IPSec for constrained devices, and on the other hand, analysed, designed, developed and evaluated a lightweight version of Mobile IPv6 and IPSec. The proposed solution of lightweight Mobile IPv6 with IPSec is aware of the requirements of the IoT and presents the best solution for dynamic ecosystems in terms of efficiency and security adapted to IoT-devices capabilities. This presents concerns in terms of higher overhead and memory requirements. But, it is proofed and concluded that even when higher memory is required and major overhead is presented, the integration of Mobile IPv6 and IPSec for constrained devices is feasible.

Download Full-text

Lightweight Blockchain to Improve Security and Privacy in Smarthome

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.f9006.038620 ◽

2020 ◽

Vol 8 (6) ◽

pp. 5021-5027

Keyword(s):

Internet Of Things ◽

Smart Home ◽

Resource Constraints ◽

Security And Privacy ◽

Cyber Threats ◽

Distributed Ledger ◽

Application Architecture ◽

Share Data ◽

Iot Devices ◽

Smart Home Appliances

Internet of Things (IoT) growing at a rate of exponential numbers in recent years has received extensive attention with BlockChain (BC) technology which provide trust to IoT with its immutable nature, decentralization in computing, resource constraints, security and privacy. The distributed ledger of transactions in BC is path leading technology for addressing Cyber Threats in the form of data theft; it provides secure application architecture which has proven track of record for securing data. IoT devices using BC enabled to communicate between objects, share data, decide based on business criteria and act as a medium to securely transmit information. This work provides lightweight BlockChain with two prominent consensus mechanism PoW – Proof of Work and PoS – Proof of Stake for smart IoT devices. Next, Smart Home Device (SMD) is ensures providing best-in-class Security and Privacy for smart home Appliances. Further provides future advances in the Approach.

Download Full-text

IoT-based Application of Information Security Triad

International Journal of Interactive Mobile Technologies (iJIM) ◽

10.3991/ijim.v15i24.27333 ◽

2021 ◽

Vol 15 (24) ◽

pp. 61-76

Author(s):

Mana Saleh Al Reshan

Keyword(s):

Information Security ◽

Smart Home ◽

Cyber Attacks ◽

Security And Privacy ◽

Smart Devices ◽

Exponential Increase ◽

Operational Capabilities ◽

Smart Tv ◽

Iot Devices ◽

Smart Home Appliances

Information Security is the foremost concern for IoT (Internet of things) devices and applications. Since the advent of IoT, its applications and devices have experienced an exponential increase in numerous applications which are utilized. Nowadays we people are becoming smart because we started using smart devices like a smartwatch, smart TV, smart home appliances. These devices are part of the IoT devices. The IoT device differs widely in capacity storage, size, computational power, and supply of energy. With the rapid increase of IoT devices in different IoT fields, information security, and privacy are not addressed well. Most IoT devices having constraints in computational and operational capabilities are a threat to security and privacy, also prone to cyber-attacks. This study presents a CIA triad-based information security implementation for the four-layer architecture of the IoT devices. An overview of layer-wise threats to the IoT devices and finally suggest CIA triad-based security techniques for securing the IoT devices.

Download Full-text

Cryptanalysis of Compact-LWE and Related Lightweight Public Key Encryption

Security and Communication Networks ◽

10.1155/2018/4957045 ◽

2018 ◽

Vol 2018 ◽

pp. 1-9 ◽

Cited By ~ 1

Author(s):

Dianyan Xiao ◽

Yang Yu

Keyword(s):

Quantum Computing ◽

Privacy Protection ◽

Essential Role ◽

Public Key Cryptography ◽

Security And Privacy ◽

Public Key ◽

Public Key Encryption ◽

Worst Case ◽

Cryptographic Algorithms ◽

Iot Devices

In the emerging Internet of Things (IoT), lightweight public key cryptography plays an essential role in security and privacy protection. With the approach of quantum computing era, it is important to design and evaluate lightweight quantum-resistant cryptographic algorithms applicable to IoT. LWE-based cryptography is a widely used and well-studied family of postquantum cryptographic constructions whose hardness is based on worst-case lattice problems. To make LWE friendly to resource-constrained IoT devices, a variant of LWE, named Compact-LWE, was proposed and used to design lightweight cryptographic schemes. In this paper, we study the so-called Compact-LWE problem and clarify that under certain parameter settings it can be solved in polynomial time. As a consequence, our result leads to a practical attack against an instantiated scheme based on Compact-LWE proposed by Liu et al. in 2017.

Download Full-text

An efficient anonymous authentication and key agreement scheme with privacy-preserving for smart cities

International Journal of Distributed Sensor Networks ◽

10.1177/15501477211026804 ◽

2021 ◽

Vol 17 (6) ◽

pp. 155014772110268

Author(s):

Xueya Xia ◽

Sai Ji ◽

Pandi Vijayakumar ◽

Jian Shen ◽

Joel J. P. C. Rodrigues

Keyword(s):

Internet Of Things ◽

Privacy Preservation ◽

Key Agreement ◽

Smart Cities ◽

Security Analysis ◽

Security And Privacy ◽

Experimental Simulation ◽

Authentication And Key Agreement ◽

Anonymous Authentication ◽

Evaluation Mechanism

Internet of Things devices are responsible for collecting and transmitting data in smart cities, assisting smart cities to release greater potential. As Internet of Things devices are increasingly connected to smart cities, security and privacy have gradually become important issues. Recently, research works on mitigating security challenges of Internet of Things devices in smart cities mainly focused on authentication. However, in most of the existing authentication protocols, the trustworthiness evaluation of Internet of Things devices in smart cities is ignored. Considering the trustworthiness evaluation of Internet of Things devices is an important constituent of data source authentication, in this article, a cloud-aided trustworthiness evaluation mechanism is first designed to improve the credibility of the Internet of Things devices in smart cities. Furthermore, aiming at the problem that the user’s privacy is easy to leak in the process of authentication, an anonymous authentication and key agreement scheme based on non-interactive zero knowledge argument is proposed. The proposed scheme can ensure the privacy preservation and data security of Internet of Things devices in smart cities. The security analysis demonstrates that the proposed scheme is secure under q-SDH problem. The experimental simulation indicates that the performance of the proposal is greatly improved compared with other similar schemes.

Download Full-text

Streamlining IoT system development with open standards

it - Information Technology ◽

10.1515/itit-2020-0016 ◽

2020 ◽

Vol 62 (5-6) ◽

pp. 215-226

Author(s):

Ege Korkan ◽

Sebastian Kaebisch ◽

Sebastian Steinhorst

Keyword(s):

Industry 4.0 ◽

Smart Home ◽

World Wide ◽

System Development ◽

Smart Cities ◽

Time To Market ◽

Wide Range ◽

The World ◽

Iot Devices ◽

The Internet Of Things

AbstractThe Internet of Things (IoT) is bringing Internet connectivity to a wide range of devices which results in an increasing number of products for smart home, industry 4.0 and/or smart cities. Even though IoT has the ambition to reach an increasing amount of devices and be scalable across different domains, lack of interoperability inhibits this scope to be attained. Recent standardization efforts by the World Wide Web Consortium (W3C) are addressing the interoperability problem by the means of Thing Description (TD) that allows humans and machines to understand the capabilities and communication interfaces of IoT devices. In this paper, we show a more systematic and streamlined development of IoT devices and systems that relies on the TD standard. We introduce three different complementary methods that can be applied independently in the different stages of the development, or as a framework to streamline the development of IoT devices and systems. As a result of using the TD standard, interoperability between IoT devices of various stakeholders is ensured from early stages and the time to market is reduced.

Download Full-text