A security framework for the internet of things in the future internet architecture

TY - JOUR

T1 - A security framework for the internet of things in the future internet architecture

AU - Liu, Xiruo

AU - Zhao, Meiyuan

AU - Li, Sugang

AU - Zhang, Feixiong

AU - Trappe, Wade

N1 - Publisher Copyright: © 2017 by the authors.

PY - 2017/6/28

Y1 - 2017/6/28

N2 - The Internet of Things (IoT) is a recent trend that extends the boundary of the Internet toinclude a wide variety of computing devices. Connecting many stand-alone IoT systems throughthe Internet introduces many challenges, with security being front-and-center since much of thecollected information will be exposed to a wide and often unknown audience. Unfortunately,due to the intrinsic capability limits of low-end IoT devices, which account for a majority of theIoT end hosts, many traditional security methods cannot be applied to secure IoT systems, whichopen a door for attacks and exploits directed both against IoT services and the broader Internet.This paper addresses this issue by introducing a unified IoT framework based on the MobilityFirstfuture Internet architecture that explicitly focuses on supporting security for the IoT. Our designintegrates local IoT systems into the global Internet without losing usability, interoperability andsecurity protection. Specifically, we introduced an IoT middleware layer that connects heterogeneoushardware in local IoT systems to the global MobilityFirst network. We propose an IoT name resolutionservice (IoT-NRS) as a core component of the middleware layer, and develop a lightweight keyingprotocol that establishes trust between an IoT device and the IoT-NRS.

AB - The Internet of Things (IoT) is a recent trend that extends the boundary of the Internet toinclude a wide variety of computing devices. Connecting many stand-alone IoT systems throughthe Internet introduces many challenges, with security being front-and-center since much of thecollected information will be exposed to a wide and often unknown audience. Unfortunately,due to the intrinsic capability limits of low-end IoT devices, which account for a majority of theIoT end hosts, many traditional security methods cannot be applied to secure IoT systems, whichopen a door for attacks and exploits directed both against IoT services and the broader Internet.This paper addresses this issue by introducing a unified IoT framework based on the MobilityFirstfuture Internet architecture that explicitly focuses on supporting security for the IoT. Our designintegrates local IoT systems into the global Internet without losing usability, interoperability andsecurity protection. Specifically, we introduced an IoT middleware layer that connects heterogeneoushardware in local IoT systems to the global MobilityFirst network. We propose an IoT name resolutionservice (IoT-NRS) as a core component of the middleware layer, and develop a lightweight keyingprotocol that establishes trust between an IoT device and the IoT-NRS.

KW - Future Internet

KW - Internet of things

KW - Key management

KW - Name resolution

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=85022194478&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85022194478&partnerID=8YFLogxK

U2 - 10.3390/fi9030027

DO - 10.3390/fi9030027

M3 - Article

SN - 1999-5903

VL - 9

JO - Future Internet

JF - Future Internet

IS - 3

M1 - 27

ER -