Trust Schemas and ICN: Key to Secure Home IoT

被引:9
作者
Nichols, Kathleen [1 ]
机构
[1] Pollere Inc, Montara, CA 94037 USA
来源
PROCEEDINGS OF THE 2021 8TH ACM CONFERENCE ON INFORMATION-CENTRIC NETWORKING (ICN '21) | 2021年
关键词
Information-Centric Networking; Internet of Things; Trust management; Secure IoT;
D O I
10.1145/3460417.3482972
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Home and business internet of things (IoT) presents security challenges that can be addressed using information-centric networking (ICN) to secure information rather than channels. In particular, we leverage ICN's per-packet signing, combined with recent innovations in trust schemas, to construct a strong trust zone. This architecture creates domains governed by a secured trust schema provided to every device during its enrollment together with the device's attribute-based signing cert chain(s). Applications don't need to be rewritten to gain security; a run-time library with an MQTT-like publish/subscribe API uses the provisioned trust schema and certs to construct, sign and ship outgoing publications and to both cryptographically and structurally validate a subscriber's incoming publications. This unique application of trust schemas (Versec) is explained and an example home IoT framework is described where trust schemas express straightforward, homeowner-specific policies that an open-source library enforces at run-time on behalf of security-agnostic applications. Along with the specific innovation in trust management, the platform exploits current and emergent IoT best practices. Utility programs, libraries, and examples are available as an open-source Data-Centric Toolkit.
引用
收藏
页码:95 / 106
页数:12
相关论文
共 68 条
[1]  
Abadi Martin, 2007, 3 INT WORKSH NETW ME
[2]   Content-Based Security for the Web [J].
Afanasyev, Alexander ;
Halderman, J. Alex ;
Ruoti, Scott ;
Seamons, Kent ;
Yu, Yingdi ;
Zappala, Daniel ;
Zhang, Lixia .
PROCEEDINGS OF THE 2016 NEW SECURITY PARADIGMS WORKSHOP (NSPW'16), 2016, :49-60
[3]  
[Anonymous], 2021, ADDITIONAL AUTHENTIC
[4]  
[Anonymous], 2019, BRIDGE, V49
[5]  
[Anonymous], 2020, IMPLEMENTING CUE
[6]  
[Anonymous], 2020, CUE TUTORIALS
[7]  
[Anonymous], 2015, P 2 ACM C INF CENTR
[8]  
[Anonymous], 2021, SUPERVISOR PROCESS C
[9]  
[Anonymous], 2020, CUE HIST PRINCIPLES
[10]  
[Anonymous], 2021, TPM ATTESTATION