A Lightweight and Secure Communication Protocol for the IoT Environment

Zikang Ding; Daojing He; Qi Qiao; Xuru Li; Yun Gao; Sammy Chan; Kim-Kwang Raymond Choo

doi:10.1109/TDSC.2023.3267979

A Lightweight and Secure Communication Protocol for the IoT Environment

Zikang Ding, Daojing He^*, Qi Qiao, Xuru Li, Yun Gao, Sammy Chan, Kim-Kwang Raymond Choo

^*Corresponding author for this work

Department of Electrical Engineering

Research output: Journal Publications and Reviews › RGC 21 - Publication in refereed journal › peer-review

14 Citations (Scopus)

Abstract

Ensuring secure communications for the Internet of Things (IoT) systems remains a challenge. Due to exacting resource limitations of computing, memory, and communication in IoT environments, communication schemes based on asymmetric cryptographic systems can be challenging to deploy. An alternative is to deploy symmetric encryption schemes based on pre-shared keys. However, there are also challenges in designing such schemes and examples include how to achieve an optimal trade-off between security and performance levels while meeting resource consumption requirements. Hence, this paper presents a lightweight key synchronization update algorithm, which is then used as a building block in our proposed lightweight secure communication protocol. The security of the protocol is analyzed to show that it can resist common attacks, such as replay attacks, and man-in-the-middle attacks. We then use Tamarin, a widely accepted security protocol verification tool, for formal verification. In addition, we evaluate the randomness and computational performance of the lightweight key synchronization update algorithm and demonstrate that it outperforms other schemes. We also evaluate the performance of the protocol, in terms of computational and communication costs, to demonstrate utility. © 2023 IEEE.

Original language	English
Pages (from-to)	1050-1067
Journal	IEEE Transactions on Dependable and Secure Computing
Volume	21
Issue number	3
Online published	17 Apr 2023
DOIs	https://doi.org/10.1109/TDSC.2023.3267979
Publication status	Published - May 2024

Funding

This work was supported in part by the National Key R&D Program of China under Grant 2021YFB2700900, in part by the Shenzhen Science and Technology Program under Grants JSGG20220831103400002 and KCXST20221021111404010, in part by the National Natural Science Foundation of China under Grant U1936120, in part by the Fok Ying Tung Education Foundation of China under Grant 171058, in part by Guangdong Provincial Key Laboratory of Novel Security Intelligence Technologies under Grant 2022B1212010005, and in part by the University Grants Committee of the Hong Kong Special Administrative Region, China, under Grant CityU 11201421.

Research Keywords

Encryption
Generators
Internet of Things
Logistics
network security
Protocols
secure communication protocol
Security
Synchronization

RGC Funding Information

RGC-funded

Access Output

10.1109/TDSC.2023.3267979

Other Access Options

Check CityUHK Library

Permanent Link

Right click to copy link

Cite this

@article{5e76e96a0bed4ed7849d0c23f60ea2d4,

title = "A Lightweight and Secure Communication Protocol for the IoT Environment",

abstract = "Ensuring secure communications for the Internet of Things (IoT) systems remains a challenge. Due to exacting resource limitations of computing, memory, and communication in IoT environments, communication schemes based on asymmetric cryptographic systems can be challenging to deploy. An alternative is to deploy symmetric encryption schemes based on pre-shared keys. However, there are also challenges in designing such schemes and examples include how to achieve an optimal trade-off between security and performance levels while meeting resource consumption requirements. Hence, this paper presents a lightweight key synchronization update algorithm, which is then used as a building block in our proposed lightweight secure communication protocol. The security of the protocol is analyzed to show that it can resist common attacks, such as replay attacks, and man-in-the-middle attacks. We then use Tamarin, a widely accepted security protocol verification tool, for formal verification. In addition, we evaluate the randomness and computational performance of the lightweight key synchronization update algorithm and demonstrate that it outperforms other schemes. We also evaluate the performance of the protocol, in terms of computational and communication costs, to demonstrate utility. {\textcopyright} 2023 IEEE.",

keywords = "Encryption, Generators, Internet of Things, Logistics, network security, Protocols, secure communication protocol, Security, Synchronization",

author = "Zikang Ding and Daojing He and Qi Qiao and Xuru Li and Yun Gao and Sammy Chan and Choo, {Kim-Kwang Raymond}",

year = "2024",

month = may,

doi = "10.1109/TDSC.2023.3267979",

language = "English",

volume = "21",

pages = "1050--1067",

journal = "IEEE Transactions on Dependable and Secure Computing",

issn = "1545-5971",

publisher = "IEEE",

number = "3",

}

TY - JOUR

T1 - A Lightweight and Secure Communication Protocol for the IoT Environment

AU - Ding, Zikang

AU - He, Daojing

AU - Qiao, Qi

AU - Li, Xuru

AU - Gao, Yun

AU - Chan, Sammy

AU - Choo, Kim-Kwang Raymond

PY - 2024/5

Y1 - 2024/5

N2 - Ensuring secure communications for the Internet of Things (IoT) systems remains a challenge. Due to exacting resource limitations of computing, memory, and communication in IoT environments, communication schemes based on asymmetric cryptographic systems can be challenging to deploy. An alternative is to deploy symmetric encryption schemes based on pre-shared keys. However, there are also challenges in designing such schemes and examples include how to achieve an optimal trade-off between security and performance levels while meeting resource consumption requirements. Hence, this paper presents a lightweight key synchronization update algorithm, which is then used as a building block in our proposed lightweight secure communication protocol. The security of the protocol is analyzed to show that it can resist common attacks, such as replay attacks, and man-in-the-middle attacks. We then use Tamarin, a widely accepted security protocol verification tool, for formal verification. In addition, we evaluate the randomness and computational performance of the lightweight key synchronization update algorithm and demonstrate that it outperforms other schemes. We also evaluate the performance of the protocol, in terms of computational and communication costs, to demonstrate utility. © 2023 IEEE.

AB - Ensuring secure communications for the Internet of Things (IoT) systems remains a challenge. Due to exacting resource limitations of computing, memory, and communication in IoT environments, communication schemes based on asymmetric cryptographic systems can be challenging to deploy. An alternative is to deploy symmetric encryption schemes based on pre-shared keys. However, there are also challenges in designing such schemes and examples include how to achieve an optimal trade-off between security and performance levels while meeting resource consumption requirements. Hence, this paper presents a lightweight key synchronization update algorithm, which is then used as a building block in our proposed lightweight secure communication protocol. The security of the protocol is analyzed to show that it can resist common attacks, such as replay attacks, and man-in-the-middle attacks. We then use Tamarin, a widely accepted security protocol verification tool, for formal verification. In addition, we evaluate the randomness and computational performance of the lightweight key synchronization update algorithm and demonstrate that it outperforms other schemes. We also evaluate the performance of the protocol, in terms of computational and communication costs, to demonstrate utility. © 2023 IEEE.

KW - Encryption

KW - Generators

KW - Internet of Things

KW - Logistics

KW - network security

KW - Protocols

KW - secure communication protocol

KW - Security

KW - Synchronization

UR - http://www.scopus.com/inward/record.url?scp=85153797058&partnerID=8YFLogxK

UR - https://www.scopus.com/record/pubmetrics.uri?eid=2-s2.0-85153797058&origin=recordpage

U2 - 10.1109/TDSC.2023.3267979

DO - 10.1109/TDSC.2023.3267979

M3 - RGC 21 - Publication in refereed journal

SN - 1545-5971

VL - 21

SP - 1050

EP - 1067

JO - IEEE Transactions on Dependable and Secure Computing

JF - IEEE Transactions on Dependable and Secure Computing

IS - 3

ER -

A Lightweight and Secure Communication Protocol for the IoT Environment

Abstract

Funding

Research Keywords

RGC Funding Information

Access Output

Other Access Options

Permanent Link

Other Files and Links

Fingerprint

Cite this