Lithe: Lightweight Secure CoAP for the Internet of Things
- 7 August 2013
- journal article
- research article
- Published by Institute of Electrical and Electronics Engineers (IEEE) in IEEE Sensors Journal
- Vol. 13 (10), 3711-3720
- https://doi.org/10.1109/jsen.2013.2277656
Abstract
The Internet of Things (IoT) enables a wide range of application scenarios with potentially critical actuating and sensing tasks, e.g., in the e-health domain. For communication at the application layer, resource-constrained devices are expected to employ the constrained application protocol (CoAP) that is currently being standardized at the Internet Engineering Task Force. To protect the transmission of sensitive information, secure CoAP mandates the use of datagram transport layer security (DTLS) as the underlying security protocol for authenticated and confidential communication. DTLS, however, was originally designed for comparably powerful devices that are interconnected via reliable, high-bandwidth links. In this paper, we present Lithe-an integration of DTLS and CoAP for the IoT. With Lithe, we additionally propose a novel DTLS header compression scheme that aims to significantly reduce the energy consumption by leveraging the 6LoWPAN standard. Most importantly, our proposed DTLS header compression scheme does not compromise the end-to-end security properties provided by DTLS. Simultaneously, it considerably reduces the number of transmitted bytes while maintaining DTLS standard compliance. We evaluate our approach based on a DTLS implementation for the Contiki operating system. Our evaluation results show significant gains in terms of packet size, energy consumption, processing time, and network-wide response times when compressed DTLS is enabled.Keywords
This publication has 12 references indexed in Scilit:
- 6LoWPAN fragmentation attacks and mitigation mechanismsPublished by Association for Computing Machinery (ACM) ,2013
- Network‐layer security for the Internet of Things using TinyOS and BLIPInternational Journal of Communication Systems, 2012
- A DTLS based end-to-end security architecture for the Internet of Things with two-way authenticationPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2012
- End-to-End Transport Security in the IP-Based Internet of ThingsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2012
- Secure communication for the Internet of Things—a comparison of link‐layer security and IPsec for 6LoWPANSecurity and Communication Networks, 2012
- A Low-Power CoAP for ContikiPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2011
- Security Challenges in the IP-based Internet of ThingsWireless Personal Communications, 2011
- Securing communication in 6LoWPAN with compressed IPsecPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2011
- X-MACPublished by Association for Computing Machinery (ACM) ,2006
- Contiki - a lightweight and flexible operating system for tiny networked sensorsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2004