Evaluation of Out-of-Band Channels for IoT Security

dc.contributorAalto-yliopistofi
dc.contributorAalto Universityen
dc.contributor.authorLatvala, Sampsaen_US
dc.contributor.authorSethi, Mohiten_US
dc.contributor.authorAura, Tuomasen_US
dc.contributor.departmentDepartment of Computer Scienceen
dc.contributor.groupauthorProfessorship Aura Tuomasen
dc.contributor.groupauthorHelsinki Institute for Information Technology (HIIT)en
dc.contributor.groupauthorComputer Science - Security and Privacy (securityprivacy)en
dc.contributor.groupauthorHelsinki-Aalto Institute for Cybersecurity (HAIC)en
dc.contributor.organizationDepartment of Computer Scienceen_US
dc.date.accessioned2020-05-07T12:41:23Z
dc.date.available2020-05-07T12:41:23Z
dc.date.issued2020-01en_US
dc.description.abstractSecure bootstrapping is the process by which a device gets the necessary configuration information and security credentials to become operational. In many pervasive computing and Internet-of-Things scenarios, it is often not possible to rely on the existence of a trusted third party or other network infrastructure for bootstrapping. Therefore, several device bootstrapping protocols rely on an out-of-band (OOB) channel for initial device authentication and configuration. We begin this paper by understanding the need for OOB channels and performing a literature survey of existing standards and devices that rely on OOB channels. We then look at one candidate bootstrapping protocol: Nimble out-of-band authentication for EAP (EAP-NOOB). We provide a brief overview of the EAP-NOOB protocol and describe its unique OOB channel requirements. Thereafter, we implement three OOB channels for EAP-NOOB using near-field communication, quick response codes, and sound. Using our implementation, we evaluate the usability, security, benefits, and limitations of each of the OOB channels.en
dc.description.versionPeer revieweden
dc.format.mimetypeapplication/pdfen_US
dc.identifier.citationLatvala, S, Sethi, M & Aura, T 2020, ' Evaluation of Out-of-Band Channels for IoT Security ', SN Computer Science, vol. 1, no. 1, 18 . https://doi.org/10.1007/s42979-019-0018-8en
dc.identifier.doi10.1007/s42979-019-0018-8en_US
dc.identifier.issn2661-8907
dc.identifier.otherPURE UUID: 99f244e3-5ea1-455d-b9aa-af5c46434563en_US
dc.identifier.otherPURE ITEMURL: https://research.aalto.fi/en/publications/99f244e3-5ea1-455d-b9aa-af5c46434563en_US
dc.identifier.otherPURE FILEURL: https://research.aalto.fi/files/42682724/Latvala2019_Article_EvaluationOfOut_of_BandChannel_1.pdfen_US
dc.identifier.urihttps://aaltodoc.aalto.fi/handle/123456789/44057
dc.identifier.urnURN:NBN:fi:aalto-202005073037
dc.language.isoenen
dc.publisherSpringer Nature
dc.relation.ispartofseriesSN Computer Scienceen
dc.relation.ispartofseriesVolume 1en
dc.rightsopenAccessen
dc.titleEvaluation of Out-of-Band Channels for IoT Securityen
dc.typeA1 Alkuperäisartikkeli tieteellisessä aikakauslehdessäfi
dc.type.versionpublishedVersion

Files