KEMBAR78
Internet of Things - Protocols and Security Issues | PDF | Internet Of Things | Computer Network
0% found this document useful (0 votes)
16 views6 pages

Internet of Things - Protocols and Security Issues

The document provides an overview of the Internet of Things (IoT), detailing its components, architectural frameworks, and key communication protocols. It highlights common security challenges faced by IoT systems, including unauthorized access and physical tampering, while discussing security mechanisms and limitations across various layers. The conclusion emphasizes the importance of continuous security enhancements and the need for robust protocols and standards as IoT technology evolves.

Uploaded by

gracehassan087
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
0% found this document useful (0 votes)
16 views6 pages

Internet of Things - Protocols and Security Issues

The document provides an overview of the Internet of Things (IoT), detailing its components, architectural frameworks, and key communication protocols. It highlights common security challenges faced by IoT systems, including unauthorized access and physical tampering, while discussing security mechanisms and limitations across various layers. The conclusion emphasizes the importance of continuous security enhancements and the need for robust protocols and standards as IoT technology evolves.

Uploaded by

gracehassan087
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 6

Internet of Things: Protocols and Security Issues

Basic IoT Communication Protocols and Common Security Challenges

Introduction to IoT
●​ What is the Internet of Things (IoT)?
○​ A collective network of connected devices and technology facilitating
communication between devices and the cloud, and among devices themselves.
○​ Integrates everyday "things" with the Internet, allowing devices with sensors to
collect data and respond intelligently.
○​ Envisions a future where objects with sensing and actuating capabilities
communicate using Internet protocols.
●​ Core Components of IoT Systems
○​ Sensors: Detect physical phenomena (e.g., light, heat, motion) and convert them
into electrical signals for data collection.
○​ Actuators: Translate electrical signals into physical movements or actions (e.g.,
switching lights, adjusting temperature).
○​ Transducers: A broader term encompassing both sensors and actuators,
transforming one form of energy into another.
●​ Goals and Vision of IoT
○​ Connect smart physical goods to enable intelligent decision-making.
○​ Simplify daily life by making information and control accessible anytime, anywhere.
○​ Enhance automation, efficiency, cost savings, and informed decision-making.
●​ Evolution of IoT
○​ Idea of connected devices since the 1980s, with early examples like
internet-connected vending machines.
○​ Term "Internet of Things" coined by Kevin Ashton in 1999.
○​ Driven by miniaturization and cost reduction of computer chips (e.g., RFID tags).
○​ Present: Billions of devices connected to the Internet, mostly via centralized
servers.
○​ Future: Devices increasingly connecting directly with other IoT devices, fostering
concepts like the "social Internet of Things".

IoT Architectural Frameworks


●​ Layered Architectures
○​ Three-Layer Model: The most basic and widely accepted, comprising:
■​ Perception Layer: Physical interaction, data collection from
sensors/actuators.
■​ Network Layer: Data transmission and connectivity.
■​ Application Layer: Delivers services and user interfaces.
○​ Four-Layer Model: Expands on the three-layer by adding a Middleware Layer
between the Network and Application Layers.
■​ Middleware Layer: Data processing, storage, and abstraction (e.g., edge
analytics, APIs).
○​ Some models may include a Business Layer above the Application Layer for user
data security, financial operations, and app management.
●​ Functions of Each Layer
○​ Perception Layer: Senses environment, collects raw data, includes actuators for
physical actions.
○​ Network Layer: Transmits data, establishes communication, performs initial data
analysis.
○​ Middleware Layer: Provides data storage and computation, edge analytics,
exposes APIs.
○​ Application Layer: Delivers personalized services, manages processed data,
provides user interfaces.

Key Communication Protocols - Part 1


●​ IEEE 802.15.4 (Low-Rate Wireless Personal Area Network)
○​ Overview: Foundational standard for low-rate WPANs, defining MAC and PHY
layers.
○​ Characteristics: Supports low-cost, low-speed communication for
power-constrained devices (40-250 Kb/s).
○​ Variants: Includes 802.15.4a (additional PHY layers) and 802.15.4e
(time-synchronized multi-hop communications).
●​ 6LoWPAN (IPv6 over Low-Power Wireless Personal Area Networks)
○​ Overview: Enables IPv6 packets over low-power wireless networks (e.g., IEEE
802.15.4), allowing direct Internet connectivity for constrained devices.
○​ Advantages: Integrates with open IP standards, supports end-to-end IP
addressable nodes, offers self-healing mesh routing, and allows leaf nodes to sleep
for energy saving.
○​ Applications: Automation, industrial monitoring, smart grids, smart homes.
●​ RPL (Routing Protocol for Low-Power and Lossy Networks)
○​ Overview: Specialized routing technology for IoT, adaptable to various application
domains via Objective Functions (OFs).
○​ Operation: Constructs a Destination-Oriented Directed Acyclic Graph (DODAG)
based on node rank and link costs.
○​ Traffic Topologies: Supports Multipoint-to-Point (MP2P), Point-to-Multipoint
(P2MP), and Point-to-Point (P2P) traffic.
○​ Control Messages: Uses DIO, DIS, DAO, DAO-ACK, and CC messages,
encapsulated in ICMPv6 packets.

Key Communication Protocols - Part 2


●​ CoAP (Constrained Application Protocol)
○​ Overview: Lightweight web transfer protocol for constrained nodes and networks,
similar to HTTP but optimized for IoT.
○​ Operation: Operates over UDP, uses a request/response model, and supports
confirmable/non-confirmable messages.
●​ MQTT (Message Queuing Telemetry Transport)
○​ Overview: Extremely lightweight publish/subscribe messaging protocol for
M2M/IoT connectivity.
○​ Operation: Uses a central broker, clients (publishers/subscribers), and topics. Ideal
for low-bandwidth, high-latency networks.
○​ QoS Levels: Supports QoS 0 (at most once), QoS 1 (at least once), and QoS 2
(exactly once) for message delivery reliability.
●​ HTTP (Hypertext Transfer Protocol)
○​ Overview: Foundation of the World Wide Web, widely used and adaptable.
○​ Limitations for IoT: Verbose, text-based, synchronous request-response, high
power consumption, and not designed for event-based communication, making it
less suitable for constrained devices.
●​ AMQP (Advanced Message Queuing Protocol)
○​ Overview: Open protocol for asynchronous message queuing, emphasizing
reliable message delivery and sophisticated queuing mechanisms.
○​ Operation: Uses exchanges and queues to route messages from publishers to
consumers.
●​ Zigbee
○​ Overview: Short-range, low-power, low-data rate wireless protocol for home
automation and industrial control.
○​ Network Topologies: Supports star, cluster tree, and mesh topologies.
●​ Bluetooth Low Energy (BLE)
○​ Overview: Designed for low-power operation, ideal for transferring small amounts
of data with minimal power consumption.
○​ Applications: Smart devices, proximity marketing, indoor location tracking, asset
management, contact tracing, employee safety.
●​ Wi-Fi
○​ Overview: Wireless networking technology allowing devices to interface with the
Internet, providing pervasive connectivity.
○​ Applications: Smart homes, industrial facilities, offices, smart cities.
●​ RF (Radio Frequency)
○​ Overview: Refers to the oscillation rate of electric currents or electromagnetic
fields, underlying many wireless communication protocols.
○​ Applications: Telecommunications (radio, TV, cellular, Wi-Fi, Bluetooth), medicine,
industrial heating.
●​ NFC (Near-Field Communication)
○​ Overview: Very short-range wireless communication (millimeters) for instant data
transmission between mobile devices.
○​ Modes: Supports active (both devices generate fields) and passive (one device
generates field) modes, with passive being energy-efficient.

Common IoT Security Challenges


●​ General Vulnerabilities
○​ Unauthorized Access: Most severe issue; attackers gain control without proper
authorization.
○​ Default Passwords: Devices shipped with easily guessable credentials, exploited
by malware like Mirai.
○​ Node Tampering: Physical access to sensor nodes to alter hardware or sensitive
information (e.g., cryptographic keys).
○​ Fake Data Injection Attacks: Introduction of counterfeit nodes to inject malicious
data, causing malfunction or DoS.
○​ Side-Channel Attacks: Exploiting inadvertently leaked information (e.g., power
consumption) to compromise encryption.
○​ DoS/DDoS (Denial of Service/Distributed Denial of Service): Flooding networks
to overwhelm capacity, making systems unavailable (e.g., Mirai botnet).
○​ Phishing: Deceptive tactics to steal user credentials, granting unauthorized
access.
●​ Main Challenges
○​ Security limitations of low-cost devices.
○​ Growing number of devices creating larger attack surfaces.
○​ Lack of continuous security updates for many devices.
○​ Security is an evolving process, not a one-time solution.

Security Mechanisms & Limitations: Lower Layers


●​ PHY/MAC Layer (IEEE 802.15.4) Security
○​ Mechanisms: Provides MAC layer security services using AES (128-bit keys) for
confidentiality (AES-CTR), authenticity/integrity (AES-CBC-MAC), and combined
(AES-CCM). Supports semantic security and replay protection via Frame Counter
and Key Control fields. Uses Access Control Lists (ACLs) for security information.
○​ Limitations: Lacks keying model specification, issues with IV management (nonce
reuse), inadequate ACL support for group/network-shared keying, and no protection
for acknowledgment messages.
○​ Research: Focus on key management mechanisms for higher layers, security in
time-bounded environments (802.15.4e), and new solutions via IETF's 6tisch
working group.
●​ Network Layer (6LoWPAN) Security
○​ Mechanisms: No specific security mechanisms defined at the adaptation layer, but
relevant documents discuss vulnerabilities and requirements. Link-layer AES
security can provide a basis for protection.
○​ Challenges: Adoption of IPSec faces resource constraints. Vulnerable to packet
fragmentation attacks due to lack of authentication. Key management is a critical
cross-layer aspect.
○​ Proposals: Compressed security headers (similar to IPSec AH/ESP), adding fields
to fragmentation header (timestamps/nonces), per-fragment sender authentication,
and simplified Internet key management solutions (e.g., minimal IKEv2).
●​ Routing Layer (RPL) Security
○​ Mechanisms: Defines secure versions of routing control messages (DIS, DIO,
DAO, DAO-ACK, CC) and three basic security modes (Unsecured, Preinstalled,
Authenticated). Uses AES/CCM for integrity and RSA/SHA-256 for digital
signatures.
○​ Limitations: Lacks mechanisms for complex security needs beyond basic secure
routing control messages. RFCs discuss general requirements but not specific
mechanisms.
○​ Challenges: Defining threat models specific to application areas, protecting against
internal attackers (e.g., rank attacks, sinkhole attacks), and defining node
authentication/key retrieval with public keys/digital certificates.
Security Mechanisms & Limitations: Upper Layers & Advanced
Solutions
●​ Application Layer (CoAP) Security
○​ Mechanisms: Binds to DTLS (Datagram Transport-Layer Security) for
confidentiality, authentication, integrity, non-repudiation, and replay protection. Uses
AES/CCM and supports security modes: NoSec, PreSharedKey, RawPublicKey,
and Certificates (using ECC).
○​ Limitations: DTLS handshake can significantly impact constrained devices
(fragmentation, high computation cost). ECC viability on constrained platforms is
debated. Issues with online certificate validation, CoAP proxies, and multicast
communications.
○​ Proposals: Key management for secure multicast, DTLS optimizations (stateless
compression, RESTful handshake), offloading costly DTLS operations to gateways,
and object security with new CoAP options.
●​ Middleware Layer Attacks
○​ Vulnerabilities: Susceptible to SQL injection, signature attacks, and
Man-in-the-Middle (MitM) attacks. Malicious middleware can gain unauthorized
control over the IoT infrastructure.
○​ Mitigation: Robust database and cloud security measures are paramount.
●​ Advanced Security Solutions & Research Directions
○​ Key Management: Designing mechanisms to support end-to-end security at higher
layers, leveraging existing hardware encryption, and adapting simplified Internet
key management solutions.
○​ DTLS Optimizations: Research on optimizing DTLS for constrained environments,
addressing handshake overhead, and offloading costly operations to more powerful
devices or gateways.
○​ Public-Key Cryptography & Certificates: Investigating viability of ECC on
constrained platforms, certificate pre-validation, session resumption, and object
security approaches.
○​ General Research Opportunities: Improving real-time data detection accuracy,
privacy preservation at the perception layer, lightweight and efficient authentication
systems for constrained devices, and expanding security for various
application-layer protocols.

Conclusion & Future Outlook


●​ Key Takeaways:
○​ IoT integrates physical objects into a hyper-connected digital ecosystem, driven by
miniaturization and cost reduction of embedded components.
○​ Layered architectures (Perception, Network, Middleware, Application) manage
complexity, but each layer presents unique vulnerabilities.
○​ Diverse communication protocols (IEEE 802.15.4, 6LoWPAN, RPL, CoAP, MQTT,
Zigbee, BLE, etc.) form the backbone, balancing efficiency and reliability.
○​ IoT faces significant security challenges, including unauthorized access, default
passwords, physical tampering, and various cyberattacks across all layers.
●​ Importance of Continuous Security:
○​ Security is paramount for widespread and secure adoption, especially as IoT
integrates into critical infrastructure and daily life.
○​ A "defense-in-depth" strategy with robust, tailored controls at every layer is
essential.
○​ Continuous security enhancements and proactive threat mitigation are crucial due
to evolving threats and device limitations.
●​ Future Trends:
○​ Continued development of more robust, lightweight, and efficient protocols and
security mechanisms.
○​ Focus on end-to-end security, cross-layer approaches, and secure key
management.
○​ Establishment and widespread adoption of robust security standards and best
practices across the entire IoT ecosystem.

References
●​ Batra, N., & Goyal, S. (2025). IoT Fundamentals with a Practical Approach. CRC Press.
●​ Granjal, J., Monteiro, E., & Sá Silva, J. (2015). Security for the Internet of Things: A
Survey of Existing Protocols and Open Research Issues. IEEE Communications Surveys
& Tutorials, 17(3), 1294-1313.
●​ Choudharya, S., & Meenab, G. (2022). Internet of Things: Protocols, Applications and
Security Issues. Procedia Computer Science, 215, 274-288.
●​ SpectralOps. (n.d.). Top 5 Most Commonly Used IoT Protocols and Their Security Issues.
Retrieved from
https://spectralops.io/blog/top-5-most-commonly-used-iot-protocols-and-their-security-issu
es/
●​ Cyberscope. (n.d.). IoT Security Challenges and Solutions. Retrieved from
https://cyberscope.netally.com/blog/iot-security-challenges-and-solutions
●​ Arxiv. (2021). IoT-based Home Automation System with Security Features using
Raspberry Pi and ESP32. Retrieved from https://arxiv.org/abs/2112.14618

You might also like