Diego Stucchi
ABSTRACT
A major challenge in networked sensor systems and other IoT environments is addressing security. Vulnerabilities in those systems arise from poor physical security, unauthenticated devices, insecure firmware updates, insecure communication, and data corruption. In recent times Distributed Ledger Technologies (DLTs), of which Blockchain is an instance, have been identified as a possible solution to some of these issues. The blokchain model genetically ensures decentralized security and privacy, and therefore could provide IoT systems with a trusted infrastructure for securely logging data or exchanging tokens without the necessity, and costs, of central servers. Blockchain is no panacea, either. IoT devices that get connected to a blockchain network must still be secured, in particular they must protect the confidentiality of the keys. This requires the embedded microcontroller to execute only authenticated firmware, with protections against software attacks, such as buffer overflows, and resistance against side-channel attacks. In addition, as confirmed from the scarcity of implementations reported in the literature, it is still not clear whether blockchain protocols can be implemented efficiently on resource-constrained IoT devices. In this work, also supported by a Demo, we show an example of secure IoT device that enables the functionalities of IOTA, a DLT specifically designed for the use in the IoT. In particular, we present a Light Node based on STM32 that implements all the cryptographic functions, IOTA specific operations and communication functions required to successfully publish transactions in the IOTA distributed ledger. Our implementations on microcontrollers (ARM Cortex-M) performs up to 22 times faster in terms of cycles and up to 4 times faster in absolute time with respect to the state-of-the-art implementation on a Raspberry PI 3B. Our Light Node also ensures protection of the stored private data and guarantees secure firmware update thanks to a suitable configuration of some security features provided by STM32 microcontrollers.
- https://docs.iota.orgGoogle Scholar
- https://github.com/iotaledgerGoogle Scholar
- http://www.st.com/stm32nucleoGoogle Scholar
- https://github.com/Come-from-Beyond/PearlDiverGoogle Scholar
- A. Elsts, E. Mitskas and G. Oikonomou, Distributed Ledger Technology and the Internet of Things: A Feasibility Study. BlockSys, 2018.Google ScholarDigital Library
- M.J. Kannwischer, A. Genet, D. Butin, J. Kramer, and J. Buchmann, Differential power analysis of XMSS and SPHINCS. COSADE, 2018.Google ScholarCross Ref
Index Terms
- Secure and Effective Implementation of an IOTA Light Node using STM32
Recommendations
DAG blockchain-based lightweight authentication and authorization scheme for IoT devices
AbstractAs the extension and expansion of the Internet, the Internet of things (IoT) connects things with the network through information sensing equipment to achieve intelligent identification, positioning, monitoring, management and other ...
Blockchain Based Owner-Controlled Secure Software Updates for Resource-Constrained IoT
Network and System SecurityAbstractWith a large number of connected Internet of Things (IoT) devices deployed across the world, they have become popular targets of malicious attacks raising great security challenges. Many manufacturers are making great efforts to keep the software ...
Advantages and opportunities of the IOTA tangle for health data management: a systematic mapping study
WETSEB '22: Proceedings of the 5th International Workshop on Emerging Trends in Software Engineering for BlockchainThe merging of Distributed Ledger Technology (DLT) and the Internet of Things (IoT) has opened new opportunities for innovation in health data management. Issues such as security breaches, privacy violations and fragmented data are just some of the ...
Reviews
Dominik Strzalka
Sensor systems and Internet of Things (IoT) environments raise a new major challenge to security. Some of these issues can be solved with blockchain protocols, for example, distributed ledger technologies (DLTs); however, it is still not clear whether blockchain protocols can be implemented efficiently on resource-constrained IoT devices. The paper shows an example of a secure IoT device with IOTA functionalities: an IOTA light node based on STM32, with all communication functions, cryptographic functions, and IOTA operations. ARM Cortex-M controllers allow up to 22 times faster performance. The examined solution uses a new approach based on trits = -1, 0, 1 and trytes. The proposed light node is done with the STM32 boards Nucleo-F746ZG and Nucleo-F429ZI, both equipped with an Ethernet module. The presented solution's security aspects are given in section 2.2. A noted limitation of this solution: each transaction must contain a computed proof-of-work (PoW) nonce; however, this cannot be done quickly enough, so there is a need to find other possibilities.
Access critical reviews of Computing literature here
Become a reviewer for Computing Reviews.
Comments