Browse Prior Art Database

A Secure and Light Weight communication approach for IoT Devices

IP.com Disclosure Number: IPCOM000247188D
Publication Date: 2016-Aug-15

Publishing Venue

The IP.com Prior Art Database

Abstract

An approach to provide an encoded communication method to securely transfer data for Internet of Things (IoT) device in a Home IoT environment. The core idea is to provide a simple encoding table look up mechanism, that can be used on IoT devices for both data and command communication. To do this, the data and timestamp are encoded together, so that encoded data transfer can prevent malicious attacks to the devices, as repeatly command will not be acceptable by the Home Gateway. The advantages of this apporach are lightweight encoding data with table lookup transmission between low computing power devices, the ability to renew encoded data (table) when required (table expired/ device compromised) to prevent table hijacking, table size is dynamically generated depending how each IoT device's ability (data set) to handle table lookup to save device storage, and prevent malicious attacks (ThingBot/Denial of Service/Blind attack), as data/commands are not recognized by the attackers, and can not repeatedly sending same command with timestamp checking mechanism implemented.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 52% of the total text.

Page 01 of 11

A Secure and Light Weight communication approach for IoT Devices

Current security model for home Internet of Things (IoT) systems does not provide reliable inter-device security. Most of IoT still exchange data in plaintext. Lack of device authentication, and external data communicating relays on heavy power consuming with encrypting/decrypting mechanism.

Nowadays, most of home IoT devices relay on a home gateway system as central management system (as below figure), We propose a new inter-IoTs security approach to break through the old architecture.

IoT Home GW - Internet of Things Home Gateway

CAN - Controller Area Network
LTE - Long-Term Evolution
3G - 3rd Generation
LAN - Local Area Network
GPIO - General Purpose Input/Output
Bluetooth LE - Bluetooth Low Energy

1



Page 02 of 11

We like to solve the common purpose IoT security problems:
1. 80% + of IoT devices are communicating with command/data in plan text over the network, which is easy for Hackers to sniff information being sent out from the IoT devices.

2. The use of PKI (Public Key Infrastructure) is not suitable to adopt in IoT devices as it is a high CPU usage and high power consuming mechanism, and IoT devices are not designed to have powerful CPU computing power.

3. Public IoT servers in the cloud has every data/command when you utilize its service to send data/command to your IoT device.If public server gets compromised, ThingBot attack will be formed to unite with the current BotNet attacks.

The core idea of this invention is to provide a simple encoding table look up mechanism, that can be used on IoT devices for both data and command communication.

The advantages of adopting this solution are

Lightweight encoding data w/ table lookup transmission between low computing power devices


Ability to renew encoded data (table) when required (table expired/ device compromised) to prevent table hijacking

2



Page 03 of 11

Table size is dynamically generated depending how each IoT device's ability (data set) to handle table lookup to save device storage.

Prevent malicious attacks (ThingBot/DoS/Blind attack), as data/commands are not recognized by the attackers, and can not repeatedly sending same command with timestamp checking mechanism implemented.

3



Page 04 of 11

4



Page 05 of 11

5



Page 06 of 11

The data and timestamp are encoded together, so that encoded data transfer can prevent malicious attacks to the devices, as same command will not be

6



Page 07 of 11

acceptable by the Home Gateway.


1. Home gateway generates encoding table with inter-IoTs keys then dispatches to each IoT
2. IoT device X receives encoding table (X-Y) send command to IoT device Y with encoded data include timestamp
3. IoT device Y receives encoding table (X-Y) response result to IoT device X with encoded data include timestamp

7



Page 08 of 11

Home Gateway stores every encoding table from different devices. The table size is dynamically generated depending how each IoTdevice's ability (dataset) to handle table...