CRAFT: A Continuous Remote Attestation Framework for IoT
As Internet of Things (IoT) networks keep growing with regards to the number of devices they contain, they become more attractive targets for attackers. Protecting these networks and the IoT devices they encompass is a major security challenge, and remote attestation enables checking of the integrit...
| Main Authors: | , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2021-01-01
|
| Series: | IEEE Access |
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/9382291/ |
| _version_ | 1828176486347046912 |
|---|---|
| author | L. Moreau E. Conchon D. Sauveron |
| author_facet | L. Moreau E. Conchon D. Sauveron |
| author_sort | L. Moreau |
| collection | DOAJ |
| description | As Internet of Things (IoT) networks keep growing with regards to the number of devices they contain, they become more attractive targets for attackers. Protecting these networks and the IoT devices they encompass is a major security challenge, and remote attestation enables checking of the integrity of devices (and thus networks). There are three categories of existing remote attestation protocols: software, hardware and hybrid attestation protocols. However, they all tackle specific issues only, such as small networks, IoT swarms, static networks, device-to-device attestation and network attestation. To provide as generic a solution as possible, which enhances security, we propose CRAFT, the first agnostic continuous remote attestation framework for IoT. CRAFT can be used in any real-world IoT network topology and can use any preexisting remote attestation protocol while remaining open to upgrades and extensions. A rigorous performance evaluation shows that CRAFT is very flexible and improves network security with little or no overhead, depending on the chosen parameters. |
| first_indexed | 2024-04-12T04:45:38Z |
| format | Article |
| id | doaj.art-3e2e598d22a547cd946f142cc96dc2fd |
| institution | Directory Open Access Journal |
| issn | 2169-3536 |
| language | English |
| last_indexed | 2024-04-12T04:45:38Z |
| publishDate | 2021-01-01 |
| publisher | IEEE |
| record_format | Article |
| series | IEEE Access |
| spelling | doaj.art-3e2e598d22a547cd946f142cc96dc2fd2022-12-22T03:47:31ZengIEEEIEEE Access2169-35362021-01-019464304644710.1109/ACCESS.2021.30676979382291CRAFT: A Continuous Remote Attestation Framework for IoTL. Moreau0https://orcid.org/0000-0001-9031-4625E. Conchon1https://orcid.org/0000-0002-6874-5936D. Sauveron2https://orcid.org/0000-0001-7948-6143XLIM Laboratory, UMR CNRS 7252, Université de Limoges, Limoges, FranceXLIM Laboratory, UMR CNRS 7252, Université de Limoges, Limoges, FranceXLIM Laboratory, UMR CNRS 7252, Université de Limoges, Limoges, FranceAs Internet of Things (IoT) networks keep growing with regards to the number of devices they contain, they become more attractive targets for attackers. Protecting these networks and the IoT devices they encompass is a major security challenge, and remote attestation enables checking of the integrity of devices (and thus networks). There are three categories of existing remote attestation protocols: software, hardware and hybrid attestation protocols. However, they all tackle specific issues only, such as small networks, IoT swarms, static networks, device-to-device attestation and network attestation. To provide as generic a solution as possible, which enhances security, we propose CRAFT, the first agnostic continuous remote attestation framework for IoT. CRAFT can be used in any real-world IoT network topology and can use any preexisting remote attestation protocol while remaining open to upgrades and extensions. A rigorous performance evaluation shows that CRAFT is very flexible and improves network security with little or no overhead, depending on the chosen parameters.https://ieeexplore.ieee.org/document/9382291/Computer securitycontinuous attestationInternet of Thingsremote attestationsmart devices |
| spellingShingle | L. Moreau E. Conchon D. Sauveron CRAFT: A Continuous Remote Attestation Framework for IoT IEEE Access Computer security continuous attestation Internet of Things remote attestation smart devices |
| title | CRAFT: A Continuous Remote Attestation Framework for IoT |
| title_full | CRAFT: A Continuous Remote Attestation Framework for IoT |
| title_fullStr | CRAFT: A Continuous Remote Attestation Framework for IoT |
| title_full_unstemmed | CRAFT: A Continuous Remote Attestation Framework for IoT |
| title_short | CRAFT: A Continuous Remote Attestation Framework for IoT |
| title_sort | craft a continuous remote attestation framework for iot |
| topic | Computer security continuous attestation Internet of Things remote attestation smart devices |
| url | https://ieeexplore.ieee.org/document/9382291/ |
| work_keys_str_mv | AT lmoreau craftacontinuousremoteattestationframeworkforiot AT econchon craftacontinuousremoteattestationframeworkforiot AT dsauveron craftacontinuousremoteattestationframeworkforiot |