Internet-of-Things (IoT) devices are typically resource constrained in terms of computing capabilities and battery power. Despite the efforts from the Internet Engineering Task Force (IETF) to established standards for IoT such as IPv6 over low-power wireless personal area networks (6LoWPAN), routing protocol for low-power lossy networks (RPL), and constrained application protocol (CoAP), certificate-based Internet security protocols have not been fully addressed yet. We see the main cause of this being the size of the X.509-based Internet certificates. Typically being 1 to 2 kB, the large size of these certificates can cause IEEE 802.15.4-based IoT nodes to fragment the certificate into many smaller packet-size chunks, which causes many packet transmissions to occur in the network. This work presents LightCert, a lightweight scheme to compress the size of the security certificates using the similarity of contents in X.509 certificates. Specifically, LightCert identifies common fields in a certificate and suppresses the transmission of these contents within the IoT subnet scope. This allows LightCert nodes to minimize the packet transmission overhead for supporting certificate-based security mechanisms such as datagram transport layer security (DTLS), by as much as ∼37%. The added overhead of exchanging certificates when using LightCert is kept low to as much as ∼5 mJ of energy and ∼0.48 seconds of latency.
|Journal||Transactions on emerging telecommunications technologies|
|Publication status||Published - 2019 Oct 1|
Bibliographical noteFunding Information:
This work was supported by the MOTIE and Korea Institute for Advancement of Technology through the International Cooperative R&D program and by the Basic Science Research Program through National Research Foundation of Korea funded by the MSIT (2018R1C1B6003869).
All Science Journal Classification (ASJC) codes
- Electrical and Electronic Engineering