haku: @keyword IoT / yhteensä: 27
viite: 7 / 27
| Tekijä: | Mota, Shailesh |
| Työn nimi: | Secure Certificate Management and Device Enrollment at IoT Scale. |
| Säkra certifikathantering och device inskrivning på sakernas skala | |
| Julkaisutyyppi: | Diplomityö |
| Julkaisuvuosi: | 2016 |
| Sivut: | 76 s. + liitt. 6 Kieli: eng |
| Koulu/Laitos/Osasto: | Perustieteiden korkeakoulu |
| Oppiaine: | Security and Mobile Computing (T3011) |
| Valvoja: | Aura, Tuomas ; Dubrova, Elena |
| Ohjaaja: | Kandoi, Rajat |
| Elektroninen julkaisu: | http://urn.fi/URN:NBN:fi:aalto-201611025260 |
| Sijainti: | P1 Ark Aalto 5325 | Arkisto |
| Avainsanat: | IoT PKI EST bootstrapping |
| Tiivistelmä (eng): | The Internet of Things (IoT) is expected to comprise of over 20 billion devices connected to the Internet by the year 2020, and support mission critical applications such as health care, road safety and emergency services to name a few. This massive scale of IoT device deployment, heterogeneity of devices and applications, and the autonomous nature of the decision making process introduces new security requirements and challenges. The devices must be securely bootstrapped in to the network to provide secure inter--device communication and also, the applications must be able to authenticate and authorize these devices to provide the relevant services. In today's Internet, Public Key Infrastructure (PKI) is widely used to provide authenticity, encryption and data integrity during network communication through the use of digital certificates. This thesis investigates the key aspects for deploying a PKI security solution in an IoT ecosystem, ranging from deploying certificates on new devices (bootstrapping) to complete life cycle management of these certificates. We believe that the current PKI can be, with suitable enhancements, used to provide the efficiency, scalability and flexibility needed for IoT security. This thesis provides a survey of key aspects for deploying PKI security solution in IoT ecosystem. We investigate different certificate management protocols and motivate the applicability of enhanced security over transport (EST) protocol for IoT PKI solution. In addition, we propose a PKI deployment model and the bootstrap mechanism to bring up an IoT device and provision it with a digital certificate. Furthermore, we provide a prototype implementation to demonstrate certificate enrollment procedure with an EST server. |
| ED: | 2016-11-13 |
INSSI tietueen numero: 54795
+ lisää koriin
INSSI