Security Considerations in the IP-based Internet of Things

The information below is for an old version of the document
Document Type Expired Internet-Draft (individual)
Last updated 2012-09-27 (latest revision 2012-03-26)
Replaced by draft-irtf-t2trg-iot-seccons, rfc8576
Stream (None)
Intended RFC status (None)
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


A direct interpretation of the Internet of Things concept refers to the usage of standard Internet protocols to allow for human-to-thing or thing-to-thing communication. Although the security needs are well-recognized, it is still not fully clear how existing IP-based security protocols can be applied to this new setting. This Internet-Draft first provides an overview of security architecture, its deployment model and general security needs in the context of the lifecycle of a thing. Then, it presents challenges and requirements for the successful roll-out of new applications and usage of standard IP-based security protocols when applied to get a functional Internet of Things.


Oscar Garcia-Morchon (
Sye Keoh (
Sandeep Kumar (
Rene Hummen (
Rene Struik (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)