DTLS-based Security with two-way Authentication for IoT
draft-schmitt-two-way-authentication-for-iot-02

Document Type Replaced Internet-Draft (individual)
Last updated 2014-06-26 (latest revision 2014-02-11)
Replaced by draft-schmitt-ace-twowayauth-for-iot
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-schmitt-ace-twowayauth-for-iot
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-schmitt-two-way-authentication-for-iot-02.txt

Abstract

In this draft the first key idea for a full two-way authentication security scheme for the Internet of Things (IoT) based on existing Internet standards, specifically the Datagram Transport Layer Security (DTLS) protocol, is introduced. By relying on an established standard, existing implementations, engineering techniques, and security infrastructure can be reused, which enables an easy security uptake. The proposed security scheme is, therefore, based on RSA, the most widely used public key cryptography algorithm. It is designed to work over standard communication stacks that offer UDP/IPv6 networking for Low power Wireless Personal Area Networks (6LoWPANs). RSA is a bulky solution at the moment but shows that it is possible using it on constraint devices for security purposes. An optimization would be to use elliptic curve cryptography. For sure the proposed handshake will stay the same.

Authors

Corinna Schmitt (schmitt@ifi.uzh.ch)
Burkhard Stiller (stiller@ifi.uzh.ch)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)