Enhancing End-to-End Communication Security in IoT Devices Through Application Layer ProtocolShow others and affiliations
2022 (English)In: Communications in Computer and Information Science, Springer Science and Business Media Deutschland GmbH , 2022, Vol. 1665 CCIS, p. 148-159Conference paper, Published paper (Refereed)
Abstract [en]
The Internet of Things (IoT) has combined the hardware components with software elements by providing users with remote control and management facilities. From safety-critical systems to security devices and industrial appliances, every appliance makes use of IoTs. Whereas security issues such as SQL injections, Denial of Service/Distributed Denial of Service (DOS/DDOS) attacks, the forged transmission of messages, or man in the middle (MITM) are major security threats among smart devices. Any purging of data causes privacy issues while the subsequent assessments made using modified information are also erroneous. This security hole needs comprehensive non-cryptographic data-security techniques and frameworks which would help developers in creating secure systems on heterogeneous devices. Algorithms like blowfish and Data Encryption Standard (DES) do not have the uniquity which AES does, making them more vulnerable to attack this research paper focuses on the communication security issues in IoT systems. We have proposed an End-to-End Encryption using AES in IoT (EAES-IoT). Validation of the proposed algorithm has been done in a case study of the Smart Voice Pathology Monitoring System (SVPMS) by sending the encoded data to the application layer through Application Programming Interface (API). We compared results to ensure the authenticity of the data and they were found promising. Data access is provided only to authorized individuals by providing a shared key for decryption of the alphanumeric string of data shared between devices. The proposed algorithm will provide future directions to meet security challenges in the IoT.
Place, publisher, year, edition, pages
Springer Science and Business Media Deutschland GmbH , 2022. Vol. 1665 CCIS, p. 148-159
Keywords [en]
AES, Application layer protocol, Data privacy, Encryption in IoT, Internet of Things, Security, Accident prevention, Application programming interfaces (API), Cryptography, Denial-of-service attack, Internet protocols, Network security, Remote control, Security systems, Application layer protocols, Communications security, Control and management, Encryption in internet of thing, End-to-End communication, Hardware components, Security issues, Software elements
National Category
Computer Sciences Communication Systems
Identifiers
URN: urn:nbn:se:mdh:diva-60995DOI: 10.1007/978-3-031-16302-9_11Scopus ID: 2-s2.0-85141663106ISBN: 9783031163012 (print)OAI: oai:DiVA.org:mdh-60995DiVA, id: diva2:1718739
Conference
28th International Conference on Information and Software Technologies, ICIST 2022Kaunas13 October 2022through 15 October 2022
2022-12-132022-12-132022-12-13Bibliographically approved