Securing Application Layer Protocol CoAP using EDHOC and OSCORE under Contiki-NG OS
Keywords:
Internet of Things, Constrained Application Protocol (CoAP), Security, Datagram Transport Layer Security (DTLS), OSCORE, EDHOC, Contiki-NG, Cooja.Abstract
Securing the connection in IoT devices is an important research focus, Constrained Applications Protocol (CoAP) has received high attention as many IoT applications depend on it, but it suffers from some security vulnerabilities. Several protocols have been developed to protect CoAP, the most famous one is DTLS, which unfortunately imposes a great burden due to the limitations imposed on the capabilities of IoT devices. To overcome this problem, an alternative to DTLS protocol has recently been proposed. which consists of two novel protocols working side by side, the first one is Object Security for Constrained RESTful Environments (OSCORE) which provides authenticated encryption for the payload data, and the second is Ephemeral Diffie-Hellman Over COSE (EDHOC) which provides the symmetric session keys required for OSCORE. These protocols are relatively new and have few implementations.
This paper presents an implementation of EDHOC with OSCORE for CoAP protection under Contiki-NG OS, which is widely used for IoT restricted devices. The performance evaluation of the implementation is depicted on the Cooja simulator by comparing it with CoAP without protection from one hand and the use of DTLS from the other hand. The evaluation and comparison are effected in terms of latency and throughput. The results showed that the current implementation achieves key exchange for OSCORE protocol, and achieves the required protection for CoAP protocol, and gives lower latency and higher throughput compared to using DTLS.
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2022 �ttps://creativecommons.org/licenses/by-nc-sa/4.0/
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
The authors retain the copyright and grant the right to publish in the magazine for the first time with the transfer of the commercial right to Tishreen University Journal for Research and Scientific Studies - Engineering Sciences Series
Under a CC BY- NC-SA 04 license that allows others to share the work with of the work's authorship and initial publication in this journal. Authors can use a copy of their articles in their scientific activity, and on their scientific websites, provided that the place of publication is indicted in Tishreen University Journal for Research and Scientific Studies - Engineering Sciences Series . The Readers have the right to send, print and subscribe to the initial version of the article, and the title of Tishreen University Journal for Research and Scientific Studies - Engineering Sciences Series Publisher
journal uses a CC BY-NC-SA license which mean
You are free to:
- Share — copy and redistribute the material in any medium or format
- Adapt — remix, transform, and build upon the material
- The licensor cannot revoke these freedoms as long as you follow the license terms.
- Attribution — You must give appropriate credit, provide a link to the license, and indicate if changes were made. You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
- NonCommercial — You may not use the material for commercial purposes.
- ShareAlike — If you remix, transform, or build upon the material, you must distribute your contributions under the same license as the original.
- No additional restrictions — You may not apply legal terms or technological measures that legally restrict others from doing anything the license permits.