Authentication for the web of things: Secure end-to-end authentication between CoAP and HTTP

IEEE International Symposium on Personal, Indoor and Mobile Radio Communications, PIMRC

Volumn 2017-October, Issue , 2017, Pages 1-5

  Buschsieweke, Marian ^a   Güneş, Mesut ^a  

^a OTTO VON GUERICKE UNIVERSITY   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

AUTHENTICATION; CRYPTOGRAPHY; INTERNET OF THINGS;

ACCESS AUTHENTICATIONS; ENCODINGS; END TO END; PROCESSING TIME; REFERENCE IMPLEMENTATION; WIRELESS NODES;

HTTP;

EID: 85045274863     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/PIMRC.2017.8292352     Document Type: Conference Paper

References (16)

1. Jonathan Koomey, Stephen Berard, Marla Sanchez, and Henry Wong. Implications of Historical Trends in the Electrical Efficiency of Computing. IEEE Annals of the History of Computing, 33(3):46-54, March 2011.
2. Gordon Bell. Moore's Law evolved the PC industry; Bell's Law disrupted it with players, phones, and tablets: New Platforms, tools, and sevices. Technical report, January 2014.
3. T. A. Alghamdi, A. Lasebae, and M. Aiash. Security analysis of the constrained application protocol in the Internet of Things. In Second International Conference on Future Generation Communication Technologies (FGCT 2013), pages 163-168, November 2013.
4. Z. Shelby, K. Hartke, and C. Bormann. The Constrained Application Protocol (CoAP). RFC 7252 (Proposed Standard), June 2014. Updated by RFC 7959.
5. J. Franks, P. Hallam-Baker, J. Hostetler, S. Lawrence, P. Leach, A. Luotonen, and L. Stewart. HTTP Authentication: Basic and Digest Access Authentication. RFC 2617 (Draft Standard), June 1999. Obsoleted by RFCs 7235, 7615, 7616, 7617.
6. J. Reschke. The 'Basic' HTTP Authentication Scheme. RFC 7617 (Proposed Standard), September 2015.
7. R. Shekh-Yusef, D. Ahrens, and S. Bremer. HTTP Digest Access Authentication. RFC 7616 (Proposed Standard), September 2015.
8. Domenico Rotondi and Salvatore Piccione. Managing Access Control for Things: a Capability Based Approach. In Proceedings of the 7th International Conference on Body Area Networks. Institute for Computer Sciences, Social Informatics and Telecommunications Engineering (ICST), 2012.
9. Parikshit N. Mahalle, Bayu Anggorojati, Neeli Rashmi Prasad, and Ramjee Prasad. Identity driven capability based access control (ICAC) scheme for the Internet of Things. In 2012 IEEE International Conference on Advanced Networks and Telecom-munciations Systems (ANTS). Institute of Electrical & Electronics Engineers (IEEE), December 2012.
10. José L. Hernández-Ramos, Antonio J. Jara, Leandro Marín, and Antonio F. Skarmeta. Distributed Capability-based Access Control for the Internet of Things. Journal of Internet Services and Information Security (JISIS), 3(3/4):1-16, November 2013.
11. José L. Hernández-Ramos, Marcin Piotr Pawlowski, Antonio J. Jara, Antonio F. Skarmeta, and Latif Ladid. Toward a Lightweight Authentication and Authorization Framework for Smart Objects. IEEE J. Select. Areas Commun., 33(4):690-702, April 2015.
12. Borting Chen, Mesut Güneş, and Yu-Lun Huang. CoAP Option for Capability-Based Access Control for IoT-Applications. In Proceedings of the International Conference on Internet of Things and Big Data. Scitepress, 2016.
13. S. Gerdes, O. Bergmann, and C. Bormann. Delegated CoAP Authentication and Authorization Framework (DCAF). draft-gerdes-ace-dcaf-authorize-04, October 2015.
14. A. Castellani, S. Loreto, A. Rahman, T. Fossati, and E. Dijk. Guidelines for Mapping Implementations: HTTP to the Constrained Application Protocol (CoAP). RFC 8075 (Proposed Standard), February 2017.
15. Y. Sheffer, R. Holz, and P. Saint-Andre. Summarizing Known Attacks on Transport Layer Security (TLS) and Datagram TLS (DTLS). RFC 7457 (Informational), February 2015.
16. Fanbao Liu. On the Security of Digest Access Authentication. In 2011 14th IEEE International Conference on Computational Science and Engineering, pages 427-434, August 2011.