A Handshake Protocol With Unbalanced Cost for Wireless Updating

Cai, JR;Huang, X;Zhang, J;Zhao, JW;Lei, YX;Liu, DW;Ma, XF

[Cai, Jiaren; Huang, Xin; Zhang, Jie; Lei, Yaxi; Liu, Dawei] Xian Jiaotong Liverpool Univ, Dept Comp Sci & Software Engn, Suzhou 215123, Peoples R China.
[Zhao, Jiawei] Xian Jiaotong Liverpool Univ, Int Business Sch Suzhou, Suzhou 215123, Peoples R China.
[Ma, Xiaofeng] Tongji Univ, Dept Control Sci & Engn, Shanghai 200092, Peoples R China.


Volume:6 Pages:18570-18581


Publication Year:2018




Latest Impact Factor:3.367

Document Type:Journal Article



Wireless updating is an essential method to update system files or fix bugs in Internet of Things (IoT) devices. A significant and challenging problem in wireless updating is security. First, without security guarantees, attackers can utilize the updating procedure to install harmful programs into the victim devices. Second, it is challenging to provide security for wireless updating, since in many IoT scenarios, the devices to be updated are computationally limited devices and located far from the center that issues update files. Currently, there are two types of solution to protect the wireless updating. The first one is the transport layer security (TLS) protocol or secure sockets layer (SSL) protocol that are used by wireless updating schemes for mobile terminals with the following operation systems: Windows, Debian, Android, and iOS. Another solution is the elliptic curve Diffie-Hellman (ECDH)-based handshake in the software-defined function (SDF) wireless updating scheme for the IoT devices. However, both the two solutions require equal computation tasks on the update file issuing center and the device to be updated. Normally, the former is much powerful than the latter. Therefore, to further address the security problem in wireless updating, we propose a novel solution with unbalanced computation costs on the two parties. In particular, we design an improved ECDH-based handshake protocol for the SDF wireless updating scheme, namely, the unbalanced OpenFunction handshake protocol. The protocol transfers significant computation task from the limited IoT device to the powerful center. The security of the protocol is analyzed. A prototype is realized to test the performance of the protocol. The experiment results show that in the same experimental platform, our protocol is much lightweight than the TLS handshake protocol and SSL handshake protocol.


Internet of Things wireless updating secure sockets layer transport layer security software defined function unbalanced OpenFunction handshake

Copyright 2006-2020 © Xi'an Jiaotong-Liverpool University 苏ICP备07016150号-1 京公网安备 11010102002019号