Publication: TLS/PKI Challenges and Certificate Pinning Techniques for IoT and M2M Secure Communications
Loading...
Identifiers
Publication date
2019-11
Defense date
Advisors
Tutors
Journal Title
Journal ISSN
Volume Title
Publisher
IEEE
Impact
Export
Abstract
Transport layer security (TLS) is becoming the de facto standard to provide end-to-end security in the current Internet. IoT and M2M scenarios are not an exception since TLS is also being adopted there. The ability of TLS for negotiating any security parameter, its flexibility and extensibility are responsible for its wide adoption but also for several attacks. Moreover, as it relies on public key infrastructure (PKI) for authentication, it is also affected by PKI problems. Considering the advent of IoT/M2M scenarios and their particularities, it is necessary to have a closer look at TLS history to evaluate the potential challenges of using TLS and PKI in these scenarios. According to this, this paper provides a deep revision of several security aspects of TLS and PKI, with a particular focus on current certificate pinning solutions in order to illustrate the potential problems that should be addressed.
Description
Artículo de acceso abierto (OA). En la plataforma consta como OA, pero el fichero del artículo tiene, erróneamente, copyright de IEEE.
Keywords
Transport layer security, DTLS, Public key infrastructure, Trusted third party, Certificate pinning, Internet of things, Machine to machine
Bibliographic citation
Díaz-Sánchez, Daniel, et al. TLS/PKI Challenges and Certificate Pinning Techniques for IoT and M2M Secure Communications. In: IEEE Communications Surveys & Tutorials 21(4), Nov. 2019, Pp. 3502-3531