DNS/DANE collision-based distributed and dynamic authentication for microservices in IoT

e-Archivo Repository

Show simple item record

dc.contributor.author Díaz Sánchez, Daniel
dc.contributor.author Marín López, Andrés
dc.contributor.author Almenares Mendoza, Florina
dc.contributor.author Arias Cabarcos, Patricia
dc.date.accessioned 2020-11-16T16:17:09Z
dc.date.available 2020-11-16T16:17:09Z
dc.date.issued 2019-08-01
dc.identifier.bibliographicCitation Díaz-Sánchez, D., Marín-Lopez, A., Almenárez Mendoza, F., Arias Cabarcos, P. (2019). DNS/DANE Collision-Based Distributed and Dynamic Authentication for Microservices in IoT. Sensors, 19(15), 3292
dc.identifier.issn 1424-8220
dc.identifier.uri http://hdl.handle.net/10016/31416
dc.description.abstract IoT devices provide real-time data to a rich ecosystem of services and applications. The volume of data and the involved subscribe/notify signaling will likely become a challenge also for access and core networks. To alleviate the core of the network, other technologies like fog computing can be used. On the security side, designers of IoT low-cost devices and applications often reuse old versions of development frameworks and software components that contain vulnerabilities. Many server applications today are designed using microservice architectures where components are easier to update. Thus, IoT can benefit from deploying microservices in the fog as it offers the required flexibility for the main players of ubiquitous computing: nomadic users. In such deployments, IoT devices need the dynamic instantiation of microservices. IoT microservices require certificates so they can be accessed securely. Thus, every microservice instance may require a newly-created domain name and a certificate. The DNS-based Authentication of Named Entities (DANE) extension to Domain Name System Security Extensions (DNSSEC) allows linking a certificate to a given domain name. Thus, the combination of DNSSEC and DANE provides microservices' clients with secure information regarding the domain name, IP address, and server certificate of a given microservice. However, IoT microservices may be short-lived since devices can move from one local fog to another, forcing DNSSEC servers to sign zones whenever new changes occur. [...]
dc.description.sponsorship This work was funded by projects MAGOS TEC2017-84197-C4-1-R, INRISCO TEC2014-54335-C4-2-R. This work has been also supported by the Comunidad de Madrid (Spain) under the project CYNAMON (P2018/TCS-4566) and co-financed by European Structural Funds (ESF and FEDER).
dc.language.iso eng
dc.rights Reconocimiento 3.0 España
dc.rights © 2019 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license.
dc.rights.uri http://creativecommons.org/licenses/by/3.0/es/
dc.subject.other Iot
dc.subject.other Microservices
dc.subject.other DNSSEC
dc.subject.other DANE
dc.subject.other Chameleon signatures
dc.title DNS/DANE collision-based distributed and dynamic authentication for microservices in IoT
dc.type article
dc.type.review PeerReviewed
dc.subject.eciencia Telecomunicaciones
dc.identifier.doi https://doi.org/10.3390/s19153292
dc.rights.accessRights openAccess
dc.relation.projectID Gobierno de España. TEC2014-54335-C4-2-R
dc.relation.projectID Gobierno de España. TEC2017-84197-C4-1-R
dc.relation.projectID Comunidad de Madrid. P2018/TCS4566/CYNAMON-CM
dc.type.version publishedVersion
dc.identifier.publicationfirstpage 1
dc.identifier.publicationissue 15 - 3292
dc.identifier.publicationlastpage 23
dc.identifier.publicationtitle Sensors
dc.identifier.publicationvolume 19
dc.identifier.uxxi AR/0000024753
dc.contributor.funder Ministerio de Economía y Competitividad (España)
dc.contributor.funder Comunidad de Madrid
 Find Full text

Files in this item

*Click on file's image for preview. (Embargoed files's preview is not supported)

The following license files are associated with this item:

This item appears in the following Collection(s)

Show simple item record