Visible to the public WISE: Lightweight Intelligent Swarm Attestation Scheme for IoT (The Verifier’s Perspective)

TitleWISE: Lightweight Intelligent Swarm Attestation Scheme for IoT (The Verifier’s Perspective)
Publication TypeConference Paper
Year of Publication2018
AuthorsAmmar, M., Washha, M., Crispo, B.
Conference Name2018 14th International Conference on Wireless and Mobile Computing, Networking and Communications (WiMob)
Date Publishedoct
Keywordsattack surface, attestation, composability, computer network security, cryptographic protocols, fine-grained multiclusters, Hardware, heterogenous IoT networks, History, Human Behavior, intelligent swarm attestation protocol, interactive protocol, Internet of Things, Internet of Things (IoT), IoT applications, lightweight intelligent swarm attestation scheme, malware detection, online learning, performance evaluation, Protocols, pubcrawl, remote attestation, Resiliency, resource-constrained embedded devices, resource-efficient smart broadcast authentication scheme, Scalability, security, smart devices, Software, software integrity checking, swarm, Task Analysis, Trusted Party, WISE
AbstractThe growing pervasiveness of Internet of Things (IoT) expands the attack surface by connecting more and more attractive attack targets, i.e. embedded devices, to the Internet. One key component in securing these devices is software integrity checking, which typically attained with Remote Attestation (RA). RA is realized as an interactive protocol, whereby a trusted party, verifier, verifies the software integrity of a potentially compromised remote device, prover. In the vast majority of IoT applications, smart devices operate in swarms, thus triggering the need for efficient swarm attestation schemes.In this paper, we present WISE, the first intelligent swarm attestation protocol that aims to minimize the communication overhead while preserving an adequate level of security. WISE depends on a resource-efficient smart broadcast authentication scheme where devices are organized in fine-grained multi-clusters, and whenever needed, the most likely compromised devices are attested. The candidate devices are selected intelligently taking into account the attestation history and the diverse characteristics (and constraints) of each device in the swarm. We show that WISE is very suitable for resource-constrained embedded devices, highly efficient and scalable in heterogenous IoT networks, and offers an adjustable level of security.
Citation Keyammar_wise:_2018