Enabling the secure use of dynamic identity for the Internet of Things - using the Secure Remote Update Protocol (SRUP)

Andrew John Poulter*, Steven James Ossont, Simon J Cox

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

36 Downloads (Pure)

Abstract

This paper examines dynamic identity, as it pertains to the Internet of Things (IoT), and explores the practical implementation of a mitigation technique for some of the key weaknesses of a conventional dynamic identity model. This paper explores human-centric and machine-based observer approaches for confirming device identity, permitting automated identity confirmation for deployed systems. It also assesses the advantages of dynamic identity in the context of identity revocation permitting secure change of ownership for IoT devices. The paper explores use-cases for human and machine-based observation for authentication of device identity when devices join a Command and Control(C2) network, and considers the relative merits for these two approaches for different types of system,
Original languageEnglish
Article number138
Number of pages15
JournalFuture Internet
Volume12
Issue number8
DOIs
Publication statusPublished - 18 Aug 2020

Fingerprint

Dive into the research topics of 'Enabling the secure use of dynamic identity for the Internet of Things - using the Secure Remote Update Protocol (SRUP)'. Together they form a unique fingerprint.

Cite this