PAG-IoT: A PUF and AEAD Enabled Trusted Hardware Gateway for IoT Devices

Low-cost cryptographic security solutions are essential to protect resource-constrained devices or their respective data in the emerging Internet of Things (IoT). A security concept is presented which realizes a lightweight and secure gateway for IoT devices. It grants multiple users individual access rights to IoT end nodes. Generally, Physical Unclonable Functions store keys or offer authentication cost-effectively because they provide a unique response which cannot be predicted even when given an identically constructed device. In this paper, we propose a secure gateway as a new application of PUFs for IoT by combining them with Authenticated Encryption with Associated Data (AEAD). We discuss the security with respect to an attacker who wants to extend his access rights and who can target the communication data or the gateway itself. Additionally, an implementation demonstrates the feasibility of such a gateway. This paper serves as an example as to what kind of novel applications in the IoT are possible by a careful choice of individual security solutions.      «

Low-cost cryptographic security solutions are essential to protect resource-constrained devices or their respective data in the emerging Internet of Things (IoT). A security concept is presented which realizes a lightweight and secure gateway for IoT devices. It grants multiple users individual access rights to IoT end nodes. Generally, Physical Unclonable Functions store keys or offer authentication cost-effectively because they provide a unique response which cannot be predicted even when give...     »