Secure and Scalable IoT: An IoT Network Platform Based on Network Overlay and MAC Security

Junwon Lee, Heejo Lee

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    1 Citation (Scopus)

    Abstract

    IoT, which is closely connected with our daily life, shows high growth in the automotive, healthcare, and retail fields. IoT security threats can cause severe problems in our lives. However, the security of the IoT network is insufficient to cope with security threats. Therefore, an attacker can use man-in-the-middle-attacks (MITM), DNS manipulation, and route tampering for eavesdropping, privacy breach, service outages and delay, power consumption, and system manipulation. Currently, VPN and data encryption is applied to protect the IoT network from these security threats. However, due to the limited resources of IoT device, the TCP/IP-based VPN and encryption are also limited. Although a lightweight IoT communication protocol such as LoWPAN is used, TCP/IP-based VPN such as IPsec, OpenVPN, and Wireguard require bandwidth, CPU/memory, and electric power at the level of general endpoint devices. In this paper, we propose a secure and scalable IoT (SSI) network platform that can prevent security threats while minimizing use of computing resources of an IoT device. SSI, which has a lower load than TCP/IP-based VPN, is a layer 2 VPN and supply data link frame encryption. L2TP and VXLAN are provided for a scalable layer 2 VPN, and the MACsec algorithm encrypts layer 2 frames. SSI shows 30% network speed improvement and 31.6% CPU usage reduction compared to IoT network applied OpenVPN.

    Original languageEnglish
    Title of host publicationICT Systems Security and Privacy Protection - 36th IFIP TC 11 International Conference, SEC 2021, Proceedings
    EditorsAudun Jøsang, Lynn Futcher, Janne Hagen
    PublisherSpringer Science and Business Media Deutschland GmbH
    Pages287-301
    Number of pages15
    ISBN (Print)9783030781194
    DOIs
    Publication statusPublished - 2021
    Event36th IFIP International Conference on ICT Systems Security and Privacy Protection, SEC 2021 - Virtual, Online
    Duration: 2021 Jun 222021 Jun 24

    Publication series

    NameIFIP Advances in Information and Communication Technology
    Volume625
    ISSN (Print)1868-4238
    ISSN (Electronic)1868-422X

    Conference

    Conference36th IFIP International Conference on ICT Systems Security and Privacy Protection, SEC 2021
    CityVirtual, Online
    Period21/6/2221/6/24

    Bibliographical note

    Publisher Copyright:
    © 2021, IFIP International Federation for Information Processing.

    Keywords

    • IoT platform
    • L2TP
    • MACsec
    • Network overlay
    • Network separation
    • VXLAN

    ASJC Scopus subject areas

    • Information Systems and Management

    Fingerprint

    Dive into the research topics of 'Secure and Scalable IoT: An IoT Network Platform Based on Network Overlay and MAC Security'. Together they form a unique fingerprint.

    Cite this