A book chapter entitled “Two-way Authentication for the Internet-of-Things” by Corinna Schmitt, Martin Noack, Wen Hu, Thomas Kothmayr, and Burkhard Stiller has been approved for publication in "Securing the Internet of Things through Progessive Threat Detection and Mangement" in the book series on Advances  in Information Sercurity, Privacy, and Ethics (AISPE) by IGI Global. Parts of this work were supported within the external liaison with EU project FLAMINGO as part of WP5 in SmartenIT.

Abstract:
This chapter introduces the first fully implemented two-way authentication security scheme for the Internet-of-Things (IoT) based on existing Internet standards, specifically the Datagram Transport Layer Security (DTLS) protocol. By relying on an established standard, existing implementations, engineering techniques and security infrastructure can be reused, which enables easy security uptake. The proposed security scheme consists of two public key cryptography algorithms, RSA and Elliptic Curve Cryptography (ECC), tailored for the resource heterogeneity nature of IoT devices. In regardless of underneath cryptography algorithms, and is designed to work over standard communication stacks that offer UDP/IPv6 networking for Low power Wireless Personal Area Networks (6LoWPANs). A prototype implementation of DTLS is presented in the context of system architecture and the scheme’s feasibility (low overheads and high interoperability) is further demonstrated through extensive evaluation on different IoT hardware platforms.

Keywords: Internet-of-Things (IoT) , Wireless Sensor Networks (WSNs), Two-way Authentication, Constraint Devices, End-to-End Security, Datagram Transport Layer Security (DTLS), Elliptic Curve Cryptography (ECC), Keys, Trust