IEEE Access (Jan 2024)

IoT Devices Modular Security Approach Using Positioning Security Engine

  • Jean G. V. Etibou,
  • Samuel Pierre

DOI
https://doi.org/10.1109/ACCESS.2024.3424658
Journal volume & issue
Vol. 12
pp. 147659 – 147670

Abstract

Read online

In this paper, we propose a modular security approach using a positioning security engine featuring Global Positioning System (GPS) location features that can uniquely identify the Internet of Things (IoT) user device. Our approach aims to reinforce the security and viability of IoT-centric solutions for various innovative applications, including IoT Mobile payment, Smart city heterogeneous networks, communication services, safety, and location-based services integration. To achieve our goal of securitization and viability, we target consumer IoT devices equipped with built-in location-based GPS chips, which are vulnerable to hackers where the existing cryptographic authentication-based protocols demand power and computation resources required for authentication protocols is not sufficient to carry end to end secure transaction in an IoT environment. Therefore, to compensate this lack of environment capability to carry the end-to-end secure transaction on IoT devices when emitting various radio signals, we implement a modular security approach to compensate the lack of capabilities. This leads to an optimal security facilitated by Simple Public Key Infrastructure following the Pretty Good Privacy Web of Trust approach. Moreover, our implementation on the development board Arduino succeeded in providing and extended secure capable environment for carrying secure transactions. The results show a communication success rate of 70, 80 and 90 percent between Security Engine component called modules, with 70 percent of successful Secure Sockets Layer (SSL) key exchange by every identified user in average 15 seconds simulation running time for every two by third round of simulation.

Keywords