An automated remote attestation method adapting to heterogeneous device groups in the Internet of Things

Abstract

The invention discloses an automatic remote certification method for a heterogeneous device group in the Internet of Things. The specific steps include: initializing the Internet of Things device; registering the information of the Internet of Things device; collecting the dynamic attributes of the Internet of Things device by the communication node device; and selecting the candidate Internet of Things by the verifier The device; the verifier sends a proof challenge; the IoT device generates a proof response; the verifier verifies the status of the IoT device; the verifier judges the status of the device group; the verifier updates the machine learning model used. Based on the machine learning and the dynamic and static attributes of the Internet of Things equipment, the present invention enables the verifier to verify the suspicious behavior of the Internet of Things equipment in time, thereby improving the security of the equipment group.

Description

technical field [0001] The invention belongs to the technical field of the Internet of Things and information security, and has an automatic remote certification method for heterogeneous device groups in the Internet of Things. Background technique [0002] With the development of the Internet of Things (IoT), various IoT embedded devices are involved in life and work. However, while these embedded IoT devices bring convenience, they also pose threats to the security and privacy of users. The wide variety of embedded IoT devices connected to the network greatly increases the attack surface for attackers. Unfortunately, resource-constrained embedded IoT devices often lack robust self-defense against attacks. Therefore, a serious challenge facing the IoT is how to ensure the security of IoT devices. [0003] To this end, researchers propose a challenge-response pattern-based remote attestation scheme, which allows a trusted verifier (VRF) to verify the security state of a t...

AI Technical Summary

Problems solved by technology

[0004] However, there are still some shortcomings in the existing remote attestation schemes for device groups: 1) The unified attestation cycle ignores the different security requirements of heterogeneous IoT devices

For IoT devices with high security requirements, the unified certification period may be too long, which is easy to let go of transient attacks and form security holes; while for IoT devices with low security requirements, the unified certification period may be short , causing unnecessary proof overhead on IoT devices

2) High IoT device overhead in a dynamic network environment

Existing remote attestation schemes for smart IoT devices require remote attestation through network topology, so they are not suitable for device groups in dynamic topology networks

At the same time, most of the existing remote proofs for device groups that adapt to dynamic topologies use the broadcast mechanism to propagate proof challenges, and feed back proof responses through aggregation, resulting in high communication overhead and storage overhead on IoT devices

Images