| Title | IoT Content Object Security with OSCORE and NDN: A First Experimental Comparison |
| Publication Type | Conference Paper |
| Year of Publication | 2020 |
| Authors | Gündoğan, C., Amsüss, C., Schmidt, T. C., Wählisch, M. |
| Conference Name | 2020 IFIP Networking Conference (Networking) |
| Date Published | jun |
| Keywords | CoAP, computer network security, Constrained RESTful Environments, content object security features, content security end-to-end, content transfer, cryptography, DTLS, DTLS sessions, end-to-end transport, first experimental comparison, gateways, Human Behavior, ICN, Information Centric Networks, information-centric Named Data Networking protocol, Internet, Internet of Things, internetworking, IoT content Object Security, IP networks, large-scale IoT, Libraries, Logic gates, low power lossy links, measure protocol performances, MQTT-SN, multihop scenarios, named data networking, NDN attains superior robustness, network experimentation, OSCORE, protocol stacks, protocol translations, Protocols, proxies, pubcrawl, request-response transactions, Resiliency, Scalability, secure networking, security sessions, single-hop scenarios, transport protocols |
| Abstract | The emerging Internet of Things (IoT) challenges the end-to-end transport of the Internet by low power lossy links and gateways that perform protocol translations. Protocols such as CoAP or MQTT-SN are degraded by the overhead of DTLS sessions, which in common deployment protect content transfer only up to the gateway. To preserve content security end-to-end via gateways and proxies, the IETF recently developed Object Security for Constrained RESTful Environments (OSCORE), which extends CoAP with content object security features commonly known from Information Centric Networks (ICN). This paper presents a comparative analysis of protocol stacks that protect request-response transactions. We measure protocol performances of CoAP over DTLS, OSCORE, and the information-centric Named Data Networking (NDN) protocol on a large-scale IoT testbed in single- and multi-hop scenarios. Our findings indicate that (a) OSCORE improves on CoAP over DTLS in error-prone wireless regimes due to omitting the overhead of maintaining security sessions at endpoints, and (b) NDN attains superior robustness and reliability due to its intrinsic network caches and hop-wise retransmissions. |
| Citation Key | gundogan_iot_2020 |
IoT Content Object Security with OSCORE and NDN: A First Experimental Comparison