Accessibility navigation


TLS/PKI Challenges and certificate pinning techniques for IoT and M2M secure communications

Díaz-Sánchez, D., Marín-Lopez, A., Almenarez, F., Arias, P. and Sherratt, S. R. ORCID: https://orcid.org/0000-0001-7899-4445 (2019) TLS/PKI Challenges and certificate pinning techniques for IoT and M2M secure communications. IEEE Communications Surveys & Tutorials, 21 (4). pp. 3502-3531. ISSN 1553-877X

[img]
Preview
Text - Published Version
· Please see our End User Agreement before downloading.

1MB

It is advisable to refer to the publisher's version if you intend to cite from this work. See Guidance on citing.

To link to this item DOI: 10.1109/COMST.2019.2914453

Abstract/Summary

Transport Layer Security is becoming the de facto standard to provide end-to-end security in the current Internet. IoT and M2M scenarios are not an exception since TLS is also being adopted there. The ability of TLS for negotiating any security parameter, its flexibility and extensibility are responsible for its wide adoption but also for several attacks. Moreover, as it relies on Public Key Infrastructure (PKI) for authentication, it is also affected by PKI problems. Considering the advent of IoT/M2M scenarios and their particularities, it is necessary to have a closer look at TLS history to evaluate the potential challenges of using TLS and PKI in these scenarios. According to this, the article provides a deep revision of several security aspects of TLS and PKI, with a particular focus on current Certificate Pinning solutions in order to illustrate the potential problems that should be addressed.

Item Type:Article
Refereed:Yes
Divisions:Life Sciences > School of Biological Sciences > Biomedical Sciences
Life Sciences > School of Biological Sciences > Department of Bio-Engineering
ID Code:83566
Publisher:IEEE

Downloads

Downloads per month over past year

University Staff: Request a correction | Centaur Editors: Update this record

Page navigation