Testbed for LoRaWAN Security: Design and Validation through Man-in-the-Middle Attacks Study

Kód výsledku v IS VaVaI

<a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216305%3A26220%2F21%3APU141457" target="_blank" >RIV/00216305:26220/21:PU141457 - isvavai.cz</a>

Výsledek na webu

<a href="https://www.mdpi.com/2076-3417/11/16/7642/htm" target="_blank" >https://www.mdpi.com/2076-3417/11/16/7642/htm</a>

DOI - Digital Object Identifier

<a href="http://dx.doi.org/10.3390/app11167642" target="_blank" >10.3390/app11167642</a>

Jazyk výsledku

angličtina

Název v původním jazyce

Testbed for LoRaWAN Security: Design and Validation through Man-in-the-Middle Attacks Study

Popis výsledku v původním jazyce

The low-power wide-area (LPWA) technologies, which enable cost and energy-efficient wireless connectivity for massive deployments of autonomous machines, have enabled and boosted the development of many new Internet of things (IoT) applications; however, the security of LPWA technologies in general, and specifically those operating in the license-free frequency bands, have received somewhat limited attention so far. This paper focuses specifically on the security and privacy aspects of one of the most popular license-free-band LPWA technologies, which is named LoRaWAN. The paper's key contributions are the details of the design and experimental validation of a security-focused testbed, based on the combination of software-defined radio (SDR) and GNU Radio software with a standalone LoRaWAN transceiver. By implementing the two practical man-in-the-middle attacks (i.e., the replay and bit-flipping attacks through intercepting the over-the-air activation procedure by an external to the network attacker device), we demonstrate that the developed testbed enables practical experiments for on-air security in real-life conditions. This makes the designed testbed perspective for validating the novel security solutions and approaches and draws attention to some of the relevant security challenges extant in LoRaWAN.

Název v anglickém jazyce

Testbed for LoRaWAN Security: Design and Validation through Man-in-the-Middle Attacks Study

Popis výsledku anglicky

The low-power wide-area (LPWA) technologies, which enable cost and energy-efficient wireless connectivity for massive deployments of autonomous machines, have enabled and boosted the development of many new Internet of things (IoT) applications; however, the security of LPWA technologies in general, and specifically those operating in the license-free frequency bands, have received somewhat limited attention so far. This paper focuses specifically on the security and privacy aspects of one of the most popular license-free-band LPWA technologies, which is named LoRaWAN. The paper's key contributions are the details of the design and experimental validation of a security-focused testbed, based on the combination of software-defined radio (SDR) and GNU Radio software with a standalone LoRaWAN transceiver. By implementing the two practical man-in-the-middle attacks (i.e., the replay and bit-flipping attacks through intercepting the over-the-air activation procedure by an external to the network attacker device), we demonstrate that the developed testbed enables practical experiments for on-air security in real-life conditions. This makes the designed testbed perspective for validating the novel security solutions and approaches and draws attention to some of the relevant security challenges extant in LoRaWAN.

Druh

J_imp - Článek v periodiku v databázi Web of Science

CEP obor

—

OECD FORD obor

20203 - Telecommunications

Projekt

<a href="/cs/project/TK02030013" target="_blank" >TK02030013: Kyber-fyzikální dvojče městské infrastruktury zítřka</a><br>

Návaznosti

P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Rok uplatnění

2021

Kód důvěrnosti údajů

S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Název periodika

Applied Sciences - Basel

ISSN

2076-3417

e-ISSN

—

Svazek periodika

11

Číslo periodika v rámci svazku

16

Stát vydavatele periodika

CH - Švýcarská konfederace

Počet stran výsledku

17

Strana od-do

1-17

Kód UT WoS článku

000688730000001

EID výsledku v databázi Scopus

2-s2.0-85113447584