IOT SECURITY USING PUF AND ENCRYPTION TECHNIQUE

Abstract

Today I can say that we are living in the world of IOT where more than half world’s people are using internet. IoT has started capturing the market all over the world. Nearly all household appliances are available and consumer can buy them. Even though increasing popularity and acceptance of IoT enabled devices “Security of device and information” is big concern.

Lack of security leaves the customer potentially exposed to various risk factors. Risk might be ranging daily routine data theft to great financial risk, even in some cases there is life threating risk for specific or group of persons. On analyzing various devices, I come to know that many are not devices enforced strong passwords are not devices applied, or brute-force attacks is not protected, physical replacement of faulty sensors or wiretapping the traffic. As per approximation, every two among ten applications of mobile which are being used for managing and handling IOT devices are vulnerable and are not using SSL for communication data encryption. We already know many potential weaknesses that could affect IoT system. Apart from soft attack like phishing, service interruption, virus infection, there is also possibility of physically interfere IoT network. IoT involve billions of sensors spreading all around the world. Many of them are not physically protected. Attacker could access those sensors/devices and manipulate them or replace them. Captured data through sensors is also not safe if transmitted without encrypting them. Further many devices don’t have such power to perform heavy encryption. In this project I am proposing a PUF (Physically unclonable function) and light weight encryption technique based solution. PUF is class of new hardware security primitives. It promises a paradigm shift in security problems and challenges. It has a very simple architecture and can solve problem of energy-constrained IoT devices. I am using PUF functionality with hardware sensors. Since PUF function cannot be cloned therefore sensors are safe and any modification or replacement can be easily detected. Further data received from sensors will be encrypted using light weigh encryption technique.

In future I will explore a how to store safely vast amount of data generated through billions of sensors.