Authors:
(1) Moritz Jasper, Barkhausen Institut gGmbH, Wurzburger Straße 46, Dresden, Germany (moritz.jasperl@barkhauseninstitut.org);
(2) Stefan Kopsell, Barkhausen Institut gGmbH, Wurzburger Straße 46, Dresden, Germany (stefan.koepsell@barkhauseninstitut.org). Table of Links Abstract and Introduction Related Work Description of LCM Attacker Model and Security Goals LCMSec: The Proposed Protocol Implementation and Evaluation Conclusion Appendix and References VII. CONCLUSION In this work, we presented LCMsec, a new secure brokerless Publish/Subscribe protocol based on UDP multicast. We have added confidentiality, integrity and authenticity to the existing LCM protocol while minimising both overhead and computational complexity. LCMsec can be used in most environments in which LCM is currently used, e.g., IoT, automotive and robotics applications. This has been achieved by using a different threat model than previous work in the domain of multicast authentication. We make no distinction between subscribers and publishers, each subscriber is also allowed to publish messages. However, an attribute-based access control mechanism is available through the use X.509 certificates that grants access only to specific LCMdomains. LCMsec is decentralised in the sense that there is no need for a central server to broker messages, facilitate key exchanges or discover peers. A discovery mechanism is instead built-in, which facilitates ease-of-use and flexibility. Despite the shared symmetric key, it should be noted that the protocol is scalable in dynamic situations: Through use of the DuttaBarua group key agreement, the number of network interactions when a publisher or subscriber joins a topic is minimised. This paper is available on arxiv under CC BY 4.0 DEED license. Authors: (1) Moritz Jasper, Barkhausen Institut gGmbH, Wurzburger Straße 46, Dresden, Germany (moritz.jasperl@barkhauseninstitut.org); (2) Stefan Kopsell, Barkhausen Institut gGmbH, Wurzburger Straße 46, Dresden, Germany (stefan.koepsell@barkhauseninstitut.org). Authors: Authors: (1) Moritz Jasper, Barkhausen Institut gGmbH, Wurzburger Straße 46, Dresden, Germany (moritz.jasperl@barkhauseninstitut.org); (2) Stefan Kopsell, Barkhausen Institut gGmbH, Wurzburger Straße 46, Dresden, Germany (stefan.koepsell@barkhauseninstitut.org). Table of Links Abstract and Introduction Abstract and Introduction Related Work Related Work Description of LCM Description of LCM Attacker Model and Security Goals Attacker Model and Security Goals LCMSec: The Proposed Protocol LCMSec: The Proposed Protocol Implementation and Evaluation Implementation and Evaluation Conclusion Conclusion Appendix and References Appendix and References VII. CONCLUSION In this work, we presented LCMsec, a new secure brokerless Publish/Subscribe protocol based on UDP multicast. We have added confidentiality, integrity and authenticity to the existing LCM protocol while minimising both overhead and computational complexity. LCMsec can be used in most environments in which LCM is currently used, e.g., IoT, automotive and robotics applications. This has been achieved by using a different threat model than previous work in the domain of multicast authentication. We make no distinction between subscribers and publishers, each subscriber is also allowed to publish messages. However, an attribute-based access control mechanism is available through the use X.509 certificates that grants access only to specific LCMdomains. LCMsec is decentralised in the sense that there is no need for a central server to broker messages, facilitate key exchanges or discover peers. A discovery mechanism is instead built-in, which facilitates ease-of-use and flexibility. Despite the shared symmetric key, it should be noted that the protocol is scalable in dynamic situations: Through use of the DuttaBarua group key agreement, the number of network interactions when a publisher or subscriber joins a topic is minimised. This paper is available on arxiv under CC BY 4.0 DEED license. This paper is available on arxiv under CC BY 4.0 DEED license. available on arxiv

Part of HackerNoon's growing list of open-source research papers, promoting free access to academic material.

Secure and Dynamic Publish/Subscribe: LCMsec: Appendix and References

Secure and Dynamic Publish/Subscribe: LCMsec: Implementation and Evaluation

Read My Stories

Too Long; Didn't Read

Boost your HackerNoon story @ $159.99! 🚀

Secure and Dynamic Publish/Subscribe: LCMsec: Conclusion

About Author

Comments

TOPICS

THIS ARTICLE WAS FEATURED IN

Related Stories

Untitled Story

Secure and Dynamic Publish/Subscribe: LCMsec: Abstract and Introduction

Secure and Dynamic Publish/Subscribe: LCMsec: Abstract and Introduction

Secure and Dynamic Publish/Subscribe: LCMsec: Related Work

Secure and Dynamic Publish/Subscribe: LCMsec: Description of LCM

Secure and Dynamic Publish/Subscribe: LCMsec: Attacker Model and Security Goals

Secure and Dynamic Publish/Subscribe: LCMsec: Abstract and Introduction

Secure and Dynamic Publish/Subscribe: LCMsec: Abstract and Introduction

Secure and Dynamic Publish/Subscribe: LCMsec: Related Work

Secure and Dynamic Publish/Subscribe: LCMsec: Description of LCM

Secure and Dynamic Publish/Subscribe: LCMsec: Attacker Model and Security Goals

Light-Mode

Classic

Newspaper

Dark-Mode

Neon Noir

Minty

HN StartUps