D2tls: Delegation-Based Dtls For Cloud-Based Iot Services

The Internet of Things (IoT) becomes proliferated due to the advances in embedded devices, wireless communications, and cloud technologies. However, the security problem in the Internet will be worsened in IoT services considering the constrained resources of IoT devices. We propose a delegation-based DTLS framework (D2TLS) for cloud-based IoT services. D2TLS aims to achieve mutual authentication and to lower the burden of setting up secure connections significantly while keeping the private keys of the IoT devices secret. Leveraging the session resumption in the DTLS standard and introducing a security agent, D2TLS achieves these goals while requiring the modifications only on the client side. That is, the cloud and PKI systems need not change to deploy D2TLS. Numerical results show that D2TLS can achieve better performance in terms of delay and energy consumption than the current DTLS protocol in standalone mode.