Presentation is loading. Please wait.

Presentation is loading. Please wait.

Facing the Challenges of M2M Security and Privacy

Published byJeffery Gaines Modified over 9 years ago

Similar presentations

Presentation on theme: "Facing the Challenges of M2M Security and Privacy"— Presentation transcript:

1 Facing the Challenges of M2M Security and Privacy
Phil Hawkes Principal Engineer at Qualcomm Inc. oneM2M

2 Overview oneM2M Architecture: a quick review Challenges Solutions
Large variety of scenarios Any device in any deployment A device cannot make autonomous “judgment calls” on privacy Solutions Secure communication Remote provisioning Access control policies Future Challenges

3 oneM2M Architecture: A Quick Review
Entities Nodes (=Devices) Common Service Entity (CSE) Application Entity (AE) Interactions: Mca: AE-to-CSE Mcc, Mcc’: CSE-to-CSE RESTful For more info see webinar Taking a look inside oneM2M AE CSE CSE AE AE AE CSE CSE Field Domain AE Infrastructure Domain CSE CSE AE AE

4 Challenges Large variety of scenarios Any device in any deployment
A device cannot make autonomous “judgment calls” on privacy

5 Challenges Large variety of deployments Any device in any deployment
“Assets” that need protecting can be unique to a deployment Content confidentiality, content integrity, anonymity, traffic efficiency Environment can be unique to a deployment Does wired or wireless transport layer provide adequate security? Tamper-resistance considerations (Continued on next slide) Any device in any deployment A device cannot make autonomous “judgment calls” on privacy

6 Challenges Large variety of deployments (continued)
Variety of authentication scenarios Pre-shared Key provisioned to both by end-points PKI/Certificates (asymmetric cryptography) Centralized authentication Any device in any deployment A device cannot make autonomous “judgment calls” on privacy

7 Challenges Large variety of deployment scenarios
Any device in any deployment Interoperability: agree on minimal set of cipher suites Credential management Provisioning at manufacture Human-assisted provisioning during deployment e.g. manual entry, via USB Remote provisioning of fielded devices Derivation from pre-existing credentials (e.g. transport network) Note: a, b are enabled but not specified by oneM2M A device cannot make autonomous “judgment calls” on privacy

8 Challenges Large variety of scenarios Any device in any deployment
A device cannot make autonomous “judgment calls” on privacy M2M/IoT may expose information about our lives without our awareness Privacy = who can access information about me CSE needs to determine: “Should I allow access?” Can’t ask human to make case-by-case judgment call CSE needs clear rules

9 Challenges & Solutions
Large variety of scenarios Any device in any deployment A device cannot make “judgment calls” on privacy Secure communication various authentication options Remote provisioning Access Control Policies expresses wide variety of rules

10 Secure Communication: Example
Field Domain Sensor Gateway AE1 CSE1 E-Health Web-application AE2 CSE2 M2M SP’s Server Web App Server Infrastructure Domain

11 Secure Communication: Example
Field Domain CoAP UDP AE1 passes sensor reading to CSE1 Sensor Gateway AE1 CSE1 AE2 CSE2 M2M SP’s Server Web App Server Infrastructure Domain

12 Secure Communication: Example
Field Domain CoAP UDP AE1 passes sensor reading to CSE1 CSE1 forwards sensor reading to CSE2 Sensor Gateway AE1 CSE1 HTTP TCP AE2 CSE2 M2M SP’s Server Web App Server Infrastructure Domain

13 Secure Communication: Example
Field Domain CoAP UDP AE1 passes sensor reading to CSE1 CSE1 forwards sensor reading to CSE2 AE2 retrieves sensor reading from CSE2 Sensor Gateway AE1 CSE1 HTTP TCP AE2 CSE2 M2M SP’s Server Web App Server HTTP TCP Infrastructure Domain

14 Secure Communication Hop-by-Hop Transited CSEs see clear text
Field Domain Hop-by-Hop Transited CSEs see clear text Trusted to behave Sensor Gateway AE1 CSE1 AE2 CSE2 M2M SP’s Server Web App Server Infrastructure Domain

15 Secure Communication Hop-by-Hop TLS/DTLS v1.2 DTLS if UDP transport
Field Domain CoAP DTLS UDP Hop-by-Hop TLS/DTLS v1.2 DTLS if UDP transport Sensor Gateway AE1 CSE1 AE2 CSE2 M2M SP’s Server Web App Server Infrastructure Domain

16 Secure Communication Hop-by-Hop TLS/DTLS v1.2 DTLS if UDP transport
Field Domain Hop-by-Hop TLS/DTLS v1.2 DTLS if UDP transport TLS if TCP transport Sometimes write (D)TLS or just TLS for both Sensor Gateway AE1 CSE1 HTTP TLS TCP AE2 CSE2 M2M SP’s Server Web App Server HTTP TLS TCP Infrastructure Domain

17 Secure Communication Hop-by-Hop TLS/DTLS v1.2 AE-CSE
Field Domain Hop-by-Hop TLS/DTLS v1.2 AE-CSE AE: TLS Client (C) CSE: TLS Server (S) Sensor Gateway C S AE1 CSE1 C S AE2 CSE2 M2M SP’s Server Web App Server Infrastructure Domain

18 Secure Communication Hop-by-Hop TLS/DTLS v1.2 AE-CSE CSE-CSE
Field Domain Hop-by-Hop TLS/DTLS v1.2 AE-CSE AE: TLS Client (C) CSE: TLS Server (S) CSE-CSE CSE1: TLS Client (C) CSE2: TLS Server (S) Sensor Gateway C S AE1 CSE1 C S C S AE2 CSE2 M2M SP’s Server Web App Server Infrastructure Domain

19 Authentication Options
Pre-Shared Key (PSK) TLS Client & Server provisioned with a shared key# Certificate TLS Client & Server both have certificates M2M Authentication Function (MAF) MAF operated by 3rd Party or M2M Service Provider TLS Client and MAF provisioned with a shared key# MAF assists authentication of TLS Client & Server #This shared key can be remotely provisioned

20 Certificates Somewhat aligned with CoAP Security RFC7252
X.509/PKIX (RFC 5280) RawPublicKey Certificates Contains only X.509 SubjectPublicKeyInfo element Suits less complex deployments & debugging Certificates chaining to a trust anchor. E.g. Device Certificate (e.g. manufacturer issued) M2M SP issued certificate identifying CSE or AE

21 Remote Provisioning Process provisioning a shared key to two entities
M2M Enrolment Function (MEF) Assists remote provisioning Operated by 3rd Party or M2M Service Provider Mechanisms for establishing shared key TLS Client & MEF perform (D)TLS, export shared key PSK Certificates Derived from Network Access credentials Network Access Provider assists in mutual authentication Generic Bootstrapping Architecture (GBA) 3GPP TS

22 Access Control Requirements
oneM2M uses a RESTful architecture API: request to perform an operation on a resource Operations: Create, Retrieve, Update, Delete Webinar Taking a look inside oneM2M has more info CSEs can’t make resource access judgement calls CSE need clear rules dictating, for each resource WHO (which CSEs and AEs) are authorized to access, WHAT operations (see above), and under… WHICH circumstances (e.g. time, location of entity)

23 Access Control Policies (ACP) Resources
links contains Resource1 ACP1 ACP Rule1 Resource2 Resource3 ACP2 ACP Rule2 Resource4 ACP3 ACP Rule3 Resource access is authorized upon satisfying at least one ACP rule in one of the linked ACPs

24 Access Control Policies (ACP) Resources
links contains with conditions on Resource1 ACP1 ACP Rule1 WHO: entities CSE-ID AE-ID Resource2 WHAT: operations Create, Retrieve Update Delete Resource3 ACP2 ACP Rule2 WHICH: circumstances Time, location, IP address Resource4 ACP3 ACP Rule3 ACP rule is satisfied if WHO and WHAT and WHICH are satisfied by requesting entity, requested operation and circumstances

25 oneM2M Security Documents
TR-0008 “Analysis of Security Solutions for the oneM2M System” TS-0003 “Security Solutions” Latest versions available from ftp://ftp.onem2m.org/Work%20Programme/WI0007/

26 Limitations of initial release
A “minimum deployable solution” addressing short term needs Focus: Vertically deployed industrial applications Centralized client-server architectures Most devices have limited number of static connections Deployments are managed by skilled workforce Nodes are trusted to behave Our solutions meet these needs while having a place in future M2M/IoT (consumer) scenarios

27 Future Challenges Decentralization Technological Challenges:
Increasingly complex interactions Sharing Information between deployments Complex authentication and authorization scenarios Confidentiality & integrity concerns Unskilled Consumers managing their “Things” Technological Challenges: End-to-End (multi-hop) message security Many connections per device Authentication & Authorization mechanisms

28 Conclusion: Challenges & Solutions
Large variety of scenarios Any device in any deployment A device cannot make “judgment calls” on privacy Secure communication various authentication options Remote provisioning Access Control Policies expresses wide variety of rules

29 Join us for the next webinar
“On Management, Abstraction & Semantics” by Dr. Yongjing Zhang Standard Research Project Lead at Huawei Technologies Co., Ltd 27 November 2014 at 0700 UTC

30 Check out the recorded webinars
“How standardization enables the next internet evolution” by Marc Jadoul Strategic Marketing Director, Alcatel-Lucent “Taking a look inside” by Nicolas Damour Senior Manager for Business and Innovation Development, Sierra Wireless

31 Join us at the oneM2M showcase event
OneM2M project partners, rationale and goals OneM2M Service Layer Specification release Showcase demos that demonstrate oneM2M “live" 9 December 2014, Sophia-Antipolis, France (free of charge, but online registration is required) Followed by the ETSI M2M workshop

32 Q & A

33 Backup Slides

34 PSK-Based Authentication
Client Server

35 Provision identical PSK, PSK-ID to A, B
Client Server PSK, PSK-ID PSK, PSK-ID

36 PSK Client Server 2. TLS/DTLS A provides PSK-ID
B identifies PSK from PSK-ID PSK, PSK-ID PSK, PSK-ID

37 PSK Client Server 2. (D)TLS A provides PSK-ID
B identifies PSK from PSK-ID PSK, PSK-ID PSK, PSK-ID Advantages: Challenges: Simple Concept May need multiple keys provisioned Doesn’t scale well

38 PKI/Certificate-Based Authentication
Client Server

39 PKI 1. Provision certificate 1’. Provision certificate Client Server
Client’s Cert Server’s Cert Client Server

40 PKI 2. Configure trust anchors 2’. Configure trust anchors Client
Client’s Cert Server’s Cert Client Server Client’s Trust Anchors Server’s Trust Anchors

41 PKI Client Server 2. (D)TLS
Client’s Cert Server’s Cert Client Server Client’s Trust Anchors 2. (D)TLS Server’s Trust Anchors Validate server’s cert against client’s trust anchors Validate client cert against server’s trust anchors

42 MAF Assisted (D)TLS Client MAF (D)TLS Server

43 Provision symmetric key Km, KmId
MAF Assisted Provision symmetric key Km, KmId (D)TLS Client MAF Km, KmID Km, KmId (D)TLS Server

44 2. Generate Kc, KcId from Km
MAF Assisted 2. Generate Kc, KcId from Km (D)TLS Client MAF Km, KmID Km, KmId (D)TLS Server Kc, KcId Kc, KcId

45 MAF Assisted (D)TLS Client MAF (D)TLS Server 3a. (D)TLS: KcId Kc, KcId

46 MAF Assisted (D)TLS Client MAF (D)TLS Server 3a. (D)TLS: KcId 3b. KcId
Kc, KcId Kc, KcId

47 MAF Assisted (D)TLS Client MAF (D)TLS Server 3a. (D)TLS: KcId 3b. KcId
3c. Kc Kc, KcId Kc, KcId Kc, KcId

48 MAF Assisted (D)TLS Client MAF (D)TLS Server 3a. (D)TLS: KcId 3b. KcId
(D)TLS w/ Kc 3b. Kc Kc, KcId Kc, KcId Kc, KcId

49 Remote Provisioning PArticipants
Process provisions a shared key to two entities M2M Enrolment Function (MEF) Assists remote provisioning Operated by 3rd Party or M2M Service Provider Enrolee Entity requesting to be provisioned Enrolment Target Other entity that will ends up with the shared key

50 Remote Provisioning M2M Enrolment Function Enrolee Enrolment Target

51 Mutual Authentication
Remote Provisioning M2M Enrolment Function Enrolee Mutual Authentication Enrolment Target

52 Mutual Authentication
Remote Provisioning M2M Enrolment Function Ke, KeId Ke, KeId Enrolee Mutual Authentication Generate Ke, KeId Generate Ke, KeId Enrolment Target

53 KeId in (D)TLS Handshake
Remote Provisioning M2M Enrolment Function Ke, KeId Ke, KeId Enrolee KeId in (D)TLS Handshake Enrolment Target

54 KeId in (D)TLS Handshake
Remote Provisioning M2M Enrolment Function Ke, KeId Ke, KeId Enrolee KeId in (D)TLS Handshake KeId Enrolment Target

55 KeId in (D)TLS Handshake
Remote Provisioning M2M Enrolment Function Ke, KeId Ke, KeId Enrolee + Enrolment Target ID + Enrolment Target ID Shared Key Shared Key KeId in (D)TLS Handshake KeId Enrolment Target

56 KeId in (D)TLS Handshake
Remote Provisioning M2M Enrolment Function Enrolee Shared Key Shared Key KeId in (D)TLS Handshake KeId Enrolment Target Shared Key

57 Complete (D)TLS using Shared Key to verify provisioning
Remote Provisioning M2M Enrolment Function Enrolee Shared Key Complete (D)TLS using Shared Key to verify provisioning Enrolment Target Shared Key

58 GBA Network Access Authentication Server UE (HSS, HLR, AAA)
Network Access Credentials Network Access Credentials Network Access Authentication Server (HSS, HLR, AAA) UE (hosts TLS Client) GBA Bootstrap Server Function (plays role of MEF) TLS Server

59 GBA Network Access Authentication Server UE (HSS, HLR, AAA)
Network Access Credentials Network Access Credentials Network Access Authentication Server (HSS, HLR, AAA) UE (hosts TLS Client) GBA Bootstrap Server Function (plays role of MEF) TLS Server

60 GBA Network Access Authentication Server UE (HSS, HLR, AAA)
Network Access Credentials Network Access Credentials Network Access Authentication Server (HSS, HLR, AAA) UE (hosts TLS Client) B-TID, Ks B-TID, Ks GBA Bootstrap Server Function (plays role of MEF) TLS Server

61 GBA Network Access Authentication Server UE (HSS, HLR, AAA)
(hosts TLS Client) B-TID, Ks B-TID, Ks GBA Bootstrap Server Function (plays role of MEF) (D)TLS: B-TID TLS Server

62 GBA Network Access Authentication Server UE (HSS, HLR, AAA)
(hosts TLS Client) B-TID, Ks B-TID, Ks GBA Bootstrap Server Function (plays role of MEF) (D)TLS: B-TID B-TID TLS Server

63 GBA Network Access Authentication Server UE (HSS, HLR, AAA)
(hosts TLS Client) B-TID, Ks B-TID, Ks GBA Bootstrap Server Function (plays role of MEF) TLS Server FQDN (D)TLS: B-TID B-TID TLS Server Shared Key Shared Key

64 GBA Network Access Authentication Server UE (HSS, HLR, AAA)
(hosts TLS Client) GBA Bootstrap Server Function (plays role of MEF) (D)TLS: B-TID B-TID TLS Server Shared Key Shared Key Shared Key Shared Key

65 GBA Network Access Authentication Server UE (HSS, HLR, AAA)
(hosts TLS Client) GBA Bootstrap Server Function (plays role of MEF) (D)TLS: B-TID TLS Server Continue (D)TLS Shared Key Shared Key

Download ppt "Facing the Challenges of M2M Security and Privacy"

Similar presentations

TLS. 14.1 Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.

TLS Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.
Cryptography and Network Security

Cryptography and Network Security
Company Confidential 1 © 2005 Nokia V1-Filename.ppt / yyyy-mm-dd / Initials Pre-Shared Key TLS with GBA support Thesis presentation 22.4.2008 ESPOO, Finland.

Company Confidential 1 © 2005 Nokia V1-Filename.ppt / yyyy-mm-dd / Initials Pre-Shared Key TLS with GBA support Thesis presentation ESPOO, Finland.
Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)

Socket Layer Security. In this Presentation: need for web security SSL/TLS transport layer security protocols HTTPS secure shell (SSH)
Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.

Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.
SEC Clarification Group Name: WG4 (SEC-2014-xxxx) Decision  Meeting Date: 2014-05-07 Discussion  Source: OBERTHUR Technologies Information  Contact:

SEC Clarification Group Name: WG4 (SEC-2014-xxxx) Decision  Meeting Date: Discussion  Source: OBERTHUR Technologies Information  Contact:
Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.

Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.
WAP Public Key Infrastructure CSCI 5939.02 – Independent Study Fall 2002 Jaleel Syed Presentation No 5.

WAP Public Key Infrastructure CSCI – Independent Study Fall 2002 Jaleel Syed Presentation No 5.
A Survey of WAP Security Architecture Neil Daswani

A Survey of WAP Security Architecture Neil Daswani
Service Layer Session Management Group Name: WG2-ARC Source: IDCC, LGE, ZTE Meeting Date: TP16 Agenda Item:

Service Layer Session Management Group Name: WG2-ARC Source: IDCC, LGE, ZTE Meeting Date: TP16 Agenda Item:
ITU Workshop on Future Trust and Knowledge Infrastructure, Phase 1 Geneva, Switzerland, 24 April 2015 Session 4 – IoT data platform based on oneM2M Dr.

ITU Workshop on "Future Trust and Knowledge Infrastructure", Phase 1 Geneva, Switzerland, 24 April 2015 Session 4 – IoT data platform based on oneM2M Dr.
Credential Identifiers Group Name: SEC#14.2 Source: Phil Hawkes, Qualcomm Inc, Meeting Date: 2014-12-18.

Credential Identifiers Group Name: SEC#14.2 Source: Phil Hawkes, Qualcomm Inc, Meeting Date:
TAKING A LOOK INSIDE Nicolas Damour

TAKING A LOOK INSIDE Nicolas Damour
THE DICOM 2014 Chengdu Workshop August 25, 2014 Chengdu, China Keeping It Safe Brad Genereaux, Agfa HealthCare Product Manager Industry Co-Chair, DICOM.

THE DICOM 2014 Chengdu Workshop August 25, 2014 Chengdu, China Keeping It Safe Brad Genereaux, Agfa HealthCare Product Manager Industry Co-Chair, DICOM.
Windows 2003 and 802.1x Secure Wireless Deployments.

Windows 2003 and 802.1x Secure Wireless Deployments.
Russ Housley IETF Chair Founder, Vigil Security, LLC 8 June 2009 NIST Key Management Workshop Key Management in Internet Security Protocols.

Russ Housley IETF Chair Founder, Vigil Security, LLC 8 June 2009 NIST Key Management Workshop Key Management in Internet Security Protocols.
Authors list to be completed.

Authors list to be completed.
Presentation of ETSI TC M2M security features Group Name: WG4 Securtity Source: Francois Ennesser, Gemalto Meeting Date: 2013-04-15 Agenda Item: SEC.

Presentation of ETSI TC M2M security features Group Name: WG4 Securtity Source: Francois Ennesser, Gemalto Meeting Date: Agenda Item: SEC.
Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.

Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.
On Persistent AE Identifiers Group Name: SEC#12.2 Source: Phil Hawkes, Qualcomm Inc (TIA), Francois Ennesser,

On Persistent AE Identifiers Group Name: SEC#12.2 Source: Phil Hawkes, Qualcomm Inc (TIA), Francois Ennesser,

Similar presentations

Ads by Google