Enhanced Symmetric Cryptography for IoT using Novel Random Secret Key Approach

Abstract

The deployment of IoT devices in different domains enables technical innovations and value-added services to users but also creates multiple requirements in terms of effective communication and security. IoT devices are constrained by less computing resources and limited battery power. Generally, the TLS/SSL protocol is used to provide communication security on IoT and the protocol utilizes important encryption algorithms like RSA, Elliptic Curve Cryptography, and AES. However, these conventional encryption algorithms are computationally and economically expensive to implement in IoT devices. Lightweight Cryptography (LWC) algorithms were introduced recently for IoT and the aim of the algorithms is to provide the same level security with a minimal amount of computing resources and power. This paper proposes a novel Random Secret Key (RSK) technique to provide an additional security layer for symmetric LWC algorithms for IoT applications. In RSK, IoT devices do not transmit keys over the network; they share a random matrix, calculate their own RSK, encrypt, and transmit the cipher text. When a random matrix lifetime expires new matrix published and RSK resets. Regular change in the RSK makes the IoT networks resistant to brute-force/dictionary attacks. The RSK added one more simple and effective secure layer to strengthen the security of the original secret key and is successfully implemented in a smart greenhouse environment. The outcomes of the experiments prove that the RSK provides enhanced and efficient protection for symmetric LWC algorithms in any IoT systems, consume a minimum amount of resources and more resistant to key-based attacks.