DAXiot: A Decentralized Authentication and Authorization Scheme for Dynamic IoT Networks
Artur Philipp, Axel K\"upper
TL;DR
DAXiot introduces a decentralized, privacy-preserving authentication and authorization scheme for dynamic IoT networks, enabling secure permission management and data confidentiality in frequently changing environments.
Contribution
It proposes a novel challenge-response scheme using Decentralized Identifiers and Verifiable Credentials for IoT security.
Findings
Secure authentication and authorization demonstrated in MQTT 5.0 scenario
Supports privacy preservation and data confidentiality
Evaluates security, privacy, and performance effectively
Abstract
Federated and decentralized networks supporting frequently changing system participants are a requirement for future Internet of Things (IoT) use cases. IoT devices and networks often lack adequate authentication and authorization mechanisms, resulting in insufficient privacy for entities in such systems. In this work we address both issues by designing a privacy preserving challenge-response style authentication and authorization scheme based on Decentralized Identifiers and Verifiable Credentials. Our solution allows a decentralized permission management of frequently changing network participants and supports authenticated encryption for data confidentiality. We demonstrate our solution in an MQTT 5.0 scenario and evaluate its security, privacy guarantees, and performance.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsPrivacy, Security, and Data Protection · Privacy-Preserving Technologies in Data · User Authentication and Security Systems