The Journal of Korea Institute of Information, Electronics, and Communication Technology (한국정보전자통신기술학회논문지)

Korea Information Electronic Communication Technology (한국정보전자통신기술학회)
권호 표지
DOI QR코드

DOI QR Code

Flexible Crypto System for IoT and Cloud Service

IoT와 클라우드 서비스를 위한 유연한 암호화 시스템

  • Received : 2016.01.12
  • Accepted : 2016.02.01
  • Published : 2016.02.29
Download PDF
⟨ Previous Next ⟩

Abstract

As various IoT devices appear recently, Cloud Services such as DropBox, Amazon S3, Microsoft Azure Storage, etc are widely use for data sharing across the devices. Although, cryptographic algorithms like AES is prevalently used for data security, there is no mechanisms to allow selectively and flexibly use wider spectrum of lightweight cryptographic algorithms such as LEA, SEED, ARIA. With this, IoT devices with lower computation power and limited battery life will suffer from overly expensive workload and cryptographic operations are slower than what is enough. In this paper, we designed and implemented a CloudGate that allows client programs of those cloud services to flexibly select a cryptographic algorithms depending on the required security level. By selectively using LEA lightweight algorithms, we could achieve the cryptographic operations could be maximum 1.8 faster and more efficient than using AES.

최근 다양한 IoT 기기들의 등장과 데이터 공유를 위하여 DropBox, Amazon S3, Microsoft Azure Storage 등의 클라우드 서비스가 많이 사용되고 있다. 데이터 보안을 위해 AES 같은 암호화 알고리즘이 널리 쓰이고 있지만, 데이터의 보안등급 이나 사용목적에 따라 LEA, SEED, ARIA 같은 여러 가지 다양한 방식의 암호 알고리즘을 선별적으로 유연하게 사용하지 못하고 있다. 이는 적절한 암호화 알고리즘을 사용하지 않음으로 인하여 전력 효율이 중요한 장치들에 더 많은 과부화가 걸리게 할 수 있고 암호화도 필요 이상으로 느려지게 되어 성능이 떨어지는 원인이 된다. 이에 본 논문에서는 IoT 장치 위에서 클라우드 서비스의 클라이언트 프로그램들이 데이터의 보안등급 이나 사용용도에 따라 암호화 알고리즘을 선택 할 수 있는 CloudGate 시스템을 설계 및 구현하였다. 선택적으로 LEA 경량화 알고리즘을 사용함으로써 AES를 사용할 때보다 최대 1.8배 더 빠르고 효율적으로 암호화를 할 수 있음을 확인하였다.

Keywords

References

  1. J. Cook, "Google Drive Now Has 10 Million Users: Available on iOS and Chrome OS," http://techcrunch.com/2012/06/28/google-drive-nowhas-10-million-users-available-on-ios-and-chrome-os-offline-editingin-docs/
  2. W. Santos, "76 Storage APIs: Box.net, Amazon S3, Dropbox," http://www.programmableweb.com/news/76-storage-apis-box.netamazon-s3-dropbox/2012/01/31
  3. C. Soghoian. How Dropbox sacrifices user privacy for cost savings, 2011. http://paranoia.dubfire.net/2011/04/howdropbox-sacrifices-user-privacy-for.html (last accessed: 07/13/2012)
  4. I. Drago, M. Mellia, M. M Munafo, A. Sperotto, R. Sadre, and A. Pras, "Inside Dropbox: Understanding Personal Cloud Storage Services," in The 2012 ACM conference on Internet measurement conference (IMC), Nov. 2012
  5. B. H. Kim and D. Lie, "Caelus: Verifying the consistency of cloud services with battery-powered devices," in SP'15. IEEE, 2015.
  6. BoxCryptor, https://www.boxcryptor.com/en
  7. D. Hong, J. Lee, D. Kim, D. Kwon, K. H. Ryu, and D. Lee, "LEA: A 128-Bit Block Cipher for Fast Encryption on Common Processors" in Proc. WISA 2013, pp. 3-27, Jeju Island, Korea, Mar 2014.
  8. J. Park et al., "128-Bit Block Cipher LEA," TTAK.KO-12.0223, Dec. 2013.
  9. NIST, "Advanced Encryption Standard(AES)" Federal Information Processing Standard, FIPS PUB 197, Nov. 2001.
  10. J. Park, S. Lee, J. Kim, and J. Lee, The SEED Encryption Algorithm, RFC 4009, Feb. 2005.
  11. Korea Information Security Agency, www.kisa.or.kr , "ARIA , SEED"
  12. Cryptographic Module Validation Authority/Test organization, Cryptographic algorithm validation criteria (LEA, HEIGHT)", 2015.6
  13. Young-Seok Lee, "Authentication Method for Safe Internet of Things Environments", JKIIECT '15-02. Vol.8 No1, pp. 51-58, Feb. 2015.
  14. Byung-Joon Park, "Study on Face recongnition algorithm using the eye detection", JKIIECT '15-12. Vol.8 No6, pp. 491-496, Dec. 2015.

Cited by

  1. Cloud-Based Virtual Port-Container Terminal Establishment and Operation Analysis vol.9, pp.10, 2016, https://doi.org/10.3390/electronics9101615