Towards Quantum Resilient IoT: A Backward-Compatible Approach to Secure BLE Key Exchange Against Quantum Threats
|
Accepted Version
(PDF 407kB)
156615740. Available under License Creative Commons Attribution Non-commercial 4.0. |
Description
There's a significant move towards the adoption of Post-Quantum Cryptography (PQC). While there have been initiatives to transition conventional TCP/IP-based networks to PQC, Quantum Resilient Internet of Things (IoT) networks have not been as widely discussed. Presently, Bluetooth Low Energy (BLE) employs the Elliptic Curve Diffie-Hellman algorithm for Secure Connection (SC) pairing, which is vulnerable to quantum threats. In this study, we introduce a backward-compatible Post-Quantum Key Exchange (PQKE) protocol for BLE, utilizing the Kyber-512 algorithm that has been adopted by the National Institute of Standards and Technology as a post quantum Key Encapsulation Mechanism. Although Kyber-512 is quantum resilient, it has large key pairs and ciphertexts, which presents critical challenges for the limited computational resources of IoT devices. Our performance assessment reveals that with an Attribute Protocol Maximum Transmission Unit (ATT MTU) of 65 bytes, the pairing time increases by approximately 9 folds using our PQKE in comparison to the traditional BLE SC pairing, mainly due to increased data transmission. Nevertheless, by employing a larger ATT MTU, the pairing time of our PQKE mechanism can be minimized to be of the same order of magnitude as current pre-quantum key exchange for BLE. We therefore advocate for the adoption of larger ATT MTU sizes in quantum resilient BLE pairing to ensure the performance and usability of the technology in a post-quantum world.
Impact and interest:
Citation counts are sourced monthly from Scopus and Web of Science® citation databases.
These databases contain citations from different subsets of available publications and different time periods and thus the citation count from each is usually different. Some works are not in either database and no count is displayed. Scopus includes citations from articles published in 1996 onwards, and Web of Science® generally from 1980 onwards.
Citations counts from the Google Scholar™ indexing service can be viewed at the linked Google Scholar™ search.
Full-text downloads:
Full-text downloads displays the total number of times this work’s files (e.g., a PDF) have been downloaded from QUT ePrints as well as the number of downloads in the previous 365 days. The count includes downloads for all files if a work has more than one.
ID Code: | 245861 | ||||
---|---|---|---|---|---|
Item Type: | Chapter in Book, Report or Conference volume (Conference contribution) | ||||
ORCID iD: |
|
||||
Measurements or Duration: | 11 pages | ||||
Keywords: | Bluetooth Low Energy, Internet of Things, Post-Quantum Cryptography | ||||
DOI: | 10.1109/IoTDI61053.2024.00019 | ||||
ISBN: | 979-8-3503-7026-3 | ||||
Pure ID: | 156615740 | ||||
Divisions: | Current > QUT Faculties and Divisions > Faculty of Science Current > Schools > School of Computer Science |
||||
Copyright Owner: | 2024 IEEE | ||||
Copyright Statement: | This work is covered by copyright. Unless the document is being made available under a Creative Commons Licence, you must assume that re-use is limited to personal use and that permission from the copyright owner must be obtained for all other uses. If the document is available under a Creative Commons License (or other specified license) then refer to the Licence for details of permitted re-use. It is a condition of access that users recognise and abide by the legal requirements associated with these rights. If you believe that this work infringes copyright please provide details by email to qut.copyright@qut.edu.au | ||||
Deposited On: | 29 Jan 2024 05:06 | ||||
Last Modified: | 25 Jul 2024 06:20 |
Export: EndNote | Dublin Core | BibTeX
Repository Staff Only: item control page