SlideShare a Scribd company logo

Introduction-to-Cryptography-in-IoT.pptx

Download as PPTX, PDF
B
BsavioBrosavio

1. Introduction The Internet of Things (IoT) is a rapidly growing network of interconnected devices—sensors, actuators, cameras, appliances, vehicles, and more—that communicate and exchange data over the internet. While IoT offers immense benefits in automation, smart living, and industry, it also introduces significant security vulnerabilities due to its distributed, low-power, and always-connected nature. Cryptography is the backbone of data security in IoT. It ensures confidentiality, integrity, authentication, and non-repudiation of data exchanged between devices. However, applying cryptography in IoT comes with unique challenges due to limited resources in IoT devices. --- 2. Why Security is Critical in IoT IoT applications often deal with sensitive data: Smart Homes: Voice commands, door locks, camera feeds. Healthcare IoT: Patient vitals, prescriptions, real-time monitoring. Industrial IoT (IIoT): Sensor data, machine control, factory operations. Smart Cities: Surveillance, traffic control, utilities. Vehicles (V2X): Location, driving behavior, road safety systems. Without strong cryptographic mechanisms, IoT systems are vulnerable to: Eavesdropping Man-in-the-middle (MITM) attacks Spoofing Data tampering Device hijacking (e.g., Mirai botnet) --- 3. Cryptographic Goals in IoT Cryptography helps IoT devices achieve: a) Confidentiality Ensures that sensitive data is readable only by authorized parties. b) Integrity Prevents unauthorized alterations in transmitted data. c) Authentication Verifies the identity of communicating devices or users. d) Authorization Controls access rights to resources. e) Non-repudiation Ensures that a party cannot deny actions it performed (useful in logging or auditing). --- 4. Cryptographic Techniques in IoT A. Symmetric Cryptography Same key is used for both encryption and decryption. Fast and computationally lightweight. Example algorithms: AES, RC5, TEA, ChaCha20. 🔒 AES (Advanced Encryption Standard): Widely used in IoT for securing data at rest and in transit. AES-128 or AES-256 provide strong security even on constrained devices. 🔑 Key Challenge: Secure key distribution is difficult, especially in dynamic or large-scale IoT networks. --- B. Asymmetric Cryptography Uses public and private key pairs. Supports secure key exchange, authentication, and digital signatures. Example algorithms: RSA, ECC (Elliptic Curve Cryptography) 🔐 ECC is preferred in IoT because: Smaller key sizes (e.g., ECC-256 vs. RSA-2048) Less computation and power usage. ✍️ Use Case: Devices sign messages with a private key; servers verify with a public key. --- C. Hash Functions Convert data to a fixed-size hash value. Used for data integrity checks and password storage. Example algorithms: SHA-256, SHA-3 🔄 IoT devices often send a hash of the message to ensure it hasn't been tampered with. --- D. Digital Signatures Prove data origin and integrity using asymmetric

Engineering
1 of 10
Download to read offline
1
2
3
4
5
6
7
8
9
10
Introduction to Cryptography in IoT Cryptography is vital in the Internet of Things (IoT) to secure data transmission and ensure device authenticity. This presentation will explore the fundamental concepts and practical applications of cryptography within IoT ecosystems. by Savio Bro
Importance of Secure IoT Devices Securing IoT devices is crucial to protect sensitive data, prevent unauthorized access, and maintain system integrity. Security vulnerabilities in IoT devices can lead to data breaches, system disruptions, and even physical harm. Data Privacy IoT devices often collect personal information, such as location data, health information, and financial details. Secure cryptography ensures that this data is protected from unauthorized access and use. System Integrity Security vulnerabilities in IoT devices can be exploited by malicious actors to gain control of the device and disrupt its normal operation, potentially causing harm to individuals or businesses. Network Security As IoT devices communicate with each other and with cloud services, it's essential to protect these communications from eavesdropping and data tampering. Secure cryptography protocols ensure secure data transmission.
Symmetric-Key Cryptography in IoT Symmetric-key cryptography uses a single secret key for both encryption and decryption. This approach is efficient for encrypting large volumes of data, but it requires a secure mechanism for key distribution and management. 1 AES Advanced Encryption Standard (AES) is a widely used symmetric- key algorithm in IoT devices, offering robust encryption for data protection. 2 DES Data Encryption Standard (DES) is an older algorithm, but it can be used in specific scenarios where resources are limited. 3 3DES Triple DES (3DES) is a more secure variant of DES that uses three keys for enhanced security.
Asymmetric-Key Cryptography in IoT Asymmetric-key cryptography uses separate keys for encryption and decryption, providing a more secure approach for key management. One key is public, allowing anyone to encrypt data, while the other key is private and only accessible to the intended recipient. Key Exchange Public-key cryptography is used to securely exchange keys between devices, ensuring that the shared key is only known to authorized parties. Digital Signatures Digital signatures are created using private keys, verifying the authenticity and integrity of messages and ensuring that data hasn't been tampered with. Authentication Asymmetric-key cryptography is used to authenticate devices and users, ensuring that only authorized individuals have access to sensitive data and resources.
Elliptic Curve Cryptography in IoT Elliptic curve cryptography (ECC) is an asymmetric-key approach that offers a more compact and efficient solution compared to traditional RSA cryptography, making it ideal for resource-constrained IoT devices. Key Generation ECC uses points on an elliptic curve to generate keys, which are represented as coordinates. Encryption ECC encryption involves transforming plaintext into ciphertext using the public key. Decryption ECC decryption uses the private key to recover the original plaintext from the ciphertext.
Lightweight Cryptographic Algorithms for IoT IoT devices often have limited processing power, memory, and energy resources, making it challenging to implement full-fledged cryptographic algorithms. Lightweight cryptographic algorithms are designed to be resource-efficient while maintaining reasonable levels of security. Algorithm Description PRESENT A lightweight block cipher known for its efficiency and simplicity. TEA Tiny Encryption Algorithm (TEA) is another lightweight block cipher suitable for resource-constrained devices. Salsa20 A fast and secure stream cipher that requires minimal memory and processing resources.
Key Management in IoT Environments Managing keys in IoT environments is a crucial challenge, as secure key distribution and storage are essential for maintaining the confidentiality and integrity of data. 1 Key Generation Keys are generated using secure random number generators to ensure their unpredictability and resistance to attacks. 2 Key Distribution Keys are securely distributed to authorized devices and users using secure communication protocols. 3 Key Storage Keys are stored securely on devices and servers using tamper-resistant hardware and secure software mechanisms. 4 Key Revocation Compromised keys are revoked and new keys are generated and distributed to prevent unauthorized access.
Secure Communication Protocols for IoT Secure communication protocols are essential for protecting data exchanged between IoT devices and cloud services. These protocols incorporate encryption, authentication, and authorization mechanisms to ensure secure and reliable communication. TLS/SSL Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols provide encryption and authentication for secure data transmission over the internet. MQTT Message Queuing Telemetry Transport (MQTT) is a lightweight messaging protocol that uses TLS for secure communication. CoAP Constrained Application Protocol (CoAP) is a lightweight protocol designed for communication between resource- constrained devices. DTLS Datagram Transport Layer Security (DTLS) provides secure communication over UDP, a widely used protocol in IoT networks.
Cryptographic Hardware Acceleration in IoT Hardware acceleration is a technique used to improve the performance of cryptographic operations by offloading them to specialized hardware components. This can significantly enhance security and performance in resource-constrained IoT devices. Cryptographic Coprocessors Cryptographic coprocessors are specialized hardware units that handle cryptographic operations efficiently, freeing up the main processor for other tasks. Hardware-based Encryption Engines Hardware-based encryption engines provide dedicated hardware for encryption and decryption, offering high performance and security.
Challenges and Future Trends in IoT Cryptography IoT cryptography faces various challenges, including resource constraints, scalability, and evolving threats. Future trends focus on developing more efficient and secure cryptographic solutions for this growing and complex ecosystem. 1 Post-Quantum Cryptography Post-quantum cryptography explores new algorithms that are resistant to attacks from future quantum computers. 2 Homomorphic Encryption Homomorphic encryption enables computations to be performed on encrypted data without decrypting it, enhancing privacy and security. 3 Zero-Trust Security Zero-trust security models assume that no device or user can be trusted by default, requiring strong authentication and authorization mechanisms. 4 AI-powered Security Artificial intelligence (AI) can be used to enhance IoT security by detecting anomalies, preventing attacks, and adapting to evolving threats.

More Related Content

PDF
The Role of Cryptography in the Future of IoT.pdf
Hazel Gomez
 
PPTX
Iot Security
MAITREYA MISRA
 
PDF
IRJET- Enhanced SIT Algorithm for Embedded Systems
IRJET Journal
 
PPTX
How Does Advanced Cryptography Secure Our Future
wininlifeacademy5
 
PPTX
Cyber security
Aman Pradhan
 
PDF
International Refereed Journal of Engineering and Science (IRJES)
irjes
 
PDF
Cisco cybersecurity essentials chapter 4
Mukesh Chinta
 
PPTX
secure data retrieval for decentralized disruption-tolerant military networks
Sneha Joshi
 
The Role of Cryptography in the Future of IoT.pdf
Hazel Gomez
 
Iot Security
MAITREYA MISRA
 
IRJET- Enhanced SIT Algorithm for Embedded Systems
IRJET Journal
 
How Does Advanced Cryptography Secure Our Future
wininlifeacademy5
 
Cyber security
Aman Pradhan
 
International Refereed Journal of Engineering and Science (IRJES)
irjes
 
Cisco cybersecurity essentials chapter 4
Mukesh Chinta
 
secure data retrieval for decentralized disruption-tolerant military networks
Sneha Joshi
 

Similar to Introduction-to-Cryptography-in-IoT.pptx (20)

PDF
Blockchain based Security Architectures - A Review
Gokul Alex
 
PPT
Internet of Things (IoT) Security using stream cipher.ppt
AliSalman110
 
PPTX
CN GP 4 Cryptogaraphy.pptx
GarimaJain745610
 
PDF
eMsecure
Kalyana Sundaram
 
PDF
Using Connectivity to Its Full Potential: Examining IoT Gateways' Function
fredrikeriksson398
 
PDF
IRJET- Multifactor Authentication in IoT Devices for Ensuring Secure Cloud St...
IRJET Journal
 
PPTX
IoT Security and Data Privacy Concerns.pptx
Brian Frerichs
 
PDF
MEKDA: MULTI-LEVEL ECC BASED KEY DISTRIBUTION AND AUTHENTICATION IN INTERNET ...
IJCNCJournal
 
PDF
MEKDA: Multi-Level ECC based Key Distribution and Authentication in Internet ...
IJCNCJournal
 
PPTX
Coding And Decoding
Hemanth Rajendran
 
PPTX
Iot(security)
Shreya Pohekar
 
PDF
An Internet of Things Reference Architecture
Symantec
 
PDF
12 IoT Cyber Security Threats to Avoid - CyberHive.pdf
online Marketing
 
PPT
Cryptographysecurity 1222867498937700-9
muthulx
 
PDF
Crypto Mechanism to Provide Secure to the IOT Data
IRJET Journal
 
PDF
社会におけるIoTとセキュリティ、匿名化技術: 産業IoTのサイバーセキュリティ技術
ハイシンク創研 / Laboratory of Hi-Think Corporation
 
PPTX
Internet of things security "Hardware Security"
Ahmed Mohamed Mahmoud
 
PPTX
Seminar (network security)
Gaurav Dalvi
 
PPTX
IoT Saturday PN 2019 - Eurotech
Luca Dazi
 
PPTX
_Creating Smart and Secure IoT Devices_ A Step-by-Step Guide (1).pptx
Iclimbs
 
Blockchain based Security Architectures - A Review
Gokul Alex
 
Internet of Things (IoT) Security using stream cipher.ppt
AliSalman110
 
CN GP 4 Cryptogaraphy.pptx
GarimaJain745610
 
eMsecure
Kalyana Sundaram
 
Using Connectivity to Its Full Potential: Examining IoT Gateways' Function
fredrikeriksson398
 
IRJET- Multifactor Authentication in IoT Devices for Ensuring Secure Cloud St...
IRJET Journal
 
IoT Security and Data Privacy Concerns.pptx
Brian Frerichs
 
MEKDA: MULTI-LEVEL ECC BASED KEY DISTRIBUTION AND AUTHENTICATION IN INTERNET ...
IJCNCJournal
 
MEKDA: Multi-Level ECC based Key Distribution and Authentication in Internet ...
IJCNCJournal
 
Coding And Decoding
Hemanth Rajendran
 
Iot(security)
Shreya Pohekar
 
An Internet of Things Reference Architecture
Symantec
 
12 IoT Cyber Security Threats to Avoid - CyberHive.pdf
online Marketing
 
Cryptographysecurity 1222867498937700-9
muthulx
 
Crypto Mechanism to Provide Secure to the IOT Data
IRJET Journal
 
社会におけるIoTとセキュリティ、匿名化技術: 産業IoTのサイバーセキュリティ技術
ハイシンク創研 / Laboratory of Hi-Think Corporation
 
Internet of things security "Hardware Security"
Ahmed Mohamed Mahmoud
 
Seminar (network security)
Gaurav Dalvi
 
IoT Saturday PN 2019 - Eurotech
Luca Dazi
 
_Creating Smart and Secure IoT Devices_ A Step-by-Step Guide (1).pptx
Iclimbs
 
Ad

Recently uploaded (20)

PPTX
Recipes for Real Time Voice AI WebRTC, SLMs and Open Source Software.pptx
Alberto González Trastoy
 
PPTX
KTU 2019 -S7-MCN 401 MODULE 2-VINAY.pptx
VinayB68
 
PPTX
MCN 401 KTU-2019-PPE KITS-MODULE 2.pptx
VinayB68
 
PPTX
IOT PPTs Week 10 Lecture Material.pptx of NPTEL Smart Cities contd
ssusera400e8
 
PDF
Mitigating Risks through Effective Management for Enhancing Organizational Pe...
IJAEMSJORNAL
 
PDF
July 2025 - Top 10 Read Articles in International Journal of Software Enginee...
sebastianku31
 
PDF
Digital Logic Computer Design lecture notes
CHINNASUNKAIAH1
 
PDF
SM_6th-Sem__Cse_Internet-of-Things.pdf IOT
smceramu
 
PPTX
OOP with Java - Java Introduction (Basics)
Rashmi T V
 
PDF
Well-logging-methods_new................
ZafriFarid
 
PPTX
bas. eng. economics group 4 presentation 1.pptx
kiribakimoses1993
 
PDF
composite construction of structures.pdf
AinieButt1
 
PDF
keyrequirementskkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
mojeeburahmanwardak
 
PPTX
M Tech Sem 1 Civil Engineering Environmental Sciences.pptx
ShriNRPrasad
 
PPTX
CH1 Production IntroductoryConcepts.pptx
RacemMellouli1
 
PPTX
additive manufacturing of ss316l using mig welding
premcdr7799
 
PDF
Arduino robotics embedded978-1-4302-3184-4.pdf
AbdullahEmam4
 
PDF
Evaluating the Democratization of the Turkish Armed Forces from a Normative P...
jpsjournal1
 
PPTX
Internet of Things (IOT) - A guide to understanding
Davies Chacko
 
PPTX
Foundation to blockchain - A guide to Blockchain Tech
Davies Chacko
 
Recipes for Real Time Voice AI WebRTC, SLMs and Open Source Software.pptx
Alberto González Trastoy
 
KTU 2019 -S7-MCN 401 MODULE 2-VINAY.pptx
VinayB68
 
MCN 401 KTU-2019-PPE KITS-MODULE 2.pptx
VinayB68
 
IOT PPTs Week 10 Lecture Material.pptx of NPTEL Smart Cities contd
ssusera400e8
 
Mitigating Risks through Effective Management for Enhancing Organizational Pe...
IJAEMSJORNAL
 
July 2025 - Top 10 Read Articles in International Journal of Software Enginee...
sebastianku31
 
Digital Logic Computer Design lecture notes
CHINNASUNKAIAH1
 
SM_6th-Sem__Cse_Internet-of-Things.pdf IOT
smceramu
 
OOP with Java - Java Introduction (Basics)
Rashmi T V
 
Well-logging-methods_new................
ZafriFarid
 
bas. eng. economics group 4 presentation 1.pptx
kiribakimoses1993
 
composite construction of structures.pdf
AinieButt1
 
keyrequirementskkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkkk
mojeeburahmanwardak
 
M Tech Sem 1 Civil Engineering Environmental Sciences.pptx
ShriNRPrasad
 
CH1 Production IntroductoryConcepts.pptx
RacemMellouli1
 
additive manufacturing of ss316l using mig welding
premcdr7799
 
Arduino robotics embedded978-1-4302-3184-4.pdf
AbdullahEmam4
 
Evaluating the Democratization of the Turkish Armed Forces from a Normative P...
jpsjournal1
 
Internet of Things (IOT) - A guide to understanding
Davies Chacko
 
Foundation to blockchain - A guide to Blockchain Tech
Davies Chacko
 
Ad

Introduction-to-Cryptography-in-IoT.pptx

  • 1. Introduction to Cryptography in IoT Cryptography is vital in the Internet of Things (IoT) to secure data transmission and ensure device authenticity. This presentation will explore the fundamental concepts and practical applications of cryptography within IoT ecosystems. by Savio Bro
  • 2. Importance of Secure IoT Devices Securing IoT devices is crucial to protect sensitive data, prevent unauthorized access, and maintain system integrity. Security vulnerabilities in IoT devices can lead to data breaches, system disruptions, and even physical harm. Data Privacy IoT devices often collect personal information, such as location data, health information, and financial details. Secure cryptography ensures that this data is protected from unauthorized access and use. System Integrity Security vulnerabilities in IoT devices can be exploited by malicious actors to gain control of the device and disrupt its normal operation, potentially causing harm to individuals or businesses. Network Security As IoT devices communicate with each other and with cloud services, it's essential to protect these communications from eavesdropping and data tampering. Secure cryptography protocols ensure secure data transmission.
  • 3. Symmetric-Key Cryptography in IoT Symmetric-key cryptography uses a single secret key for both encryption and decryption. This approach is efficient for encrypting large volumes of data, but it requires a secure mechanism for key distribution and management. 1 AES Advanced Encryption Standard (AES) is a widely used symmetric- key algorithm in IoT devices, offering robust encryption for data protection. 2 DES Data Encryption Standard (DES) is an older algorithm, but it can be used in specific scenarios where resources are limited. 3 3DES Triple DES (3DES) is a more secure variant of DES that uses three keys for enhanced security.
  • 4. Asymmetric-Key Cryptography in IoT Asymmetric-key cryptography uses separate keys for encryption and decryption, providing a more secure approach for key management. One key is public, allowing anyone to encrypt data, while the other key is private and only accessible to the intended recipient. Key Exchange Public-key cryptography is used to securely exchange keys between devices, ensuring that the shared key is only known to authorized parties. Digital Signatures Digital signatures are created using private keys, verifying the authenticity and integrity of messages and ensuring that data hasn't been tampered with. Authentication Asymmetric-key cryptography is used to authenticate devices and users, ensuring that only authorized individuals have access to sensitive data and resources.
  • 5. Elliptic Curve Cryptography in IoT Elliptic curve cryptography (ECC) is an asymmetric-key approach that offers a more compact and efficient solution compared to traditional RSA cryptography, making it ideal for resource-constrained IoT devices. Key Generation ECC uses points on an elliptic curve to generate keys, which are represented as coordinates. Encryption ECC encryption involves transforming plaintext into ciphertext using the public key. Decryption ECC decryption uses the private key to recover the original plaintext from the ciphertext.
  • 6. Lightweight Cryptographic Algorithms for IoT IoT devices often have limited processing power, memory, and energy resources, making it challenging to implement full-fledged cryptographic algorithms. Lightweight cryptographic algorithms are designed to be resource-efficient while maintaining reasonable levels of security. Algorithm Description PRESENT A lightweight block cipher known for its efficiency and simplicity. TEA Tiny Encryption Algorithm (TEA) is another lightweight block cipher suitable for resource-constrained devices. Salsa20 A fast and secure stream cipher that requires minimal memory and processing resources.
  • 7. Key Management in IoT Environments Managing keys in IoT environments is a crucial challenge, as secure key distribution and storage are essential for maintaining the confidentiality and integrity of data. 1 Key Generation Keys are generated using secure random number generators to ensure their unpredictability and resistance to attacks. 2 Key Distribution Keys are securely distributed to authorized devices and users using secure communication protocols. 3 Key Storage Keys are stored securely on devices and servers using tamper-resistant hardware and secure software mechanisms. 4 Key Revocation Compromised keys are revoked and new keys are generated and distributed to prevent unauthorized access.
  • 8. Secure Communication Protocols for IoT Secure communication protocols are essential for protecting data exchanged between IoT devices and cloud services. These protocols incorporate encryption, authentication, and authorization mechanisms to ensure secure and reliable communication. TLS/SSL Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols provide encryption and authentication for secure data transmission over the internet. MQTT Message Queuing Telemetry Transport (MQTT) is a lightweight messaging protocol that uses TLS for secure communication. CoAP Constrained Application Protocol (CoAP) is a lightweight protocol designed for communication between resource- constrained devices. DTLS Datagram Transport Layer Security (DTLS) provides secure communication over UDP, a widely used protocol in IoT networks.
  • 9. Cryptographic Hardware Acceleration in IoT Hardware acceleration is a technique used to improve the performance of cryptographic operations by offloading them to specialized hardware components. This can significantly enhance security and performance in resource-constrained IoT devices. Cryptographic Coprocessors Cryptographic coprocessors are specialized hardware units that handle cryptographic operations efficiently, freeing up the main processor for other tasks. Hardware-based Encryption Engines Hardware-based encryption engines provide dedicated hardware for encryption and decryption, offering high performance and security.
  • 10. Challenges and Future Trends in IoT Cryptography IoT cryptography faces various challenges, including resource constraints, scalability, and evolving threats. Future trends focus on developing more efficient and secure cryptographic solutions for this growing and complex ecosystem. 1 Post-Quantum Cryptography Post-quantum cryptography explores new algorithms that are resistant to attacks from future quantum computers. 2 Homomorphic Encryption Homomorphic encryption enables computations to be performed on encrypted data without decrypting it, enhancing privacy and security. 3 Zero-Trust Security Zero-trust security models assume that no device or user can be trusted by default, requiring strong authentication and authorization mechanisms. 4 AI-powered Security Artificial intelligence (AI) can be used to enhance IoT security by detecting anomalies, preventing attacks, and adapting to evolving threats.