https://mw.hh.se/caisr/index.php?action=history&feed=atom&title=Secure_Key_Management_for_Partitioned_IoBT_EnvironmentsSecure Key Management for Partitioned IoBT Environments - Revision history2026-04-04T05:19:47ZRevision history for this page on the wikiMediaWiki 1.35.13https://mw.hh.se/caisr/index.php?title=Secure_Key_Management_for_Partitioned_IoBT_Environments&diff=5513&oldid=prevCclab: Created page with "{{StudentProjectTemplate |Summary=Design a decentralized and lightweight key management scheme that ensures secure communication even under network partitions. |References=A R..."2025-09-23T13:55:42Z<p>Created page with "{{StudentProjectTemplate |Summary=Design a decentralized and lightweight key management scheme that ensures secure communication even under network partitions. |References=A R..."</p>
<p><b>New page</b></p><div>{{StudentProjectTemplate<br />
|Summary=Design a decentralized and lightweight key management scheme that ensures secure communication even under network partitions.<br />
|References=A Review of the Authentication Techniques for Internet of Things Devices in Smart Cities: Opportunities, Challenges, and Future Directions. https://www.mdpi.com/1424-8220/25/6/1649<br />
<br />
Authentication in Internet of Things, Protocols, Attacks, and Open Issues: A Systematic Literature Review. https://link.springer.com/article/10.1007/s10207-023-00806-8 <br />
|Supervisor=Edison Pignaton de Freitas<br />
|Level=Master<br />
|Status=Open<br />
}}<br />
Problem:<br />
IoBT nodes often lose connectivity with centralized Public Key Infrastructure (PKI), leaving them vulnerable to key compromise, replay attacks, and confidentiality breaches when operating offline.<br />
<br />
Goal:<br />
Design a decentralized and lightweight key management scheme that ensures secure communication even under network partitions.<br />
<br />
Proposed Solution & Tasks:<br />
Implement a RAM-only key storage system for tactical nodes (keys vanish if devices are captured).<br />
Develop a peer-to-peer ephemeral certificate exchange system based on self-issued credentials.<br />
Integrate elliptic-curve lightweight cryptography (e.g., Curve25519, ChaCha20) for constrained devices.<br />
Simulate adversarial scenarios such as node capture and network jamming to test resilience.<br />
<br />
Evaluation Criteria:<br />
Key compromise resistance (measured by % of scenarios where captured nodes reveal useful credentials).<br />
Cryptographic overhead (CPU and memory usage).<br />
Communication resilience in partitioned networks (latency, delivery ratio).</div>Cclab