Controlling Actuators with CoAP
draft-mattsson-core-coap-actuators-06
| Document | Type | Expired Internet-Draft (individual) | |
|---|---|---|---|
| Authors | John Preuß Mattsson , John Fornehed , Göran Selander , Francesca Palombini , Christian Amsüss | ||
| Last updated | 2019-03-25 (latest revision 2018-09-17) | ||
| Stream | (None) | ||
| Intended RFC status | (None) | ||
| Formats |
Expired & archived
pdf
htmlized (tools)
htmlized
bibtex
|
||
| Stream | Stream state | (No stream defined) | |
| Consensus Boilerplate | Unknown | ||
| RFC Editor Note | (None) | ||
| IESG | IESG state | Expired | |
| Telechat date | |||
| Responsible AD | (None) | ||
| Send notices to | (None) | ||
https://www.ietf.org/archive/id/draft-mattsson-core-coap-actuators-06.txt
Abstract
Being able to trust information from sensors and to securely control actuators are essential in a world of connected and networking things interacting with the physical world. In this memo we show that just using COAP with a security protocol like DTLS, TLS, or OSCORE is not enough. We describe several serious attacks any on-path attacker can do, and discusses tougher requirements and mechanisms to mitigate the attacks. While this document is focused on actuators, some of the attacks apply equally well to sensors.
Authors
John Preuß Mattsson
(john.mattsson@ericsson.com)
John Fornehed
(john.fornehed@ericsson.com)
Göran Selander
(goran.selander@ericsson.com)
Francesca Palombini
(francesca.palombini@ericsson.com)
Christian Amsüss
(c.amsuess@energyharvesting.at)
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)