International conference on I-SMAC (IoT in Social, Mobile, Analytics and Cloud)

(I-SMAC 2017)

A Recent Review on Lightweight Cryptography in

IoT
Effy Raja Naru, Dr. Hemraj Saini, Mukesh Sharma
Department of Computer Science and Engineering
Jaypee University of Information and Technology,
Wakanagat, Solan, (INDIA)
[email protected]

Abstract—The Internet of Things (IoT) is a new-fashioned

technology that is the future of the next era of the internet which
connect various physical objects that communicate with each
other without the aid of human interactions. Security plays
important role in network to prevent the unauthorized access,
misuses of data, monitoring and data, modification etc. All layer
in IoT architecture security considered as extremely important
from viewpoint of designing criteria from bottom label to top
label. IoT application is becoming important in day to day
lifestyle such as healthcare, smart grid, smart home, smart
parking. IoT application is useful to people but if the IoT system
can't protect the user data from hacker, attacks, and
vulnerabilities. Lightweight encryption is a sector of a classical
cryptographic algorithm Sthat is pertinent for resource
constrained devices in IoT. Related work for lightweight
techniques used for secure data transmission is described in this
paper.

Keywords— IoT; Lightweight Cryptography;

Fig. 1 IoT Architecture

I. INTRODUCATION Security plays important role in network to prevent the

The Internet of Things (IoT) [1] is a new-fashioned
technology that is the future of the next era of the internet
which connects various physical objects that communicate
with each other without the aid of human interactions and used
current internet standards protocol for sharing the information
over a public network. Internet of Things is the combinations
of three terms (i) Things pinpoint itself (ii) Thing
commutations (iii) Thing interact that builds the Ubiquitous
computing environment [2]. Commonly IoT architectures are
divided into three layer architecture (i) physical layer (ii)
commutation layer (iii) application layer. Physical layer (also
known as perceptual layer ) is responsible for caucus
information for each object and consist of constrained devices
and unconstrained devices the second layer is commutation
layer duty this layer is to transmit the information caucus
by the physical layer and Commutation layer used a
transmission media, like 4G,3G,2G, wireless, wired, fiber-
optic, short range communications for commutating the
information over the public network the third layer is
application layer the duty of this layer is to identify the
mold of application which will be used in IoT. Fig. 1 has
shown IoT architecture.
unauthorized access, misuses of data, monitoring and data,
modification etc. All layer in IoT architecture security
considered as extremely important from viewpoint of
designing criteria from bottom label to top label. Physical
layer deal’s with resource constrained devices that are less in
power and less in memory. Apply the classical public key
cryptography algorithms is difficult for key management and
data sensed by the sensor is required to be confident, integrity
and authentication.Physical Security is the vital problem in
physical layer because some of IoT devices are likely to be
located in places where physical security is difficult or
impossible to achieve attackers may have direct physical
access to IoT devices and this layer endures from side channel
attack[3] physical layer includes RFID and WSN
security.Commutation layer is required to have network
security for secure data transmission over a public network. It
secures the data from vulnerabilities, attacks this layer endure
is routing attack [4], passive attack and active attack
Applications layer security, need for a various application
platform, are different. Application layer endures from
malware. Each layer required differs types of security when
we talk about the physical layer, physical security is important
and commutations layer concerns with secure transfer of data
and application layer are mostly concerned with application
security, web security etc. Nowadays IoT application is

978-1-5090-3243-3/17/$31.00 ©2017 IEEE 887

Authorized licensed use limited to: NATIONAL INSTITUTE OF TECHNOLOGY KURUKSHETRA. Downloaded on February 03,2025 at 01:35:08 UTC from IEEE Xplore. Restrictions apply.
 International conference on I-SMAC (IoT in Social, Mobile, Analytics and Cloud)
becoming important in day to day lifestyle such as healthcare,
smart grid, smart home[5], smart parking. IoT application is
useful to people but if the IoT system can't protect the user
data from hacker, attacks, and vulnerabilities. So the security
in IoT environment can't be neglect. Various researchers
proposed lightweight encryption and decryption technique for
secure IoT data transmission. Lightweight encryption is a
junction of two terms "Light and weight”. Lightweight
encryption is a sector of a classical cryptographic algorithm
that is pertinent for resource constrained devices in IoT.
Lightweight encryption and decryption are implemented on
platforms as well as hardware and software.
II. RELATED WORK
A few kinds of existing schemes that are pertinent encryption
technique for IoT and used for protecting data transmission in
IoT are discussed here.
Lyes Touati et al .in [6] "Cooperative Ciphertext-Policy
Attribute-based Encryption For the Internet of Things ”
Author present a cooperative ciphertext policy attribute-based
encryption technique as alternative solutions to protecting data
when data transfer over the public network from IoT end
nodes. Deed the heterogeneous nature of the IoT to make
viable the use of the CP-ABE scheme in an IoT domain,
transfer the task from highly resource-constrained devices to
unconstrained one by hand over heavy operations in CP-ABE
scheme to neighbor unconstrained nodes. The main idea
behind C-CP-ABE is to disburse computation of CP-ABE
encryption primitive, the resource–constrained object can hand
over the most consuming operations to unconstrained nodes of
the network. The computations of CP-ABE encryptions
primitive is transposed from resource-constrained devices to
unconstrained ones.
Kurniawan Nur Prasetyo ST et al.in [7] "An Implementation
of Data Encryption for Internet of Things Using BLOWFISH
ALGORITHM on FPGA" Author present a blowfish
algorithm is implemented on FPGA using VHDL
programming language. Using FPGA implementation is
cheap, easy to implement, reprogrammed and high speed.
Reduce total encryption time, give greater throughput and not
affect avalanche effect significantly
Lyes Touati et al .in [8] "Efficient CP-ABE/Key Management
for IoT Applications" proposed a solution does not involve
suspension ensuring access grants and revocations. Omit the
overhead as a result of to re-encryption and renaming
attributes and does not compulsory proxies to achieve attribute
revocations, dwindle to the minimal number of chunk
generated the private key and does not actuate any delay. The
author proposed a Solution with actuates zero delays and a
minimal of generated secret key parts. The main idea behind
this solution is to divide time axis into time slots with variable
period, Trusted Attribute Authority has not to rename
attributes in order to revoke them from some users, and
978-1-5090-3243-3/17/$31.00 ©2017 IEEE
Authorized licensed use limited to: NATIONAL INSTITUTE OF TECHNOLOGY KURUKSHETRA. Downloaded on February 03,2025 at 01:35:08 UTC from IEEE Xplore. Restrictions apply.
(I-SMAC 2017)
has not also to regenerate all private key for all users
every attribute revocation ,it generates the only chunk of
the private key relevant to an attribute.
Xuan Xia Yao et al. in [9], “A lightweight attribute-based
encryption scheme for the Internet of things” proposed a
lightweight no-pairing ABE technique based on elliptic curve
cryptography. The security of this technique is based on
ECDDH posit rather than bilinear Diffie-Hellman posit,
which can curtail the data processing overhead and
communication overhead.ABE technique layout just for one
authority applications, it is not pertinent to Ubiquitous IoT
applications.
Mustafa Nasri et al. in [10] "FPGA-based Implementation of
elliptic curve cryptography” proposed an elliptic curve
cryptosystem mellow by programming Spartan3E FPGA kit
and analyzed by implementing Elgamla encryption plan on it.
It contributes the same level of the security that other
surrogates contribute, it performs processing in less time, less
memory, fewer computations and less power consumption. It
is pertinent for resource constrained devices in the IoT.
Hardware implementation of elliptic curve cryptography using
FPGA boost the system performance and a lot of protected
than the software implementation.
Lyes Touati et al.in [11] "Batch-BASED CP-ABE with
Attribute Revocations Mechanism for the IoT" present a new
technique to reduces the complexity and the overhead, and
does not require extra trust nodes in the system. In batch –
based mechanism that time axis is divided into intervals of the
same duration that is called time slots, policy access changes
occur only between two successive time slots. Trust node
assigns only the vital attribute key chunks every time slot to
grant a thing to update its private key. The procedure has to
need synchronization between all things in the system. It does
not compulsory to re-encrypt data every attribute policy
change. Batch-Based CP-ABE with Attribute Revocations
Mechanism using time slots idea.
Lyes Touati et al .in[12]"Collaborative KP-ABE for Cloud-
Based Internet of Things Applications "Author proposed KP-
ABE scheme using the computing power and storage
capacities of cloud server and trust node for doing
computations.
Nouha Oualha et al. in [13] "Lightweight Attribute-based
Encryption for the Internet of Things" proposed CP-ABE
scheme using effective pre-computation techniques. The key
concept behind pre-computation techniques is to pre-compute
and cache set pairs collected with commonly exorbitant
cryptographic operations. Pre-computation techniques based
on the generator, the preprocessing algorithms of the generator
are executed by the hardware devices or trusted authority. The
pre-computation technique reduces the cost of CP-ABE
encryption, the pre-computation technique used less
computation and less energy drain than original schema.
888
 International conference on I-SMAC (IoT in Social, Mobile, Analytics and Cloud)
(I-SMAC 2017)

Yijun Maoa et al. in [14], "Fully secure fuzzy identity-based [10] FPGA-based Less memory. Costly. Required
encryption" proposed a new FSFIBE technique to protecting Implementation Less computations, hardware
of elliptic curve Security
data transmission in IoT. FSFIBE technique is secure in the cryptography
full model without random oracles. FSFIBE technique has [11] Batch-BASED policy access changes Need
tight security reduction and a constant size of public CP-ABE with occur only between synchronization
parameters O (1).FSFIBE technique provided the property of Attribute two successive time
Revocations slots.
error-tolerance. It is more pertinent for protecting IoT .
communications. [12] KP -ABE and heavy operations Each resource
cloud servers and of the encryption constrained device
Fagen Li et al.in[15] "Secure and efficient data transmission in resource process to trusted there are at least
constrained node unconstrained assistant two trusted
the Internet of Things "Author propose a heterogeneous ring nodes and a cloud unconstrained
signcryption technique for secure communication form server. devices in its
resource constrained devices to a server over a public neighborhood
network. The heterogeneous ring signcryption technique [13] Pre-computation Encryption does not
techniques using require scalar point Storage
avows sender in IBC environment to send a message to a ECC multiplications
receiver in the PKI domain. The technique at the same time less energy
obtains confidentiality, integrity, authentication, non- consuming.
repudiation and anonymity in a sensible single step. [14] Fuzzy identity- Secure in the full Enlarge Key size
based encryption model without random
oracles
Kun-Lin Tsai et al. in [16] “TTP based High-efficient Multi- [15] Heterogeneous Confidentiality, Bilinear pairings
Key Exchange Protocol” Author proposed the third party ring signcryption Integrity,
based multi-key exchange protocol and use elliptic curve technique Authentication
encryption and decryption. Secure against five attacks (Replay [16] Multi-Key Achieves fully mutual Overhead
Exchange authentication. increasing
attack, Eavesdropping attack, Known-key attack, Protocol Using security level
Impersonation attack, Forgery attack). ECC and performance are
higher
Syed Farid Syed Adnan et al .in [17] “Timing Analysis of the [17] Lightweight 99% improvement on Suitable for some
AAβ Encryption encryption time and applications
Lightweight AAβ Encryption Scheme on Embedded Linux for Scheme improvement of 94%
Internet of Things” Author present an analysis of lightweight on decryption time for
asymmetric encryption, the AAβ (AA-Beta ) .that may be 2048-bit primes
feasible in IoT. 99% improvement on encryption time and [18] CA and gateway Safe, and it protects Mutually safe
the re-use attack and procedure,
improvement of 94% on decryption time for 2048-bit primes. middle attack
In the above table, some techniques reduce the complexity
Hague-Chung et al .in [18] “A Design of Key Agreement overhead and some reduce the processing overhead and
Scheme between Lightweight Devices in IoT Environment". communication Overhead. Some of the techniques used trust
The author proposed a protocol for low power and low
nodes in its neighborhood for doing computation operation of
speciation devices communicate using user smart devices
constrained Device.
through gateway and certificate authority. This protocol
provides protection from re-use attack and middle attack.
III. CHALLENGES

Physical security is a most critical challenge in IoT because

of some of IoT devices are likely to be deployed in places
TABLE I. COMPARISON BETWEEN RELATED WORKS where physical security is difficult or impossible to achieve.
Another challenge is cryptography algorithms. Conventional
Ref Techniques pros cons cryptography algorithm is not suitable for constrained devices
No Used
[6] C-CP Attribute- Feasible Trusted
because of large key size like RSA. RSA is not suitable
based Encryption Efficiently unconstrained nodes because of its large key size and high processing requirements.
Security in its neighborhood Another challenge is how can generate the suitable small key
[7] BLOWFISH Reduce total Costly. Required in public-key cryptosystems that are secure the data
ALGORITHM encryption time hardware.
on FPGA
transmission. Another challenge is how can achieve
[8] Efficient CP- Reduces the Not required extra Confidentiality + integrity + availability simultaneously
ABE/Key complexity and The trust nodes
Management overhead.
[9] No-pairing ABE Reduce the processing Not pertinent to
technique based overhead And Ubiquitous IoT
on elliptic Curve communication applications
cryptography Overhead.

978-1-5090-3243-3/17/$31.00 ©2017 IEEE 889

Authorized licensed use limited to: NATIONAL INSTITUTE OF TECHNOLOGY KURUKSHETRA. Downloaded on February 03,2025 at 01:35:08 UTC from IEEE Xplore. Restrictions apply.
 International conference on I-SMAC (IoT in Social, Mobile, Analytics and Cloud)
(I-SMAC 2017)

IV. CONCLUSION [12] Touati, Lyes, and Yacine Challal. "Collaborative KP-ABE for cloud-
based internet of things applications." In Communications (ICC), 2016
IEEE International Conference on, pp. 1-7. IEEE, 2016.
In this review paper, we have focused on different lightweight [13] Oualha, Nouha, and Kim Thuat Nguyen. "Lightweight Attribute-Based
encryption and decryptions technique used in IoT for secure Encryption for the Internet of Things." In Computer Communication and
data transmission. Every technique has some advantage and Networks (ICCCN), 2016 25th International Conference on, pp. 1-6.
disadvantage in IoT. Some technique required more storage IEEE, 2016.
space but fewer computations and vice versa. Then we [14] Mao, Yijun, Jin Li, Min-Rong Chen, Jianan Liu, Congge Xie, and Yiju
Zhan. "Fully secure fuzzy identity-based encryption for secure IoT
compare research status of various lightweight encryption and communications." Computer Standards & Interfaces 44 (2016): 117-
decryption in IoT. The security problem is a serious issue in 121.
IoT and it is hot research topic in IoT. [15] Li, Fagen, Zhaohui Zheng, and Chunhua Jin. "Secure and efficient data
transmission in the Internet of Things." Telecommunication Systems 62,
no. 1 (2016): 111-122.
[16] Tsai, Kun-Lin, Yi-Li Huang, Fang-Yie Leu, and Ilsun You. "TTP Based
REFERENCES High-Efficient Multi-Key Exchange Protocol." IEEE Access 4 (2016):
6261-6271.
[1] Ashton, Kevin. "That ‘internet of things’ thing." RFiD Journal 22, no. 7 [17] Adnan, Syed Farid Syed, Mohd Anuar Mat Isa, and Habibah Hashim.
(2009): 97-114 "Timing analysis of the lightweight AAβ encryption scheme on
embedded Linux for Internet of Things." In Computer Applications &
[2] Jang, Seiie, and Woontack Woo. "Ubi-UCAM: a unified context-aware Industrial Electronics (ISCAIE), 2016 IEEE Symposium on, pp. 113-
application model." In International and Interdisciplinary Conference 116. IEEE, 2016.
on Modeling and Using Context, pp. 178-189. Springer Berlin
Heidelberg, 2003. [18] Choi, Keun-Chang, and Moon-Seog Jun. "A Design of Key Agreement
Scheme Between Lightweight Devices in IoT Environment."
[3] Li, Yang, Mengting Chen, and Jian Wang. "Introduction to side-channel In International Conference on Computer Science and its Applications,
attacks and fault attacks." In Electromagnetic Compatibility (APEMC), pp. 224-229. Springer Singapore, 2016.
2016 Asia-Pacific International Symposium on, vol. 1, pp. 573-575.
IEEE, 2016.
[4] Airehrour, David, Jairo Gutierrez, and Sayan Kumar Ray. "A
Lightweight Trust Design for IoT Routing." In Dependable, Autonomic
and Secure Computing, 14th Intl Conf on Pervasive Intelligence and
Computing, 2nd Intl Conf on Big Data Intelligence and Computing and
Cyber Science and Technology Congress
(DASC/PiCom/DataCom/CyberSciTech), 2016 IEEE 14th Intl C, pp.
552-557. IEEE, 2016.
[5] Al Salami, Sanaah, Joonsang Baek, Khaled Salah, and Ernesto Damiani.
"Lightweight Encryption for Smart Home." In Availability, Reliability
and Security (ARES), 2016 11th International Conference on, pp. 382-
388. IEEE, 2016.
[6] Touati, Lyes, Yacine Challal, and Abdelmadjid Bouabdallah. "C-cp-abe:
Cooperative ciphertext policy attribute-based encryption for the internet
of things." In Advanced Networking Distributed Systems and
Applications (INDS), 2014 International Conference on, pp. 64-69.
IEEE, 2014.
[7] Prasetyo, Kurniawan Nur, Yudha Purwanto, and Denny Darlis. "An
implementation of data encryption for Internet of Things using blowfish
algorithm on FPGA." In Information and Communication Technology
(ICoICT), 2014 2nd International Conference on, pp. 75-79. IEEE,
2014.
[8] Touati, Lyes, and Yacine Challal. "Efficient cp-abe attribute/key
management for iot applications." In Computer and Information
Technology; Ubiquitous Computing and Communications; Dependable,
Autonomic and Secure Computing; Pervasive Intelligence and
Computing (CIT/IUCC/DASC/PICOM), 2015 IEEE International
Conference on, pp. 343-350. IEEE, 2015.
[9] Yao, Xuanxia, Zhi Chen, and Ye Tian. "A lightweight attribute-based
encryption scheme for the Internet of Things." Future Generation
Computer Systems 49 (2015): 104-112.
[10] Nawari, Mustafa, Hazim Ahmed, Aisha Hamid, and Mohamed Elkhidir.
"Fpga based implementation of elliptic curve cryptography."
In Computer Networks and Information Security (WSCNIS), 2015 World
Symposium on, pp. 1-8. IEEE, 2015.
[11] Touati, Lyes, and Yacine Challal. "Batch-Based CP-ABE with attribute
revocation mechanism for the internet of things." In Computing,
Networking and Communications (ICNC), 2015 International
Conference on, pp. 1044-1049. IEEE, 2015.

978-1-5090-3243-3/17/$31.00 ©2017 IEEE 890

Authorized licensed use limited to: NATIONAL INSTITUTE OF TECHNOLOGY KURUKSHETRA. Downloaded on February 03,2025 at 01:35:08 UTC from IEEE Xplore. Restrictions apply.