One of the key problems with symmetric encryption is mammoth key generation and distribution problem. How is AES encryption algorithm key exchanged between sensor nodes in Contiki in the presence of a third party man in the middle attacker?
You can transfer key AES using public key encryption.
But you have to use key exchange methods like Diffie Hellman before that.
Also, symmetric methods have little security and are unsuitable for distributed and wireless environments.
Yashar Salami AES Rijndael is an advanced encryption algorithm. It will also have a low overhead when compared with public cryptosystem such as ECC, RSA etc.
https://contiki-ng.readthedocs.io/en/master/_api/group__cc26xx-aes.html
A standard mechanism does not seem to be specified for Contiki. The easiest is to load a unique symmetric key at manufacturing or at personalisation, and distribute a copy securely to the user. A bit depending on the trust model, you can use the initial key as a KEK for the user to load his own key, or just keep the key as it is.
This system is used in smart metering where milions of nodes are used. If you want to do something asymmetric, keep in mind that the software will take at least 60k extra ROM, the need to set up and maintain a PKI, and possible additional licenses.
- Badges
- Science topic
- Similar topics
- Correction