miun.sePublications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Formal security analysis of LoRaWAN
Mid Sweden University, Faculty of Science, Technology and Media, Department of Information Systems and Technology.
Mid Sweden University, Faculty of Science, Technology and Media, Department of Information Systems and Technology.
Polytechnic of Porto (IPP), Porto, Portugal.
Mid Sweden University, Faculty of Science, Technology and Media, Department of Information Systems and Technology.ORCID iD: 0000-0003-0873-7827
2019 (English)In: Computer Networks, ISSN 1389-1286, E-ISSN 1872-7069, Vol. 148, p. 328-339Article in journal (Refereed) Published
Abstract [en]

Recent Low Power Wide Area Networks (LPWAN) protocols are receiving increased attention from industry and academia to offer accessibility for Internet of Things (IoT) connected remote sensors and actuators. In this work, we present a formal study of LoRaWAN security, an increasingly popular technology, which defines the structure and operation of LPWAN networks based on the LoRa physical layer. There are previously known security vulnerabilities in LoRaWAN that lead to the proposal of several improvements, some already incorporated into the latest protocol specification. Our analysis of LoRaWAN security uses Scyther, a formal security analysis tool and focuses on the key exchange portion of versions 1.0 (released in 2015) and 1.1 (the latest, released in 2017). For version 1.0, which is still the most widely deployed version of LoRaWAN, we show that our formal model allowed to uncover weaknesses that can be related to previously reported vulnerabilities. Our model did not find weaknesses in the latest version of the protocol (v1.1), and we discuss what this means in practice for the security of LoRaWAN as well as important aspects of our model and tools employed that should be considered. The Scyther model developed provides realistic models for LoRaWAN v1.0 and v1.1 that can be used and extended to formally analyze, inspect, and explore the security features of the protocols. This, in turn, can clarify the methodology for achieving secrecy, integrity, and authentication for designers and developers interested in these LPWAN standards. We believe that our model and discussion of the protocols security properties are beneficial for both researchers and practitioners. To the best of our knowledge, this is the first work that presents a formal security analysis of LoRaWAN.

Place, publisher, year, edition, pages
2019. Vol. 148, p. 328-339
Keywords [en]
IoT, LoRaWANS, cyther verification
National Category
Communication Systems
Identifiers
URN: urn:nbn:se:miun:diva-35145DOI: 10.1016/j.comnet.2018.11.017ISI: 000458345100027OAI: oai:DiVA.org:miun-35145DiVA, id: diva2:1269488
Projects
SMART (Smarta system och tjänster för ett effektivt och innovativt samhälle)Available from: 2018-12-10 Created: 2018-12-10 Last updated: 2019-09-09Bibliographically approved

Open Access in DiVA

fulltext(705 kB)287 downloads
File information
File name FULLTEXT01.pdfFile size 705 kBChecksum SHA-512
d99a42ab0d86464c7bdb5517873cbbf35c62377e03e804a74bc7b0443149a556c220e52df57a7068edff0ec61cc34039a8f543936a47deb02a334844d49bbd3d
Type fulltextMimetype application/pdf

Other links

Publisher's full text

Authority records BETA

Eldefrawy, MohamedButun, IsmailGidlund, Mikael

Search in DiVA

By author/editor
Eldefrawy, MohamedButun, IsmailGidlund, Mikael
By organisation
Department of Information Systems and Technology
In the same journal
Computer Networks
Communication Systems

Search outside of DiVA

GoogleGoogle Scholar
Total: 287 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 290 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf