论文标题
安全和授权的客户到客户通信,用于LWM2M
Secure and Authorized Client-to-Client Communication for LwM2M
论文作者
论文摘要
物联网(物联网)上的受限设备不断生成和消耗数据。 LWM2M在以服务器为中心的体系结构中管理了数百万个这些设备,该设备挑战了Edge网络,具有昂贵的上行链接和时间敏感的用例。在本文中,我们贡献了两个LWM2M扩展,以启用客户到客户(C2C)通信:(i)客户的授权机制,以及(ii)扩展的管理接口,以允许安全的C2C访问资源。我们分析了拟议的扩展名的安全属性,并表明它们符合LWM2M的安全要求。我们在现成的物联网硬件上的性能评估表明,C2C通信的表现优于以服务器为中心的部署。首先,与常见的以服务器中心相比,具有EDGE C2C通信的LWM2M部署的通知交付速度约为90%,大约8倍的吞吐量,同时使小的内存开销保持〜8%。其次,在以服务器为中心的通信中,当资源更新间隔下降到100毫秒以下时,交付率会降低。
Constrained devices on the Internet of Things (IoT) continuously produce and consume data. LwM2M manages millions of these devices in a server-centric architecture, which challenges edge networks with expensive uplinks and time-sensitive use cases. In this paper, we contribute two LwM2M extensions to enable client-to-client (C2C) communication: (i) an authorization mechanism for clients, and (ii) an extended management interface to allow secure C2C access to resources. We analyse the security properties of the proposed extensions and show that they are compliant with LwM2M security requirements. Our performance evaluation on off-the-shelf IoT hardware shows that C2C communication outperforms server-centric deployments. First, LwM2M deployments with edge C2C communication yield a ~90% faster notification delivery and ~8x greater throughput compared to common server-centric scenarios, while keeping a small memory overhead of ~8%. Second, in server-centric communication, the delivery rate degrades when resource update intervals drop below 100 ms.
