POSE: Protobuf Signing and Encryption for Location Proof Systems on Constrained Devices

By Miguel Francisco / 21-09-2021 / In categories Results

publication, result

Translations: PT

Paper in a peer-reviewed national conference

POSE: Protobuf Signing and Encryption for Location Proof Systems on Constrained Devices


Location Proof System, Internet of Things, Constrained Devices, Security, Encryption, Bluetooth Low Energy, Protocol Buffer

Authors

Miguel Francisco, Samih Eisa, Miguel L. Pardal

Conference

INForum. Lisbon, Portugal. 2021

Resources

PDF BibTeX

Abstract

Existing location proof systems provide reliable and verifiable information about the location of user devices, usually smartphones. The proofs require short-range communication with other devices, called witnesses, that endorse and strengthen location claims. However, extending these proof systems to constrained devices in Internet of Things (IoT) applications has been a source of security challenges. A specific problem is the use of Bluetooth Low Energy (BLE). BLE is a widely used, low-power variation of the classic Bluetooth. Although it has matured over the years, it still presents vulnerabilities that can compromise the authenticity of the packets exchanged between the devices of witnesses. In this paper, we present POSE, an end-to-end application layer security protocol for BLE. POSE uses protocol buffers for message serialization/deserialization and can provide message confidentiality and authenticity. We implemented POSE and tested it with an application that issues medical appointment attendance proofs.