集成电路与嵌入式系统2024,Vol.24Issue(10):36-41,6.DOI:10.20193/j.ices2097-4191.2024.0004
基于TrustZone的MQTT可信通信方案设计
Design of MQTT trusted communication scheme based on TrustZone
朱许彬 1冯兴乐 1陈亚聪1
作者信息
- 1. 长安大学信息工程学院,西安 710064
- 折叠
摘要
Abstract
To address the security concerns regarding the transmission of data from embedded devices in contemporary Internet of Things networks,a novel scheme for MQTT-based trusted device authentication and secure data transmission has been devised by leveraging TrustZone technology.This scheme enhances the MQTT communication protocol and includes the design of prototypes for gateways and data acquisition devices that communicate via this protocol.Device identity authentication,alongside data encryption and tamper-resist-ance during transmission,are achieved through the implementation of a hybrid domestic commercial cryptography algorithm.The inte-gration of TrustZone technology facilitates the isolation of software and hardware elements within the gateway system,thereby safe-guarding the secure storage of critical information such as keys and lists of trusted devices.Both theoretical security analysis and empiri-cal testing demonstrate that the proposed solution effectively elevates the security of privacy data transmission and storage in IoT embed-ded contexts,aligning well with practical application requirements.关键词
数据传输安全/MQTT/TrustZone/存储安全/安全网关Key words
data transfer security/MQTT/TrustZone/storage security/security gateway分类
信息技术与安全科学引用本文复制引用
朱许彬,冯兴乐,陈亚聪..基于TrustZone的MQTT可信通信方案设计[J].集成电路与嵌入式系统,2024,24(10):36-41,6.
