%0 Conference Paper %1 neureither2020legiot %A Neureither, Jens %A Dmitrienko, Alexandra %A Koisser, David %A Brasser, Ferdinand %A Sadeghi, Ahmad-Reza %B European Symposium on Research in Computer Security (ESORICS) %D 2020 %K SIMPL blockchain myown remote-attestation sss-group trust-management %T LegIoT: Ledgered Trust Management Platform for IoT %X We investigate and address the currently unsolved problem of trust establishment in large-scale Internet of Things (IoT) networks where heterogeneous devices and mutually mistrusting stakeholders are involved. We design, prototype and evaluate LegIoT, a novel, probabilistic trust management system that enables secure, dynamic and flexible(yet inexpensive) trust relationships in large IoT networks. The core component of LegIoT is a novel graph-based scheme that allows network devices (graph nodes) to re-use the already existing trust associations(graph edges) very efficiently; thus, significantly reducing the number of individually conducted trust assessments. Since no central trusted third party exists, LegIoT leverages Distributed Ledger Technology(DLT) to create and manage the trust relation graph in a decentralized manner.The trust assessment among devices can be instantiated by any appropriate assessment technique, for which we focus on remote attestation(integrity verification) in this paper. We prototyped LegIoT for Hyper-ledger Sawtooth and demonstrated through evaluation that the number of trust assessments in the network can be significantly reduced – e.g.,by a factor of 20 for a network of 400 nodes and factor 5 for 1000 nodes.

@inproceedings{neureither2020legiot, abstract = {We investigate and address the currently unsolved problem of trust establishment in large-scale Internet of Things (IoT) networks where heterogeneous devices and mutually mistrusting stakeholders are involved. We design, prototype and evaluate LegIoT, a novel, probabilistic trust management system that enables secure, dynamic and flexible(yet inexpensive) trust relationships in large IoT networks. The core component of LegIoT is a novel graph-based scheme that allows network devices (graph nodes) to re-use the already existing trust associations(graph edges) very efficiently; thus, significantly reducing the number of individually conducted trust assessments. Since no central trusted third party exists, LegIoT leverages Distributed Ledger Technology(DLT) to create and manage the trust relation graph in a decentralized manner.The trust assessment among devices can be instantiated by any appropriate assessment technique, for which we focus on remote attestation(integrity verification) in this paper. We prototyped LegIoT for Hyper-ledger Sawtooth and demonstrated through evaluation that the number of trust assessments in the network can be significantly reduced – e.g.,by a factor of 20 for a network of 400 nodes and factor 5 for 1000 nodes.}, added-at = {2020-07-15T23:55:21.000+0200}, author = {Neureither, Jens and Dmitrienko, Alexandra and Koisser, David and Brasser, Ferdinand and Sadeghi, Ahmad-Reza}, biburl = {https://www.bibsonomy.org/bibtex/274fa5167627be7d794d5ddd457ba1bbb/sssgroup}, booktitle = {European Symposium on Research in Computer Security (ESORICS)}, interhash = {8aa42a82f67974953519fc2bece6cdd5}, intrahash = {74fa5167627be7d794d5ddd457ba1bbb}, keywords = {SIMPL blockchain myown remote-attestation sss-group trust-management}, month = sep, timestamp = {2021-12-11T17:53:52.000+0100}, title = {LegIoT: Ledgered Trust Management Platform for IoT}, year = 2020 }