Enhancing Cyber Security of LoRaWAN Gateways under Adversarial Attacks

• Main Authors: Butun, I. (Author), Caviglia, D.D (Author), Gastaldo, P. (Author), Lagerström, R. (Author), Mohamed, A. (Author), Qadir, J. (Author), Wang, F. (Author)
• Format: Article
• Language: English
• Published: MDPI 2022
• Subjects: Attack; attacks; authentication; Authentication; Certificate authority; 'current; Cyber security; cybersecurity; Cybersecurity; gateway; Gateway; Gateways (computer networks); Internet of things; Long range wide area network; LoRaWAN; Network security; Public key cryptography; security; Security; Security analysis; vulnerabilities; Vulnerability; Wide area networks; Wide-area networks
• Online Access: View Fulltext in Publisher

 The Internet of Things (IoT) has disrupted the IT landscape drastically, and Long Range Wide Area Network (LoRaWAN) is one specification that enables these IoT devices to have access to the Internet. Former security analyses have suggested that the gateways in LoRaWAN in their current state are susceptible to a wide variety of malicious attacks, which can be notoriously difficult to mitigate since gateways are seen as obedient relays by design. These attacks, if not addressed, can cause malfunctions and loss of efficiency in the network traffic. As a solution to this unique problem, this paper presents a novel certificate authentication technique that enhances the cyber security of gateways in the LoRaWAN network. The proposed technique considers a public key infrastructure (PKI) solution that considers a two-tier certificate authority (CA) setup, such as a root-CA and intermediate-CA. This solution is promising, as the simulation results validate that about 66.67% of the packets that are arriving from an illegitimate gateway (GW) are discarded in our implemented secure and reliable solution. © 2022 by the authors. Licensee MDPI, Basel, Switzerland.