chpt 2 cont
balaji1692
ChangePAPERtoQualitativewithreferences.docxInternet of Things (IoT), security with TLS Digital Certificates 2
Chapter 2-Literature Review-Internet of Things (IoT), security with TLS Digital Certificates
REVIEW OF LITERATURE
INTRODUCTION
TLS configurations define security properties required to handle different fields to facilitate delivery of the operations based on required resources. IoT devices are commonly resource-constrained, as such, the TLS configurations would get directed to the appropriate device based on the requirement (Diaz-Sanchez et al., 2019). The trend in use of IoT devices is progressing due to the devices’ availability and their application in daily life. Security is required for all IoT devices since they are interconnected and perform based on data connections. The majority of IoT devices have limited memory and storage since the functions they perform are minimal. They are set up to handle different operations using the algorithm constraints provided during their manufacture.
The majority of IoT devices get set up with sensors that facilitate communication. Security is mandatory since the devices connect over different geographical locations and for different users. The devices facilitate communication with diverse online accounts that users required to have high-level of security. This would promote the development of the devices to produce security during all levels of communication. Adaptation of TLS as a security protocol is imperative since it has gained widespread use (Diaz-Sanchez et al., 2019). The protocol serves different devices depending on their needs. TLS gets used per-connection since its protocols serve different areas of a device. The protocol is cost-efficient since it provides saving up of resources due to application only in the areas that require the activities at a certain time.
The IoT devices work well with TLS since the devices are constrained to operate only using the external service requirement. TLS offers the services mentioned before and their adaptability based on the needs the algorithms’ capability to connect to external areas. Application of TLS 1.2 certificate is effective since it is a recent version provided by the protocol. The protocol performs cryptographic techniques which ensure the security for IoT devices in applied and connected to even old computers gets guaranteed. The performance of TLS 1.2 has recently gotten affected by “man-in-the-middle” attacks that have increased and become tactful (Fruhlinger, 2018). The process of increasing adaptability of TLS requires technical performance that study the current improvements in attacks.
TLS mainly gets applied since all its services facilitate confidentiality. It is possible to increase adaptability of the protocol in different areas since the recent algorithms get developed to handle current communication attacks. The current IoT architecture facilitates better performance on the market demand.
Application of security of IoT devices is connected to the different layers based on their levels and connection to user requirements. The IoT has an initial layer called the physical sensing layer. This layer operates on the hardware to facilitate proper delivery of the operations based on the IoT devices (Urien, 2017). The second layer is composed of protocols and network operations implemented by IoT devices. The next layer for IoT devices uses algorithms that enhance security for different operations. This layer performs encryption that is required to facilitate proper delivery of the activities of all IoT devices. IoT devices include another layer that is the cloud which ensures all connections get utmost security to ensure connectivity.
The process of implementation of TLS certificates for IoT devices requires study of different security issues that are common for IoT devices (Wheelus & Zhu, 2020). The security issues are mainly performed on the network layers that provide communication. The physical layer is exposed to security issues due to being on different areas based on the users’ requirements. Software attacks also occur due to issues which the algorithms applied by security devices for the diverse IoT devices (Wheelus & Zhu, 2020). The attacks commonly occur on IoT devices based on the architecture. Security issues occur due to het architecture based on improvement of hacking tactics and ability to connected to the diverse devices adopted by IoT devices.
As mentioned, the IoT devices in the physical layer get connected by sensors, RFID devices, and wireless devices (Sethi & Sarangi, 2017). The interconnections are performed based on the wireless and wired operations that the devices provide in the areas. It is possible to improve on system operations based on the availability of TLS network layer that includes security. There are diverse attacks based the TLS layer. On the cloud services layer, common security attacks include impersonation, evasion, and inversion of the algorithms’ operations (Singh et al., 2020). The process of implementing security gets affected by unauthorized access when malicious hackers gain access and use the devices for their personal gain.
Security issues occur on the application layer of IoT devices when the devices get exposed to malware. The attack mainly gets directed to telnet layers where it is difficult to facilitate safe operations when the network connections get interrupted (Singh et al., 2020). The next security issue occurs on the transport layer where there can be issues with TCP or UDP depending on the technology implemented. This issue causes disruption of normal operations when the system operates with a wrong sequence. Protocol security issues occur when disruption of service or man-in-the-middle attacks occur. These cause major issues when attempting to create confidentiality since it is difficult to operate with data integrity when there are modifications getting performed. DoS attacks cause issues when attempting to provide resources since they become unavailable.
The analysis results in identification of the fact that TLS certificates are required to operate based on the different layers that the IoT devices use. TLS certificates mainly get implemented by users on the transport layer. This layer gets exposed to major operational issues due to limited security and connection to the TCP operations (Singh et al., 2020). The application of TLS mainly gets directed to the layer since it ensures security of data in transit. The protocol provides encryption that connects with the contents of a message to ensure only confidentiality. The IoT devices transporting communications can get exposed to security issues by causing limitations when attempting to engage with the devices as the transport layers performs its jobs.
The promotion of TLS security is required in the current industry to facilitate the development of authentication and ability to connect to the platforms operations (Rughoobur & Nagowah, 2017). The security technique is robust since it ensures any replication of the devices would not occur easily. The operations performed get submitted with high degree of accuracy since it becomes difficult to handle the device memories when the IoT devices only function with light weight memory. TLS certificates are large and promote proper security operations without causing limitations when developing the widespread security for all IoT devices.
TLS certificates secure internet operations based on their wide impact and availability for different operations (Nastase, 2017). The fact that all IoT devices perform based on internet connectivity results in more need to adopt TLS certificates. The process of issuing certificates involves the need to implement reliable systems. The operations create high likelihood of facilitating trust stores since it is easy to connect the suitable web browsers and operating systems. Creation of trust is required to facilitate authentication and the performance of the system based on the constraints provided to them (Mukherjee et al., 2017). TLS ensures confidentiality for every session that users implement. This safety operation has implications whereby unsafe connections get flagged to instruct users to shift to safer sites.
The proposed dissertation topic shall cover use of TLS by manufacturers of IoT devices, technical maintenance teams, and the end users who perform many operations on internet platforms. The use of IoT devices would facilitate future security due to the platform’s wide implementation.
RESEARCH QUESTIONS
The dissertation shall require diverse study to determine how TLS offer secure operations for all the devices connected to it. The use of research questions is important since it ensure the project shall different areas and provide a generalized view of improving TLS certificates’ use. The following research questions shall get used:
Q1: In what ways do current IoT devices facilitate improvements in society?
Q2: How would it be possible to increase the process of promoting major security by the use of TLS 1.2. certificates?
Q3: How do the current TLS certificates’ operations facilitate securty for IoT devices?
Q4: Is it possible to increase connectivity of TLS certificates for all types of devices regardless of their year of manufacture?
Q5: Are the frequent failures in IoT connected to lack of advanced security?
Q6: How do the diverse TLS protocols facilitate security in all of their operations?
Q7: Are there any vulnerabilities on TLS platforms that may limit security of the intended IoT devices?
TLS PROTOCOL
The process of operation of TLS protocols is mainly connected to TCP operations. The protocol gets conducted on the transport layer to data integrity and confidentiality (Nebbione & Calzarossa, 2020). These two actions form the basis of protection of devices since it becomes difficult for hackers to read confidential data and all the data storage areas get provided with high degree of integrity. The network architecture of IoT devices ensures that TLS protocol operates between the application and transport layers (Singh et al., 2020). This possibility is evident when there are improvements required to handle the secure communication platforms.
Abosata et al. (2021) explained that the proper performance of IoT devices once all persons adopt the platforms diverse nature and implement major technological security improvements. TLS offers secure communications since it contains two phases that provide communication with connected devices and exchange of encrypted data (Yan et al., 2019). All phases of developing security for IoT require effective operations to increase adaptability to the system. Yan et al. (2019) explained that application of the Handshake Protocol is required to improve on communication that gets authenticated for all persons adopting the devices’ uses. The second phase gets performed using the Record Protocol that involves frequency of the message assessments to ensure all the information getting exchanged connects with the required development direction.
The following authentication concepts get performed by TLS.
Authentication
TLS ensures security of all operations by involving assessment of peer entities to ensure they get provided with integrity for all authentication measures. The peers are identified as the objects that are communicating in the IoT environment. Often, there is a client and server communication to facilitate development of the authentication measures for all component in the IoT devices field (El-hajj, 2019). Authentication collaborates with the devices to ensure encryption gets performed for the clients and servers interacting. It is possible for TLS to provide authentication by using a public key generated on the server to create a secrete key. IoT devices communicate with sensors but there is a central server ensuring the transmission of data to clients who are required to connect a public key from the server to decrypt all incoming data (El-hajj, 2019).
The process of facilitating authentication gets performed when the handshake procedure gets fully implemented. Every session for the IoT devices must go through the handshake procedure to ensure implementation and ability to connect to secure network operations (Inscriberz, 2020). The process of submitting the secret key between the devices required that the devices’ transport layer receive the secret key (Kohlios & Hayajneh, 2018). In this way, it would be possible to facilitate security by ensuring the TLS handshake gets through all steps. Any unauthorized access attempt would get identified when a different secret key gets introduced during a session. TLS increases its implementation since it operates only with known entities. In this way, it is possible to ensure all IoT devices get provided with the highest degree of security even though they rely on sensors.
Perfect Forward Secrecy
Li et al. (2020) explained that perfect forward secrecy gets used to perform highly effective security since it is possible to improve on the ability to offer encryption. The technique requires the encryption keys to get changed frequently to ensure the proper delivery of security for all connected devices. TLS adopts perfect forward secrecy (PFS) since it ensures every moment a secret key gets exposed; it would not lead to a lot of data loss. Xiong et al. (2017) elaborated that the technique gets used for wireless sensor networks since it offer resilience and immediate problem-solving for all encryption issues. According to Xiong et al. (2017), hashing can get used to facilitate perfect forward secrecy. This possibility gets provided by assessing the platforms to determine the lightweight cryptographic needs to facilitate major development. The IoT receives more dependable security since the constantly changing encryption keys ensure development of a reliable and secure communication platform.
The implementation of PFS for the majority of IoT devices is possible since they mainly require sensors to get connections. It is possible to increase on the outcome of different systems without wasting resources. All sessions get provided with unique public keys that enhance security in the event of exposure of a long-term public key (Panwar et al., 2019). The feature gets provided by increasing adaptability of the systems to different keys generated while the session takes place. It is possible to improve on the adaptability of the system using guidance on effective development. The PFS can automatically detect an attack by promoting the effective development of suitable keys. All IoT devices communicating would operate in a robust method through implementation of this security method.
Replay Protection
Rughoobur & Nagowah (2017) explained that replay protection is a technique adopted in IoT to facilitate security that ensures any eavesdropping scenarios for the IoT devices get managed early. Replay attacks are common on IoT devices since their main work is to facilitate communication. Attackers may view this a technique of gaining profitable operations for their intentions since it results in the delay of communication. Replays also cause communication to get sent to the wrong recipient in a method that cased data loss and improper communication. IoT environments involve a lot of smart devices whose usage gets submitted in different areas in homes (Guo & Heideman, 2018). The attackers can find a single weak point and use it to redirect data as they wish.
IoT devices get provided with encryption that facilitates effective solutions for replay attacks. This process is possible by ensuring all IoT sessions between physical devices and the remote servers get provided with session keys for all sessions. In this way, it would be possible to enhance adaptability of the systems to the appropriate direction for implementation. TLS offers reliable handshake operations since it is possible to assess all session (Fischlin & Günther, 2017). All operations involved in the management of TLS procedure promote effective delivery of the future adaptability of the platform. Communication procedures adopted by TLS receive accuracy in all areas since it is possible to guarantee communication. The procedure of dealing with encrypted data would promote wide security since any keys gotten from TLS data would become unusable for other devices. TLS ensures data in transit operates with the utmost integrity and confidentiality.
Integrity
The provision of data integrity forms a basis for all of TLS’s concepts. In TLS protocol, data integrity gets performed using hashing technology. TLS 1.2 certificates adopt the used of hash algorithms since it is possible to select the best hash algorithm to suit the devices getting studied (IBM, n.d.). All IoT devices get interconnected based on the types of operations involved. It is possible to increase on security since all client certificates would have to connect with another device’s certificates. This method of allowing the TLS to operate would increase adaptability with the appropriate environment to facilitate the devices’ operations. TLS further ensure integrity since it also involves cryptography when different sessions get created. It is hard to gain non-factual data since all operations would get studied early.
The possibility of creating reliable systems is high when all operations get performed according to normal IoT security problems (Nebbione & Calzarossa, 2020). IoT technologies gets used in very many industries currently. This results in implementation of all security measures suggested as it would be possible to enhance quality of output of each platform. The process of generating factual operations is possible when are technologies are supported by the IoT security constraints. The implementation of integrity ensures no tampering with data since it becomes possible to increase on availability of different data requirements. All certificate verification processes operate based on provided constraints and it is possible to increase on they system’s availability. All algorithms adopted in the platform would facilitate proper operations without causing limitations for future adaptability.
Confidentiality
The concept ensures TLS performs in its best technique to offer privacy of all data operations. The process applied during TLS handshake forms the basis of all privacy operations since it is possible to create effective connections and collaboration for different device requirements. TLS uses a combination of algorithms and secret keys to ensure that maximum security gets provided for all device requirements. Privacy gets maintained at all levels since it is possible to increase transparency for the IoT devices as they communicate. Whenever interception of messages occurs, the IoT devices would continue with operations without lacking the proper assessment method. The procedure would be automatic since all operations would have gotten performed during the creation of session keys.
Nebbione & Calzarossa (2020) explained that confidentiality is possible by implementing authorization and authentication early during the system’s development. All messages would reach the destination in the exact method that they were in when they got sent. The transport layer where the communication passes would be provided with factual operations that can get relied on to deal with future proposals for security and privacy. Any modifications to messages cause problems when attempting to generate factual operations. It is possible for TLS 1.2 certificates to include all guidelines for current adaptability of the operations.
IOT AND TLS CERTIFICATES CONCEPTS
The required method of hanlding TLS certificates is to ensure any types of attacks can get prevented after acessing sutable knowledge of operations at all stages. Existence of any vulnerabilities is a detrimental action for the entire IoT network environment. Yamakawa et al. (2021) explained that there have been developmetns related to identification of vulnerabilities on network architecture. Security is required during all communication procedures to ensure user devices receive proper operations. Working of all types of IoT devices is dependent on accessibility to a cloud server that facilitates communication for sensors involved. It gets easier to improve on full reliability for the entire IT environment without posing a challenge for all user devices.
Yamakawa et al. (2021) elaborate on the importance of the TLS handshake as the basis of proper operations for IoT devices. There is a higher possibility of implementing direct connections without posing a challenge for any types of users. Asssessment of any expected risks is the proper method to increase a reliable operational environment for all types of IoT devices. Working with public certificate authorities (CAs) is required to handle proper development for all types of IoT devices. Reliability of a TLS handshake is the basis for working of all IoT devices. When that stage gets handled, the following action is to ensure the IoT device is able to connect to the cloud server. During this procedure, it is imperative to ensure no attacks exist to prevent improper workinf of involved IoT devices.
The scurity of IoT devices is imperative in all areas to facilitate required usage based on the devices needs. Cox (2017) explained that IoT devices that do not rely on LAN require effective security to ensure smooth procedure of hanlding device requirements. Hakcers that progress their expertise find it easy to attack IoT devices that do not have proper security. In this regard, it is the duty of all hardware device manufacturers to generate reliable security measurements to improve on all types of services.
Assessment of current techniques to handle security of IoT devices is required to improve on the overal procdure for the safety of all haradware devices. It is the duty of all software developers to understand that there can be invasive and non-invasive attacks on IoT devices (Di Vito, 2017). Security of the firmware of all IoT devices is imperative to facilitate proper development of security and accessibility to all areas in the devices. Improvement of security over all types of IoT devices is the best method to increase realibilty duirng all service improvement scenarios. It is possible to generate proper performance for TLS certificates in this way once all devices improvemetns become guaranteed. Management of all security information would be possible after offering a gurantee for the securre connections and avaiblity of IoT devices functionality. Höglunda et al. (202) proposed that the procedure implemented to handle service improvement of all network devices. IoT devices require proper functioning at all time to handle the proper generations of communication environments.
NEWTWORKING OF IOT DEVICES
IoT devices work with networking procedures to implement effective and reliable communication sessions. Connectivity is the basis of operations on the IoT since it allows internet connections to always become dependable during a device’s working sessions. Assessment of application layers is a required procedure that facilitates valid connections and the possibility of implementing internet improvements in all areas. The IoT industry ensures it works with diverse application layer protocols to facilitate proper improvements based on the working of the sensors and switches (Robinson, 2021). Connectivity of IoT devices is dependent on internet connections and HTTP as the internet protocol (Robinson, 2021). There is a higher likelihood of implementing IoT functionality based on availability of devices with settings that facilitate proper connections. The Open System Interconnection (OSI) model facilitates connectivity of IoT devices as it is possible to ensure all application layers for the devices work as expected. The OSI model includes application, presentation, session, transport, network, data link, and physical layer that work together to ensure connectivity for all IoT devices (Robinson, 2021). Once all these components receive attention and get analyzed, it would be possible for IoT devices to work smoothly with TLS certificates.
IoT devices work effectively and facilitate proper improvements for devices as each layer understands its requirements and the working of all interconnected devices. The transport layer network is transportation of security which follows certain layers of procedure or can also be referred as a transport system that compounds a session between two machines in an internet connection (Coggeshall, 2020). Therefore, the transport layer network can be referred as a system that which according to the transport layer inclusive of its SSL allows transmission of data. This is done through a procedure known as hypertext transfer protocol secure.
The purpose of the transport layer protocol and security sockets layer is to secure transmission of data from one user in a computer to another through internet which acts as a medium of transportation. A verification process is carried out with an aim of preventing attacks from servers. It also helps someone to familiarize with the identity of the network intruder for purposes whether legit or scandalous. IoT devices work better with all types of devices since it is possible to implement better data latency and the management of devices if users require their services (Robinson, 2021). HTTP is a layer of protocol which is above the TLS and it facilitates proper functioning since it allows security of data transmission, this clearly outline to the user how the procedure works. HTTP protocol ensures effective working of all IoT devices since it works with secured TLS connections to increase the reliability of all connections (Pederson, 2011). TLS certificates ensure it gets easier to channel all types of connections without posing a challenge in the increase of devices and their functionalities.
Improvement of security is the basis of working for all IoT devices as it gets easier to generate reliable operations and connections for all devices (Gerber & Romeo, 2017). Innovation is the key particularly for securing serious data in various organizations or institutions. Such as, banks, authenticating key information in school reservations, government ministries like parastatals and email exchanges among others. It is through deployment of the HTTPs protocol with the TLS which offers data security to organization and need a vast level of data security and insurance of privacy.
All operations of IoT devices require secure and uninterrupted connections to facilitate improvements of the networking stack (Sethi & Sarangi, 2017). TLS works by giving a protection layer through an encryption which makes it hacker proof to systems and make it difficult for the interested parties (hackers) to manipulate data and tamper with the companies’ authorization of data. IoT connections get facilitated by the internet protocol stack. As such, all smart objects required collaboration with current technology that facilitates better working for IoT devices and their security. The process of connecting OSI model concepts and increasing security for all IoT devices is dependent on the possibility of all devices to connect to user requirements. Availability of improved protocols is required to ensure all devices and connections work as expected without posing a challenge to sensor applications (Sethi & Sarangi, 2017).
According to Sethi & Sarangi (2017), IoT devices require secure connections to facilitate improvements in all areas depending on frequency and types of usage requirements for IoT devices. The security layer requires constant management to facilitate encryption and decryption that promote proper reliance on the IoT devices. Encryption of data is progressive it involves changing of data from the readable ones to different format to hindering access. It maintains data integrity by providing privacy between data transmission endpoints which is also known end to end transmission of data either from one company or computer to others within same networks (De Villliers, 2021). Servers are then verified, and the process of verification and authenticity is carried out using the transport layer security certificates which is mostly known as the TLS certificates, they are enhanced by cryptography coding. However, the authentication of the TLS usually happens through key cryptography. As stipulated, cryptography encodes privacy to the data to be shared or transferred between the two involved parties. Cryptography is based on both private and public keys. When the two are in place (private and public keys authentication) cryptography is therefore easily achieved which is gives the Encryption and decryption of the data.
While dealing with transmission of data, there is the presence of the sender and the recipient and public keys are of great use to the verification of the data before the intended recipient gets to receive the message (De Villliers, 2021). Other definitions of transport layer security include public key certificates which are used to give authority to an owner of the evident or an organization that is legally the ownership of a public key and it is issued by certificate authority. Transport layer security is a digital certificate which needs to be verified and signed by the certificate authority to show full possession of the digital certificate. The signature process of the certificate authority it is also known as the CA, it ensures that correct information of involved party is indicated to show ownership of the digital certificate. These includes ECC and RSA which prove verification after a safe connection is put in place. Other certificates authority includes proton emails which show communication after the verification of the acquired certificates is done. Despite all these measures, it does not offer full guarantee for effective functionality of these security measures, it is therefore advisable to acquire the TLS certificates as it curbs like ninety percent of the expected attacks.
The following are Threats at each layer of the ISO-OSI model.
Application Layer
The application layer of IoT devices can get exposed to attacks which include “distributed denial-of-service attacks (DDoS) attacks, HTTP floods, SQL injections, cross-site scripting, parameter tampering, and Slowloris attacks”. All these are detrimental to the management of IoT devices since it becomes difficult to receive a reliable approach for all users on the platform. Communication between different IoT devices and the users is a requirement that can facilitate proper working of all components without posing a security challenge. There can be issues of authentication when there is a lack of security for the IoT devices. To combat these and more, most organizations have many application layer security protections, such as web application firewalls (WAFs), secure web gateway services, and others.” The team at SecurityIntelligence points out that, “The application layer is the hardest to defend. The vulnerabilities encountered here often rely on complex user input scenarios that are hard to define with an intrusion detection signature. This layer is also the most accessible and the most exposed to the outside world. For the application to function, it must be accessible over Port 80 (HTTP) or Port 443 (HTTPS).” Security of all connections is imperative especially since IoT devices us the internet for all communication sessions.
To facilitate communication of IoT devices, the required function it selection of a communication technique that is known to facilitate proper improvements and security. Use of the Message Queue Telemetry Transport MQTT) standard is common for IoT devices as it facilitates required development without posing a challenge for any interconnected devices. Message delivery, authentication, encryption, authorization, and validation are all interconnected activities that facilitate suitable connections for all IoT devices. It is the duty of all technological improvements to facilitate effectively working devices which do not pose a danger for all types of users. IoT devices use sensors placed on different hardware components (Nebbione & Calzarossa, 2020). In this regard, it is the responsibility of manufacturers to ensure security for all devices without posing a challenge on the types of connections and user sessions. TLS facilitates security over all devices as it becomes easier to generate suitable developments without posing a challenge of authentication.
All security measures involved in the application monitoring procedure must get provided with valid technology management processes that eliminate interruptions and issues for obtaining the best outcome from all systems. Encryption is a dependable approach to security that is offered by TLS to promote reliability of all IoT devices (Tange et al., 2020). MQTT operations require TLS certificates that are tailored to handle improvements for all devices.
Presentation Layer Threats
SSL requests are the area in computer operations that are mainly affected by service interruptions. Whenever attackers discover that there are issues with their operational environments, it can be difficult to generate proper service improvements. Attackers clearly know that it is hard to inspect SSL Encryption packet therefore they attack SSL to transmit HTTP attacks to a selected server. IoT devices that operate while connecting to sensors would require security at all times to ensure uninterrupted communication channels.
There user therefore must add mitigation plans options like offloading the SSL from the origin infrastructure. The user is advised also to frequent inspect the application traffic for signs of attacks traffic or violations of policy at an applications delivery platform (ADP).
Session Layer
In these layer attackers of DDoS usually exploit any issues that pose a vulnerable component on hardware devices. It can be difficult for internet sessions to always be available and operate in the IT environment. Its advice able to for all IT technicians to generate smooth working IT environments without posing a challenge for the vulnerable components.
Transport layer
Security of IoT devices would get guaranteed once all devices are provided with suitable technical improvements. In the case of Transport Layer Security, there would be a proper security improvement procedure once all end-to-end communication factors get considered during the devices’ workings.
Data-Link Layer Threats
According to Cisco explains that “The data link layer provides reliable transit of data across a physical link. The data link layer is concerned with physical, as opposed to logical addressing, network topology, network access, error notification, ordered delivery of frames, and flow control. Frame-level exploits and vulnerabilities include sniffing, spoofing, broadcast storms, and insecure or absent virtual LANs (VLANs, or lack of VLANs). Network interface cards (NICs) that are misconfigured or malfunctioning can cause serious problems on a network segment or the entire network.”
Physical Layer Threats
Google puts user security among the top priorities and elevates the requirements regarding SSL/TLS certificates. HTTPS has been a ranking signal since 2014. Other search engines haven’t been much vocal about how security impacts their rankings, and back in 2014, Bing even announced that it didn’t plan to rank HTTPS websites higher. However, you shouldn’t underestimate the value of a secure protocol and encryption. Any vulnerability might get user data exposed, SSL/TLS certificate issues might lead to a website becoming unreachable, and security warnings shown by browsers might scare potential visitors away (Tange et al., 2020).
In 2017, Google Chrome started showing the “Not secure” warning on non-HTTPS pages that would ask for sensitive information (credit card details or passwords) and a year later, it began flagging all websites that haven’t switched to a secure protocol as “Not secure.” Now, HTTPS pages account for more than 90% of the browsing time on Chrome. Most popular browsers mark unsecure web pages with the help of the padlock icon: in Safari, you would see one only if the website is safely encrypted, and in Firefox, the strikethrough padlock signals about HTTP pages with login functionality.
Connection information in Chrome
While the benefits of SSL/TLS and risks of not adopting it are on the surface, in reality, the world is far from being 100% HTTPS. The 2018 statistics by ImmuniWeb (that performs protocol security tests) shows that over 32% of web servers of US companies have the lowest grade for their SSL/TLS encryption and over 7% use a vulnerable and deprecated protocol. The same-year Watchguard security report revealed that one fifth of the Alexa Top 100,000 websites don’t use HTTPS.
Let’s Encrypt’s executive director explains low SSL/TLS adoption rates with the fact that the protocols are hard to manage. But there are solutions like Let’s Encrypt that help website owners big time by automating SSL/TLS certificate acquisition and management. With a variety of helpful tools at your disposal, it’s not that tricky to keep your website security in tune.
IMPLEMENTATION OF TLS CERTIFICATES IN IOT DEVICES
The use of TLS certificates offers an effective basis for security of all IoT devices. It is possible for websites to display a small padlock on the web URL to indicate that the website has gotten secured using TSL certificates (Digicert, n.d.). In this way, security of information gets implemented for all devices and during all connections. IoT devices base their operations on online transactions, as such, having method to ensure all interconnected devices realize that there is effective security is a required method to generate better working for IoT devices. TLS certificates ensure end-to-end encryption gets facilitated to generate better working for IoT devices and all internet sessions.
COMMON ATTACKS AND ISSUES
It is good to note that TLS does not prove a hundred percent efficient, there can be issues related to overall securty of the IoT devices and the capability of generating better working sessions.
TLS attacks;
1. There is a direct attack on the certificate authority. These force CA authorities to produce dummy key affecting both private and public. These behaviours have affected the process of key production.
2. There have been errors in issuing of certificates. Hackers have used this as a tool to actively carry out their mischief unnoticeably (Gruhn, 2019). Errors in issuing of certificate have played a role in allowing hackers to compromise they systems leading to insecurities via network and servers.
3. Cases of poisoning of certificate stores have also been on the rise. These are noticeable via Malware spyware and duplication of websites which lure interested parties to thinking it’s the original site of the company.
4. Issues can develop when TLS certificates get affected after improper issuing of certificates to the required devices (ProtonMail, 2020). In such cases, it becomes difficult for TLS certificates to ensure reliable connections and there can be a compromise while handling required connections.
TLS certificates do not guarantee full security for all types of connected. The majority of procedures used to implement operations of TLS require expensive components that facilitate effective operations depending on user requirements. All TLS-enabled devices must function in the proper method to facilitate reliability for users without posing a challenge for the entire network. Implementation of access control is a required factor for TLS certificates that must get implemented at all times to increase positive output from all devices.
Why need only Certificate Authorities?
Certificate authorities are the backbone of internet communication aiding several transactions and data management. On the other hand, the public key infrastructure is the setup of certificate authority (physical) which consisting of several elements such as operational elements which include practice statements, policy frameworks, and hardware systems, auditing systems, software systems and the security infrastructure (Renesas, 2021). The elements given here clearly show the validity of a transport layer certificate making it authentic.
There are two major elements of the trust models this include the server certificate and the trusted roots services. These require an installation of a browser before introducing or engaging the CA certificates. More advanced measures have been put in place to improve the TLS and CA encryption services. ProtonEmail has even put more measures and precautions including: security for messages in transit. As mentioned before, several attackers are prone to frequently engaging the TKS certificate, invention of the certificate authority was thus an effective method to improve on security of diverse IoT devices. The authorization was invented to back in 2011 to prevent provision of fake certificates
Cyber security threats have been common in the current environment due to limited possibility of engaging with valid security constraints. In the OSI-ISO model layers, the majority issues have been prevalent starting from the layer 7 of an application. This is a detrimental factor to the working of IoT devices as they rely on networking for communication. In order to create a secure cyber security process, one must start before the Application Layer. This will help to address huge threats through the entire network. Use of IoT devices is applicable by human users but they often make mistakes when operating during the interactions.
Securing the Internet of Things (IoT) with SSL/TLS
There has been a staggering rate of internet connection despite installation of “security cameras and door locks to set-top boxes, thermostats, kitchen appliances, medical devices, and traffic lights” in the last decade. IoT devices have proved their resilience in ensuring integration of smart devices into different industries. IOT devices is among the leading problems in the technology sphere. Penetration of attackers has been very common targeting many of the devices, commonly known as the internet of things. Many vulnerabilities of the internet of thins have been targeted, not only the physical layout of the devices but also the loops which include default.
Faulty scenes in such cases include a scenario where a casino was broken into in 2017 by some hackers, another instance of these attacks have been reported in the far east nations where attackers claim to access computers through the internet and using them to talk to their children. These are some of the issues, just to mention but a few. Users are therefore the most common problem to be fixed. The issue is that many users don’t see these devices as a threat to their lives or rather are just ignorant of the security threats they are exposed to. Newer technologies however are trying as much as hard to gap this loop by embracing security in most of these software and devices. In this sense the normal person is prevented just by using the device even though the user might not be well observant with the issue at hand.
Governments have also tried chipping in but their methods have proofed unsuccessful. Security of electronic devices is a required action by different governments since it facilitates effective working of the software sessions. A country like China set up a policy to protect its hardware users by encrypting all connections which work with TLS (Cimpanu, 2020). This was a negative action since it posed a challenge for effective operations of persons with IoT devices that work with the China. It is evident that there is limited trust between the Chinese government and operations of TLS certificates. The majority of the Chinese population was dependent on smooth working HTTP protocols to enhance the improvement of IoT devices. Since TLS connects with HTTP traffic, there have been transformations related to the working of all types of IoT devices (Tiburski et al., 2017). The Chinese government regulated their sensors to ensure any types of TLS certificates hidden by ESNI can get discovered (Cimpanu, 2020). This opposition possess a challenge for the proper working of TLS certificates.
Another government intervention procedure is whereby the USA’s National Security Agency assessed connection issues related TLS certificates. The NSA reported that there had been a lot of issues concerning older versions of TLS that did not work properly and lacked proper services for client devices (NSA, n.d.). In this process, it thus became difficult to guarantee an effective operation for all devices as discovered by the government. When you do realize the importance of proper encryption and have an SSL/TLS certificate, it doesn’t guarantee that you won’t face any problems with it. Regularly scan your site for major SSL/TLS vulnerabilities. You can do this quickly in SE Ranking’s Website Audit—go to the Website Security part in the Issue Report section
1. IoT issues with security
IOT devices is among the leading problems in the technology sphere. Penetration of attackers has been very common targeting many of the devices, commonly known as the internet of things (Guo & Heidemann, 2020). Many vulnerabilities of the internet of thins have been targeted, not only the physical layout of the devices but also the loops which include default. Faulty scenes in such cases include a scenario where a casino was broken into in 2017 by some hackers, another instance of these attacks have been reported in the far east nations where attackers claim to access computers through the internet and using them to talk to their children. These are some of the issues, just to mention but a few.
Users are therefore the most common problem to be fixed. The issue is that many users don’t see these devices as a threat to their lives or rather are just ignorant of the security threats they are exposed to. Newer technologies however are trying as much as hard to gap this loop by embracing security in most of these software and devices. In this sense the normal person is prevented just by using the device even though the user might not be well observant with the issue at hand. Governments have also tried chipping in but their methods have proofed unsuccessful.
2. Improper regulations of the internet of things.
Thing is the technology world is fast advancing. This is because newer ideas are coming up daily. A major common characteristic of these advancement is that any country governments are left behind as it takes so much time for the administrations to keep up with the incredible evolvement. Updates on the regulations of these advancements are key because there is also need for assessment and curbing the effects if the deployment of advancement in the government. These actions pose a great risk as it exposes so much to interested parties. Example: the advancement in toys or cars or even mobile phones is truly out if this world. With the internet connectivity championed in the mentioned advancement, it is even a bigger risk to the parties. Therefore, it is advisable for governments to produce a regulation on internet of things advancement or rather a universal bill to curb thus advancements and produce security standards on internet of things.
3. Compatibility issues
General meaning of compatibility is the astray manner of how things interrelate. In the internet of things scope it is generally the new technology advancement competition with what is already in us in the market. Even though this can be seen as a positive move in the internet of technology progress, most if the time it can be frustrating. Hitches in compatibility is frequently experienced in-home mesh networks. Bluetooth so far has been the standard compatible for home internet of things. Other competitors have sprung in the market giving Bluetooth a stiff competition, but it would take some time before many users adapt to them as a home IOT standard.
Update of devices also depends on compatibility and as discussed earlier it can be difficult. Update of devices is of importance because newer devices have to communicate with the older versions. To beat compatibility, updates have to be done to avoid vulnerabilities of the devices and improve performance (Yamakawa et al., 2021). That is the reason why it is important for consumers to keep devices updated and patched. Devices is of importance because newer devices have to communicate with the older versions. To beat compatibility, updates have to be done to avoid vulnerabilities of the devices and improve performance. That is the reason why it is important for consumers to keep devices updated and patched.
4. Connectivity issues
Connectivity issues is a monster problem. Here we talk issues limited bandwidth. Growth of the internet of things has been rampant, and as it is very unavoidable experts have come on board to ty raise the bandwidth intensity of internet of things applications. An example is the video streaming sources. Such as video streaming will soon struggle for space in current server-client model in the internet of things. Authentication and the traffic experienced in the internet of things is usually centralized (Yamakawa et al., 2021). Even though there is some lag whenever more devices begin to connect to these networks. Examining of the internet of things connectivity providers is therefore essential in companies and is advisable to consider one which has a better service record.
5. Expectations by the customers.
Many IoT manufacturers have learned that it is better to under promise clients and over deliver to them, hard way, internet of things having to start then leave the customers wake. Whenever expectations of the customers and their reality in the products are a mismatch, there is lost productivity. Technologies will be crippled and system failures will be experienced. Failure of getting to the customers make the customers search for other IOT markets (Yamakawa et al., 2021). The nature of customers in the internet of things area is that they would want to experience a smoother experience with devices
The stronger the competition in the internet of things markets, not meeting the expectations of customers will make the targeted audiences look for better devices to deal with. Therefore, preparation for the new business entities diving in this market should be cautious of the potential risks they are facing. They should be aware that clients are always after smoother and better `experiences with the devices. The impacts of using IoT have many changes in our daily lives. Great impacts on our livelihoods especially on employment and wealth creation can be affected by use if internet of things. By this the government and consumers must up their game to support IoT revolution thus increasing productivity.
6. Privacy
According to Damien Knight, privacy of the internet of things provides customers with an absolutely confident experience. IoT has always been surrounded by security issues as lack of privacy security has proved a drawback not selling to customers. Achievement of privacy is based on exchange of data over the internet where hackers are present in a large quantity. Personal data leakage will therefore maliciously expose personal data of the users and the breach can severely affect the users (Wheelus & Zhu, 2020). As explained before encryption must be ensured to avoid such breaches and data loses. Fast forward malfunctioning can also be experienced because the diversity of the network can raise doubts if the well-functioning of the systems.
Internet of Things devices have to share important information with highly encryption to minimize data losses and breaching. This can take a long time. The complexity increase is a factor that affects the reliability of the system in that it brings up queries on functionality. Internet of Things is a great field of network, Internet of things collapse it is possible for apps to malfunction or for the IoT infrastructure to collapse.
7. Inadequate skills
Internet of things require great experiences and in which many companies do not have, In the IoT service a lot of experience is needed in the for successfully monetization and handling of the skills. Communication has been reached before by use of sensors which store data collected. This collected data must however be traversable on a large breadth of systems to enable communication (Wheelus & Zhu, 2020). The Modbus protocol has been in use for the longest time proving that connection to the phone hub or mobile applications require backend data services. Therefore, a mobile application developer must be in control f the data uploads and the development of the applications.
For effective IoT functioning, a specific company need to analyze its backend data. Techniques to acquire this include the machine learning methods and analytics of data. With the main goal being ensuring that the data is secure and well presented, a mechanism has to be put in in place. This way a front-end developer will be needed to perform this skill.
ISSUES WHILE USING TLS CERTIFICATES
1. Expired website security certificate
Any SSL/TLS certificate has a limited lifespan, and it keeps shrinking over the years due to ever-increasing security concerns. The validity period was decreased to five years in 2011, to three years in 2015, and to two years in 2018. Starting from September 2020, new certificates last for only 398 days (13 months). Apple was first to announce that Safari wouldn’t accept the certificates that have a longer expiration date; Google and Mozilla followed this decision shortly. Privacy over user data is a requirement to facilitate effective operations of all interconnected IoT devices (Burhan et al., 2018). Performance of all IoT devices is dependent on an internet connection. In this regard, it is imperative to inform users concerning diverse requirements for IoT devices in order to enhance the capability of offering dependable security scenarios. Any negative actions like stealing of user data can get eliminated while IoT devices are provided with proper security.
Burhan et al. (2018) explained that there are diverse layers which require proper performance of IoT devices to guarantee a suitable approach of implementing security over all devices. The capability of IoT devices to identify network requirements is effective since it can ensure proper working of all types of electronic devices. Security during identification procedure is mandatory to allow all IoT devices to get a guarantee of proper user operations. The procedure used to enhance identification can get implemented using electronic products and their effective internal processes. IoT devices ensure it gets easy to generate reliable connections and addressing methods.
Issues can develop when TLS certificates expire. During such scenarios, it can become difficult to ensure reliability of all IoT devices based on limited capability of enhancing user operations. Your website will become unreachable, and users trying to visit it will see a warning message in their browser. This would push visitors to take a U-turn and your business can face traffic, revenue, and reputation loss. Increase of effective operations of IoT devices is a requirement to facilitate security over all types of connections. Internet connections require security since it is mandatory to facilitate proper working for all sessions.
TLS certificates require frequent management to facilitate suitability to the types of environments. Assessment of proper installation and To avoid such situations, make sure to monitor the expiration date and update the certificate on time. There are automated solutions like Let’s Encrypt or AWS Certificate Manager that help keep track of your SSL/TLS certificates, as well as monitoring tools like Sematext that send multiple alerts before the certificate expires (Wappalyzer, n.d.). Many certificate issuers also provide an opportunity to set automatic renewals. There are moments whereby the use of TLS certificates can get expired, in such cases, there is a manual method required to fix that issue. TLS certificates required to operate concurrently with all product and software updates (Hackster.io, 2021). Each renewal or purchase validates your website’s identity and the current version of encryption. The process goes through several steps:
Choosing a type of certificate. Most issuing authorities provide several options for different needs from an internal network to a large-scale website. This step doesn’t apply if you’re renewing your certificate and don’t want to switch to another type (for example, it makes sense to switch to a Wildcard certificate when adding subdomains to a website). When buying a certificate, beware that there are fraudulent certificates sold online that will put your site at security risks. Learn about the issuer before the purchase. Implementation of CAA records to avoid untrustworthy certificate authorities is a guaranteed action to facilitate proper working for all types of devices (Crane, 2020). There are already working CAs which include Digicert, GlobalSign, Sectigo, Thawte. After implementation of secured TLS certificates, it would be easy to generate uninterrupted operations after providing suitable settings.
Generating a certificate signing request (CSR). The process of ensuring secured transactions is possible by enhancing the security of all CSR functions (DotEasy, n.d.). This technique would facilitate effective working of all types of TSL certificates since there would be a guarantee of generating high standard security. The hosting provider would ensure implementation of CSR to promote the constant security checks required to improve on output of all devices. The process is quite straightforward but varies depending on the web host. As a result, you will have a CRS to upload with your SSL/TLS provider and a private key file to locate on the OS you’re using. In this way, the implementation of TSL certificates for all types of devices would be a guarantee during all technology sessions. This process would promote security as a basis for all types of connections and increase reliability over different types of user devices.
Activating and validating the certificate. You need to confirm ownership of your domain by email, CNAME record, or validation file. This process also depends on the provider so you can check up the details with your web host. Authentication is mandatory for all types of connections since it ensures all other sessions work as expected. The procedure involved is authentication, followed by a handshake which would move on to full connection if required authentication gets performed otherwise the session stops (IBM, 2021). Implementation of required certificates becomes a necessity when handling all user sessions.
Verification. After you’ve installed the certificate, run an SSL/TLS check to make sure everything works correctly. Here’s an example of an online checking tool:
The procedure of implementing reliable working of the TLS certificates requires collaboration with all implemented software modules. If you’re switching to HTTPS at this point, and it’s the first time the certificate is installed, you need to redirect the website’s HTTP traffic to its HTTPS version and add the secure version to webmaster tools. Learn more about these technicalities from our post on moving a website to HTTPS. To avoid certificate expiration in the future, it is imperative to assess all connections to prevent improper connections that may require changes.
2. Outdated security protocol
Encryption technologies evolve over the years, and so do security risks and potential hacker attacks. This is one of the reasons why the SSL/TLS certificate lifecycle is shortening and also why the versions are updated, and the previous ones announced deprecated and unsafe.
Since TLS was introduced as an upgrade to SSL (version 3.0 at that time), any TLS version is more secure than SSL (Jackson, 2021). The latest version of the protocol is TLS 1.3, released in 2018: it has an improved cryptographic algorithm and requires only one round-trip for the handshake (which means that the browser connects to your website’s server easier).
Starting from 2020, all the major browsers display warnings for websites that use TLS 1.0 or 1.1 and prevent users from accessing. With that said, you might want to use the current TLS version and disable the older ones.
There are multiple ways to check what protocol version a website uses:
In the Security tab in Chrome DevTools:
In a third-party checker. Some of them will provide information on what TLS and SSL versions are enabled: To enable the latest version of TLS, first make sure your website is configured to use it. Run an SSL server test and check the Configuration section in the results:
Then, check up with your hosting provider and learn what you need to do to enable the latest protocol version. Generally, you’ll need to specify the right protocol in your server’s configuration file (Jackson, 2021). For example, if your site runs on a Nginx server, you’ll have to edit the nginx.conf file and specify the TLS version you’ve installed. Add the upgraded protocol and disable all deprecated versions. The configuration line will look like this:
ssl_protocols TLSv1.2 TLSv1.3;
If it turns out your site doesn’t support TLS 1.2 or 1.3, you’ll need to contact the web host and possibly upgrade to another plan.
3. Certificate name mismatch
A certificate name mismatch usually occurs when the domain name in the SSL/TLS certificate doesn’t match what a user has entered in the browser. Users will see a warning:
Multiple reasons stand behind an SSL certificate domain name mismatch error:
Your website is being accessed via an internal domain name that isn’t specified in the certificate (for example, you input yourwebsite.localhost and your certificate only has yourwebsite.com). How to fix a SSL certificate name mismatch error? By getting a SAN (Subject Alternate Name) certificate that allows including multiple hostnames under a single certificate. Note that SAM is not available in all plans with different certificate authorities.
Your website can be assessed with and without “www” but the certificate has only one domain name specified. It’s important to decide on whether to use “www” with a domain name, forward all traffic to a chosen version, and get an SSL/TLS certificate according to the chosen version (with or without “www”) (Jackson, 2021). We give more details on how this impacts your SEO in our article on www and non-www domain names. A certificate with SANs is also a solution here.
Your website shares the IP address with others and doesn’t have a separate protocol. Most resources don’t need a dedicated IP (unless they send a lot of emails) and a shared one comes with a lower price. If you have a shared IP, you need to indicate your domain name in the protocol’s extension called SNI (Server Name Indication). With SNI, the server will select a TLS certificate unique to a given hostname and a corresponding private key instead of going for a default certificate shared across several sites.
Your website’s hosting provider has pre-configured settings that force their SSL/TLS on your domain name. To solve this, you need to contact the provider and let them replace their certificate with yours or consider switching to another provider.
You can verify what domain names are protected under your SSL/TLS certificate in an online checking tool. For example:
4. Outdated encryption algorithm
When a user accesses a website, their browser authenticates the TLS certificate through a process called a handshake. Cipher suites, which are algorithms that encrypt each connection, play a crucial role in the beginning of this process: the browser communicates which cipher suites it supports, and the server responds with the most secure one. If the cipher suite configured in the server isn’t secure enough, the browser will issue an “obsolete cryptography” warning.
A cipher suite includes several ciphers, each representing a certain cryptographic function. Before TLS 1.3, the best recommended combination comprised of four ciphers (Nohe, 2019):
An algorithm for key exchange between the server and the browser (ECDHE)
A digital signature that helps authenticate the certificate (ECDSA)
A cipher for secure data transfer (AES-256-GCM)
An algorithm for message authentication (SHA384)
The TLS 1.3 cipher suite consists of the two latter ciphers only—this version doesn’t support outdated key exchange and authentication algorithms by default. While TLS 1.2 can still be used for a secure connection, the ciphers accepted by this version vary in quality, which can lead to vulnerability to cyber-attacks. With the latest version of TLS, you get less variability in ciphers and the whole handshake process gets faster, simpler, and safer.
It is mandatory to ensure no usage of outdated cryptographic algorithms. To learn what cipher suites are enabled on your server, you can run an SSL/TLS server test online
5. Improper regulations of the internet of things.
Thing is the technology world is fast advancing. This is because newer ideas are coming up daily. A major common characteristic of these advancement is that any country governments are left behind as it takes so much time for the administrations to keep up with the incredible evolvement.
Updates on the regulations of these advancements are key because there is also need for assessment and curbing the effects if the deployment of advancement in the government (Xiong et al., 2017). These actions pose a great risk as it exposes so much to interested parties.
Example: the advancement in toys or cars or even mobile phones is truly out if this world. With the internet connectivity championed in the mentioned advancement, it is even a bigger risk to the parties.
Therefore, it is advisable for governments to produce a regulation on internet of things advancement or rather a universal bill to cur =b thus advancements and produce security standards on internet of things.
6. Compatibility issues
General meaning of compatibility is the astray manner f how things interrelate. In the internet of things scope it is generally the new technology advancement competition with what is already in us in the market. Even though this can be seen as a positive move in the internet of technology progress, most if the time it can be frustrating. Hitches in compatibility is frequently experienced in home mesh networks. Bluetooth so far has been the standard compatible for home internet of things. Other competitors have sprung in the market giving Bluetooth a stiff competition, but it would take some time before many users adapt to them as a home IOT standard.
Update of devices also depends on compatibility and as discussed earlier it can be difficult. Update of devices is of importance because newer devices must communicate with the older versions (Xiong et al., 2017). To beat compatibility, updates must be done to avoid vulnerabilities of the devices and improve performance. That is the reason why it is important for consumers to keep devices updated and patched.
Devices is of importance because newer devices must communicate with the older versions. To beat compatibility, updates must be done to avoid vulnerabilities of the devices and improve performance. That is the reason why it is important for consumers to keep devices updated and patched.
7. Connectivity issues
Connectivity issues is a monster problem. Here we talk issues like limited bandwidth. Growth of the internet of things has been rampant, and as it is very unavoidable experts have come on board to to raise the bandwidth intensity of internet of things applications. An example is the video streaming sources. Such as video streaming will soon struggle for space in current server-client model in the internet of things. Authentication and the traffic experienced in the internet of things is usually centralized. Even though there is some lag whenever more devices begin to connect to these networks.
Examining of the internet of things connectivity providers is therefore essential in companies and is advisable to consider one which has a better service record.
8. Expectations by the customers.
Many IoT manufacturers have learned that it is better to under promise clients and over deliver to them, hard way, internet of things having to start then leave the customers wake. Whenever expectations of the customers and their reality in the products are a mismatch, there is lost productivity. Technologies will be crippled, and system failures will be experienced. Failure of getting to the customers make the customers search for other IOT markets (Tange et al., 2020). The nature of customers on the internet of things area is that they would want to experience a smoother experience with devices
The stronger the competition in the internet of things markets, not meeting the expectations of customers will make the targeted audiences look for better devices to deal with. Therefore, preparation for the new business entities diving in this market should be cautious of the potential risks they are facing. They should be aware that clients are always after smoother and better experiences with the devices. The impacts of using IoT have many changes in our daily lives. Great impacts on our livelihoods especially on employment and wealth creation can be affected by use if internet of things (Tange et al., 2020). By this the government and consumers must up their game to support IoT revolution thus increasing productivity.
9. Privacy
According to Damien Knight, privacy of the internet of things provides customers with a confident experience. IoT has always been surrounded by security issues as lack of privacy security has proved a drawback not selling to customers. Achievement of privacy is based on exchange of data over the internet where hackers are present in a large quantity. Personal data leakage will therefore maliciously expose personal data of the users and the breach can severely affect the users. As explained before encryption must be ensured to avoid such breaches and data loses. Fast forward malfunctioning can also be experienced because the diversity of the network can raise doubts if the well-functioning of the systems.
Internet of Things devices must share important information with highly encryption to minimize data losses and breaching. This can take a long time. The complexity increase is a factor that affects the reliability of the system in that it brings up queries on functionality. Internet of Things is a great field of network, Internet of things collapse it is possible for apps to malfunction or for the IoT infrastructure to collapse.
10. Inadequate skills
Internet of things require great experiences and in which many companies do not have, In the IoT service a lot of experience is needed in the for successfully monetization and handling of the skills. Communication has been reached before by use of sensors which store data collected. This collected data must however be traversable on a large breadth of systems to enable communication. The Modbus protocol has been in use for the longest time proving that connection to the phone hub or mobile applications require backend data services. Therefore, a mobile application developer must be in control f the data uploads and the development of the applications.
For effective IoT functioning, a specific company need to analyze its backend data. Techniques to acquire this include the machine learning methods and analytics of data. With the main goal being ensuring that the data is secure and well presented, a mechanism must be put in in place. This way a frontend developer will be needed to perform this skill.
Summary
The literature review has provided proper insight into the protocols provided by TLS. The use of TLS for IoT devices gets performed for devices that are involved in the management of the daily services. There are home appliances like smart TVs and fridges which adopt the functionality of the IoT to facilitate increase in business operations and connectivity. It is possible to enhance quality of communication for all devices by adopting use of IoT devices. This technique ensures there would be reliability when handling effective operations provided by all areas that the IoT devices can get used. It is evident the TLS offers reliability based on the procedure involved in handling the communication procedures. The protocol offers authentication, perfect forward secrecy (PFS), replay protection, integrity, and confidentiality. IoT devices are thus provided with all their requirements from a centralized location.
Application of TLS certificates would guarantee safety for an entire network to promote smooth operation of IoT devices (SierraWireless, 2017). The theoretical model applied in this chapter was the conceptual framework. Variables discussed were TLS certificates, IoT devices, and their constant technological advancements to generate better working. It was possible to analyze how each concept promoted proper development of security for IoT devices. After assessment of how the IoT has critical functions, TLS capability have been on a constant improvement to facilitate the ultimate safe and fast data transmission process (Jackson, 2021). The TLS handshake offers a basis for technical development in the area, and it becomes possible to increase reliability of devices and their functions. Since IoT devices use the internet, it is imperative to promote security over all devices and to prevent any issues that may occur to generate unreliable operations for devices.
All the listed research questions would provide a document that exhausts lots of topics to determine the required improvements for IoT functionality (Nohe, 2019). All efforts of promoting working of IoT devices in the current environment are effective and enhance suitability to the technical developments adopted in the industry. It would be possible to enhance quality of output based on the availability of participants to take part in the research project. The suggested method for the dissertation topic will enhance connection with all persons who use IoT devices. The increase in popularity of IoT functions would grow more based on the increase in knowledge of how to deal with attacks.
References
Abosata, N., Al-Rubaye, S., Inalhan, G., & Emmanouilidis, C. (2021). Internet of Things for System Integrity: A Comprehensive Survey on Security, Attacks and Countermeasures for Industrial Applications. Sensors, 21, 3654. https://doi.org/10.3390/s21113654.
Burhan, M., Rehman, R. A., Khan, B., & Kim, B. S. (2018). IoT Elements, Layered Architectures and Security Issues: A Comprehensive Survey. Sensors (Basel, Switzerland), 18(9), 2796. https://doi.org/10.3390/s18092796.
Cimpanu, C. (2018). China is now blocking all encrypted HTTPS traffic that uses TLS 1.3 and ESNI. Retrieved 8 August 2021 from https://www.zdnet.com/article/china-is-now-blocking-all-encrypted-https-traffic-using-tls-1-3-and-esni/.
Coggeshall, J. (2020). TLS gets a boost from Arduino for IoT devices. Retrieved 8 August 2021 from https://lwn.net/Articles/826757/.
Cox, J. (2017). Creating a Self-Signed SSL/TLS Certificate for Secure IoT Applications. Retrieved 8 August 2021 from https://www.netburner.com/learn/creating-a-self-signed-certificate-for-secure-iot-applications/.
Crane, C. (2020). What Is a CAA Record? Your Guide to Certificate Authority Authorization. Retrieved 8 August 2021 from https://www.thesslstore.com/blog/what-is-caa-record-certificate-authority-authorization/.
Crill, L. (2017). NGINX Plus for the IoT: Encrypting and Authenticating MQTT Traffic. Retrieved 8 August 2021 from https://www.nginx.com/blog/nginx-plus-iot-security-encrypt-authenticate-mqtt/.
De Villliers, R. (2021). Why is TLS certificate management so important? Retrieved 8 August 2021 from https://www.lawtrust.co.za/knowledge-hub/blog/lawtrust-blog/2021/02/10/why-is-tls-certificate-management-so-important.
Diaz-Sanchez, D., Marín-Lopez, A., Mendoza, F. A., Cabarcos, P. A., & Sherratt, R. S. (2019). TLS/PKI challenges and certificate pinning techniques for IoT and M2M secure communications. IEEE Communications Surveys & Tutorials, 21(4), 3502-3531.
Digicert. (n.d.). Securing Online Transactions And Domain Identities. Retrieved 8 August 2021 from https://www.digicert.com/how-tls-ssl-certificates-work
Di Vito, S. (2017). Protect TLS in IoT Devices with Secure Companion ICs. Retrieved 8 August 2021 from https://www.electronicdesign.com/industrial-automation/article/21805059/protect-tls-in-iot-devices-with-secure-companion-ics.
Doteasy. (n.d.). cPanel Hosting Setup Guides. Retrieved 8 August 2021 from https://www.doteasy.com/cpanel-hosting-setup-guides/generate-a-certificate-signing-request-csr.
Gerber, A. & Romeo, J. (2017). Connecting all the things in the Internet of Things. Retrieved 8 July 2021 from https://developer.ibm.com/articles/iot-lp101-connectivity-network-protocols/.
Guo, H. & Heidemann, J. (2020). Detecting IoT Devices in the Internet. Retrieved 8 August 2021 from https://www.isi.edu/~johnh/PAPERS/Guo20c.pdf.
Gruhn, D. (2019). SSL Certificates 101 – Why Do I Need an SSL/TLS Certificate? Retrieved 8 August 2021 from https://www.entrust.com/blog/2019/03/ssl-certificates-101-why-do-i-need-an-ssl-tls-certificate/.
El-hajj, M., Fadlallah, A., Chamoun, M., & Serhrouchni, A. (2019). A Survey of Internet of Things (IoT) Authentication Schemes. Sensors, 19(5), 1141. https://doi.org/10.3390/s19051141.
Fischlin, M. & Günther, F. (2017). Replay Attacks on Zero Round-Trip Time: The Case of the TLS 1.3 Handshake Candidates. 2017 IEEE European Symposium on Security and Privacy (EuroS&P), 60-75, doi: 10.1109/EuroSP.2017.18.
Fruhlinger, J. (2018). What is SSL, TLS? And how this encryption protocol works. Retrieved 5 June 2021 from https://www.csoonline.com/article/3246212/what-is-ssl-tls-and-how-this-encryption-protocol-works.html.
Guo, H., & Heidemann, J. (2018). Detecting IoT devices in the Internet (extended). USC/ISI Technical Report ISI-TR-726 July.
Hackster.io (2021). TLS for IoT devices connected to AWS using TO136 SE. Retrieved 8 July 2021 from https://www.hackster.io/trusted-objects/tls-for-iot-devices-connected-to-aws-using-to136-se-8e0d80.
Höglunda, J., Lindemera, S., Furuhed, M., & Raza, S. (2020). PKI4IoT: Towards public key infrastructure for the Internet of Things. Computers & Security, 89, https://doi.org/10.1016/j.cose.2019.101658.
IBM. (2021). How SSL and TLS provide identification, authentication, confidentiality, and integrity. Retrieved 8 July 2021 from https://www.ibm.com/docs/en/ibm-mq/7.5?topic=ssl-how-tls-provide-authentication-confidentiality-integrity.
IBM. (n.d.). TLS 1.2 signature and hash algorithms. Retrieved 5 June 2021 from https://www.ibm.com/docs/en/sdse/6.4.0?topic=131a-tls-12-signature-hash-algorithms.
Inscriberz. (2020). Security IoT TLS Handshake Sample. Retrieved 9June 2021 from https://www.inscriberz.com/security-iot-tls-handshake-sample/.
Jackson, B. (2021). An Overview of TLS 1.3 – Faster and More Secure. Retrieved 9June 2021 from https://kinsta.com/blog/tls-1-3/.
Kohlios, C.P. & Hayajneh, T. A. (2018). Comprehensive Attack Flow Model and Security Analysis for Wi-Fi and WPA3. Electronics , 7, 284. Journal reference, 2018, 7, 284, DOI: 10.3390/electronics7110284
Langkemper, S. (2019). A method to do TLS on IoT devices. Retrieved 8 August 2021 from https://www.sjoerdlangkemper.nl/2019/07/31/a-method-for-tls-on-iot-devices/.
Li, P., Su, J., & Wang, X. (2020). iTLS: Lightweight Transport-Layer Security Protocol for IoT With Minimal Latency and Perfect Forward Secrecy. IEEE Internet Of Things Journal, 7(8), 6828-6841. https://doi.org/10.1109/jiot.2020.2988126.
Mukherjee, B., Neupane, R. L., & Calyam, P. (2017, June). End-to-end IoT security middleware for cloud-fog communication. In 2017 IEEE 4th International Conference on Cyber Security and Cloud Computing (CSCloud) (pp. 151-156). IEEE.
Nastase, L. (2017, May). Security in the internet of things: A survey on application layer protocols. In 2017 21st international conference on control systems and computer science (CSCS) (pp. 659-666). IEEE.
Nebbione, G., & Calzarossa, M. (2020). Security of IoT Application Layer Protocols: Challenges and Findings. Future Internet, 12(3), 55. https://doi.org/10.3390/fi12030055.
Nohe, P. (2019). TLS 1.3: Everything you need to know. Retrieved 10 August 2021 from https://www.thesslstore.com/blog/tls-1-3-everything-possibly-needed-know/.
NSA. (n.d.). Eliminating Obsolete Transport Layer Security (TLS) Protocol Configurations. Retrieved 8 August 2021 from https://media.defense.gov/2021/Jan/05/2002560140/-1/-1/0/ELIMINATING_OBSOLETE_TLS_UOO197443-20.PDF.
Panwar, N., Sharma, S., Mehrotra, S., Krzywieck, L., & Venkatasubramanian, N. (2019). Smart Home Survey on Security and Privacy. Retrieved 5 June 2021 from https://arxiv.org/pdf/1904.05476.pdf.
ProtonMail. (2020). What is a TLS/SSL certificate, and how does it work? Retrieved 8 August 2021 from https://protonmail.com/blog/tls-ssl-certificate/.
Pedersen, T. (2011) HTTPS, HTTP over TLS. In: van Tilborg H.C.A., Jajodia S. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5906-5_288.
Renesas. (2021). Synergy MQTT/TLS AWS Cloud Connectivity Solution. Retrieved 8 July 2021 from https://www.renesas.com/eu/en/document/apn/synergy-mqtttls-aws-cloud-connectivity-solution-application-project.
Robinson, S. (2021). Common application layer protocols in IoT explained. Retrieved 8 July 2021 from https://internetofthingsagenda.techtarget.com/feature/Common-application-layer-protocols-in-IoT-explained.
Rughoobur, P. & Nagowah, L. (2017). A lightweight replay attack detection framework for battery depended IoT devices designed for healthcare. 2017 International Conference on Infocom Technologies and Unmanned Systems (Trends and Future Directions) (ICTUS), 2017, pp. 811-817, doi: 10.1109/ICTUS.2017.8286118.
Russell, A. (2019). Securing the Internet of Things (IoT) with SSL/TLS. Retrieved 8 August 2021 from https://www.ssl.com/article/securing-the-internet-of-things-iot-with-ssl-tls/.
Samarasinghe, N. & Mannan, M. (n.d.). Short Paper: TLS Ecosystems in Networked Devices vs. Web Servers. Retrieved 8 August 2021 https://spectrum.library.concordia.ca/982186/1/tech-fc17.pdf.
Sethi, P., & Sarangi, S. (2017). Internet of Things: Architectures, Protocols, and Applications. Journal Of Electrical And Computer Engineering, 2017, 1-25. https://doi.org/10.1155/2017/9324035
SierraWireless. (2017). What is M2M? : The Evolution from M2M to IoT. Retrieved 5 June 2021 from https://www.sierrawireless.com/iot-blog/m2m-vs-iot-vs-ioe/ .
Singh, D., Pushparaj, Mishra, M. K., Lamba, A., & Swagatika, S. (2020). Security Issues In Different Layers Of IoT And Their Possible Mitigation. International Journal Of Scientific & Technology Research, 9, (04). 2277-8616. Retrieved 5 June 2021 from http://www.ijstr.org/final-print/apr2020/Security-Issues-In-Different-Layers-Of-Iot-And-Their-Possible-Mitigation.pdf.
Tange, K. P., Howard, D., Shanahan, T., Pepe, S., Fafoutis, X., & Dragoni, N. (2020). rTLS: Lightweight TLS Session Resumption for Constrained IoT Devices. In Proceedings of the 22nd International Conference on Information and Communications Security (pp. 243-258). Springer. https://doi.org/10.1007/978-3-030-61078- 4_14.
Tiburski, R. T., Amaral, L. A., Matos, E., Azevedo, D. F. G., & Hessel, F. (2017). Evaluating the Use of TLS and DTLS Protocols in IoT Middleware Systems Applied to E-health. Retrieved 8 August 2021 https://repositorio.pucrs.br/dspace/bitstream/10923/13299/2/Evaluating_the_use_of_TLS_and_DTLS_protocols_in_IoT_middleware_systems_applied_to_e_health.pdf.
Tiburski, R. T., Amaral, A. L., Matos, E., & Dario, F. G. (2017). Evaluating the Use of TLS and DTLS Protocols in IoT Middleware Systems Applied to E-health. Retrieved 6 June 2021 from https://repositorio.pucrs.br/dspace/bitstream/10923/13299/2/Evaluating_the_use_of_TLS_and_DTLS_protocols_in_IoT_middleware_systems_applied_to_e_health.pdf.
Urien, P. (2017, January). Securing the IoT with TLS/DTLS server stacks embedded in secure elements: An ePlug usecase. In 2017 14th IEEE Annual Consumer Communications & Networking Conference (CCNC) (pp. 569-570). IEEE.
Wappalyzer. (n.d.). AWS Certificate Manager vs. Let's Encrypt. Retrieved 8 August 2021 from https://www.wappalyzer.com/compare/aws-certificate-manager-vs-let-s-encrypt.
Wheelus, C., & Zhu, X. (2020). IoT Network Security: Threats, Risks, and a Data-Driven Defense Framework. Iot, 1(2), 259-285. https://doi.org/10.3390/iot1020016.
Xiong, L., Peng, D., Peng, T., Liang, H., & Liu, Z. (2017). A Lightweight Anonymous Authentication Protocol with Perfect Forward Secrecy for Wireless Sensor Networks. Sensors (Basel, Switzerland), 17(11), 2681. https://doi.org/10.3390/s17112681.
Yamakawa, D., Okimoto, T., Teerakanok, S. Inomata, A., & Uehara, T. (2021). Enhancing Digital Certificate Usability in Long Lifespan IoT Devices by Utilizing Private CA. Security and Communication Networks, 2021. https://doi.org/10.1155/2021/6610863
Yan L., Ma M., & Ma Y. (2019) TLShps: SDN-Based TLS Handshake Protocol Simplification for IoT. In: Wang G., Feng J., Bhuiyan M., Lu R. (eds) Security, Privacy, and Anonymity in Computation, Communication, and Storage. SpaCCS 2019. Lecture Notes in Computer Science, vol 11611. Springer, Cham. https://doi.org/10.1007/978-3-030-24907-6_14
