Skip to main content
SpringerLink
Log in

Formalization and Verification of Group Communication CoAP Using CSP

  • Conference paper
  • First Online:
Parallel and Distributed Computing, Applications and Technologies (PDCAT 2021)

Part of the book series: Lecture Notes in Computer Science ((LNTCS,volume 13148))

Abstract

With the rapid expansion of Internet of Things (IoT), Constrained Application Protocol (CoAP) is developed to enable those devices with small memory, constrained computing power and limited ability to communicate with other nodes in the network. Meanwhile, group communication is very useful for managing and controlling a set of homogeneous devices in many IoT scenarios. Thus, many scholars are devoted to expanding CoAP to enable group communication. Furthermore, because CoAP is widely applicated in transportation, health care, industrial and many other areas, the security and consistency of data is of great importance. In this paper, we adopt Communicating Sequential Processes (CSP) to model group communication CoAP, and we use model checker Process Analysis Toolkit (PAT) to verify six properties of our model, including deadlock freedom, divergence freedom, data reachability, data leakage, client faking and entity manager faking. The verification results show that the original architecture has the security risk of data leakage. So we enhance it by adding message authentication code in the process. In the light of the new verification results, it can be found that we succeed in eliminating the possibility of data leakage.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 79.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 99.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Gubbi, J., Buyya, R., Marusic, S., Palaniswami, M.: Internet of things (IoT): a vision, architectural elements, and future directions. Future Gener. Comput. Syst. 29(7), 1645–1660 (2013)

    Article  Google Scholar 

  2. Bormann, C.: Angelo paolo castellani, zach shelby: CoAP: an application protocol for billions of tiny internet nodes. IEEE Internet Comput. 16(2), 62–67 (2012)

    Article  Google Scholar 

  3. Rahman, A., Dijk, E.: Group communication for the constrained application protocol (CoAP). RFC 7390, 1–46 (2014)

    Google Scholar 

  4. Ishaq, I., Hoebeke, J., Moerman, I., Demeester, P.: Observing CoAP groups efficiently. Ad Hoc Netw. 37, 368–388 (2016)

    Article  Google Scholar 

  5. Sadeghi, A.-R., Wachsmann, C., Waidner, M.: Security and privacy challenges in industrial internet of things. DAC 54(1–54), 6 (2015)

    Google Scholar 

  6. Tushir, B., Sehgal, H., Nair, R., Dezfouli, B., Liu, Y.: The impact of DoS attacks on resource-constrained IoT devices: a study on the mirai attack. CoRR abs/2104.09041 (2021)

    Google Scholar 

  7. Capossele, A., Cervo, V., De Cicco, G., Petrioli, C.: Security as a CoAP resource: an optimized DTLS implementation for the IoT. In: ICC 2015, pp. 549–554 (2015)

    Google Scholar 

  8. Ishaq, I., Hoebeke, J., Moerman, I., Demeester, P.: Experimental evaluation of unicast and multicast CoAP group communication. Sensors 16(7), 1137 (2016)

    Article  Google Scholar 

  9. Hoare, C.A.R.: Communicating Sequential Processes. Prentice-Hall, Hoboken (1985). ISBN 0-13-153271-5

    Google Scholar 

  10. Lambert, S.M.: Exploiting the power of message authentication codes. Inf. Syst. Secur. 3(3), 53–63 (1994)

    Article  Google Scholar 

  11. Tschofenig, H., Fossati, T.: Transport layer security (TLS)/Datagram transport layer security (DTLS) profiles for the internet of things. RFC 7925, 1–61 (2016)

    Google Scholar 

  12. McGrew, D.A., Bailey, D.V., Campagna, M.J., Dugal, R.: AES-CCM elliptic curve cryptography (ECC) cipher suites for TLS. RFC 7251, 1–10 (2014)

    Google Scholar 

  13. Desmedt, Y.: Man-in-the-middle attack. In: van Tilborg, H.C.A. (eds.) Encyclopedia of Cryptography and Security. Springer, Boston (2005). https://doi.org/10.1007/0-387-23483-7_241

  14. Lowe, G.: Probabilistic and prioritized models of timed CSP. Theor. Comput. Sci. 138(2), 315–352 (1995)

    Article  MathSciNet  Google Scholar 

Download references

Acknowledgement

This work was partly supported by the National Key Research and Development Program of China under Grant No. \(2018_{YFB}2101300\), the National Natural Science Foundation of China under Grant Nos. 61872145 and 62032024, and Shanghai Trusted Industry Internet Software Collaborative Innovation Center.

Author information

Authors and Affiliations

  1. Shanghai Key Laboratory of Trustworthy Computing, East China Normal University, Shanghai, China

    Sini Chen, Ran Li & Huibiao Zhu

Authors
  1. Sini Chen
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Ran Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Huibiao Zhu
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Huibiao Zhu .

Editor information

Editors and Affiliations

  1. Sun Yat-sen University, Guangzhou, Guangdong, China

    Hong Shen

  2. Sun Yat-sen University, Guangzhou, China

    Yingpeng Sang

  3. Shenzhen Institute of Advanced Technology, Shenzhen, China

    Yong Zhang

  4. Sun Yat-sen University, Guangzhou, China

    Nong Xiao

  5. University of Georgia, Athens, GA, USA

    Hamid R. Arabnia

  6. University of Utah, Salt Lake City, USA

    Geoffrey Fox

  7. Western Michigan University, Kalamazoo, MI, USA

    Ajay Gupta

  8. Stevens Institute of Technology, Hoboken, NJ, USA

    Manu Malek

Rights and permissions

Reprints and permissions

Copyright information

© 2022 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Chen, S., Li, R., Zhu, H. (2022). Formalization and Verification of Group Communication CoAP Using CSP. In: Shen, H., et al. Parallel and Distributed Computing, Applications and Technologies. PDCAT 2021. Lecture Notes in Computer Science(), vol 13148. Springer, Cham. https://doi.org/10.1007/978-3-030-96772-7_58

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-96772-7_58

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-96771-0

  • Online ISBN: 978-3-030-96772-7

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation