Encryption libraries for Waspmote platform protect sensitive data
Designed for use in smart cities implementations, the new encryption libraries are a robust security system ensuring the authentication, confidentiality and integrity of information gathered by the sensors, of major concern for local governments with regard to data liability.
The encryption libraries are distributed with the Waspmote integrated development environment (IDE) under an open source license, and are ready to install with the main program. To ensure maximum security and protect information gathered by the Waspmote sensor platform, Libelium uses three cryptography layers: access control; point-to-point authentication; and public key encryption.
In this process, all network nodes share a common key that encrypts information via AES-128, using Waspmote’s integrated 802.15.4/ZigBee radio to allow efficient energy consumption. This layer ensures that no third-party devices may connect to the network. For this security layer, each Waspmote sensor node uses a point-to-point AES 256 encryption scheme to confidentially interchange communication with Meshlium, the sensor gateway. For key renewal encryption, RSA 1024 is used to ensure authentication and integrity as none of the intermediary nodes that forward information may see the sensor data transmitted.
The third security technique is performed in Meshlium—the sensor gateway device that transmits information to the Cloud—by allowing each node to encrypt data using the Cloud server’s public key. This system ensures that information is kept confidential all the way from the sensor to the Web server on the Internet. The Waspmote Encryption Libraries also allow developers to encrypt the information before storing it in the internal memory of the node itself, ensuring a complete security system in case the sensor device is ever stolen.
Visit Libelium at www.libelium.com/waspmote