Cybersecurity of Internet of Things Devices : a Secure Shell implementation
Timko, Alexander Matias (2022)
Timko, Alexander Matias
2022
Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:amk-202205139197
https://urn.fi/URN:NBN:fi:amk-202205139197
Tiivistelmä
The objective of this thesis was to provide a theoretical overview of the current cybersecurity climate concerning the IoT and IoT devices, analyse both wireless and communication protocols used in the IoT, and research the viability of implementing an SSH architecture into an IoT system as a means of securing data in transit.
The primary aim of the implementation was to create an IoT system which would utilise an SSH architecture through the Secure Copy Protocol to transfer data between sensor node and edge device. The sensor node, acting as SSH Client, consisted of a NodeMCU ESP32 microcontroller with BMP180 pressure and temperature sensor and DHT-11 humidity and temperature sensor. The edge device, acting as SSH server, was a computer running an Ubuntu operating system, which would collect transmitted sensor node data and visualize the data in a graph. Furthermore, the secondary aim of the implementation was to use the Secure Copy Protocol to allow secure Over-the-Air firmware updates of the sensor node.
Further development and research are needed to apply the implementation to a wider range of IoT devices, test processing and power implications of the implementation, and develop a secondary security mechanism for Over-the-Air updates.
However, the results of the implementation showed that using an SSH Client/Server architecture in an IoT system is a viable means of securing and encrypting transmitted sensor and firmware update data between an IoT sensor node and IoT edge device.
The primary aim of the implementation was to create an IoT system which would utilise an SSH architecture through the Secure Copy Protocol to transfer data between sensor node and edge device. The sensor node, acting as SSH Client, consisted of a NodeMCU ESP32 microcontroller with BMP180 pressure and temperature sensor and DHT-11 humidity and temperature sensor. The edge device, acting as SSH server, was a computer running an Ubuntu operating system, which would collect transmitted sensor node data and visualize the data in a graph. Furthermore, the secondary aim of the implementation was to use the Secure Copy Protocol to allow secure Over-the-Air firmware updates of the sensor node.
Further development and research are needed to apply the implementation to a wider range of IoT devices, test processing and power implications of the implementation, and develop a secondary security mechanism for Over-the-Air updates.
However, the results of the implementation showed that using an SSH Client/Server architecture in an IoT system is a viable means of securing and encrypting transmitted sensor and firmware update data between an IoT sensor node and IoT edge device.