الفهرس 
IntroductionOnly 14 pages are availabe for public view
 |  | from | 146 |  |  |
| | | from | 146 | | |
Abstract
This thesis contributes to the body of knowledge in the area of security protocols for IoT networks as there is no security standardization that governs the implementations of these platforms. Also, the usage of IoT technology to combat COVID-19 pandemic boosts IoT market especially in the healthcare sector. Thus, the security and the privacy for the patients data is highly important where if it is forged before reaching to doctors, wrong diagnosing may threaten the precious patients’ lives and also may threaten those who are surrounding them.
MQTT (Message Queue Telemetry Transport) protocol is widely used as an application layer protocol in IoT environment and the current MQTT standard does not specify how MQTT can provide cryptographic services like authentication, access control, confidentiality, etc. that maintain the MQTT based IoT system secure. Thus, PMQTT (Protected MQTT) protocol is introduced in this thesis to keep MQTT systems secure. A Telemedicine case study was selected to clarify the proposed security protocol.
PMQTT design has three cryptographic stages. The first stage is the authentication stage and it is based on ECDSA. The second phase is the key establishment and distribution phase and it is using ECDH to generate shared key between the two communicating parties through PMQTT Broker. The last phase is the confidentiality phase and it is based on AES 128 using the generated shared key of the previous phase.
Then, formal verification for PMQTT is conducted using ProVerif 2.00 cryptographic protocol verifier tool. It was found that the queries regarding the client’s authenticity and the secrecy of both the session key and the encrypted messages are proven to be true.
After that, performance analysis of PMQTT is conducted using practical implementation with MPIR 3.0.0 big integers’ library on Visual Studio 2017 and the domain parameters of secp256k1 elliptic curve in conjunction with biomedical data set from PhysioNet database. Afterwards, performance metrics are measured for the security phases of PMQTT by taking the mean of 50 trials from the execution of the testing scenario. Finally, a comparison between PMQTT performance metrics and previous work is conducted. It was concluded that PMQTT offers the required security services with satisfying performance capabilities.