www.sics.se Thesis Title: The OAuth 2.0 Authorization for the Internet of Things Description of the units: The Networked Embedded Systems (NES) group at SICS Swedish ICT is a part of the Computer Systems Laboratory. The current research focus is on the Internet of Things. Among the group's key technologies are the Contiki operating system, uIP stack, ContikiRPL, SICSLoWPAN, SICS th Sense, and lightweight implementation of IPsec and DTLS. The NES group conducts projects together with industry and academic partners from Sweden and across the world. Thesis description: Internet of Things (IoT) is the interconnection of everyday physical objects with the Internet. OAuth is an open standard for authorization. OAuth provides client applications a 'secure delegated access' to server resources on behalf of a resource owner. In order to solve authorization problem in the IoT, OAuth can be extended to the IoT domain. There are already some proposals on the use of OAuth in the IoT. We also see a great potential in OAuth to be used in IoT devices. This thesis aims to investigate the applicability of OAuth in the IoT domain, implement the proposed solution for IoT devices, and evaluate it in an IoT setup. SICS will provide both background information, a certain amount of code libraries reflecting the current status of the research project, and necessary hardware .The tasks of the Masters student for this thesis are: • Study IoT protocols and the OAuth 2.0. • Propose a protocol-level solution showing the use of OAuth in the IoT. • Implement and evaluate the proposed OAuth-based solution for the IoT • Document the results as a thesis document. Competence: We are looking for a bright MSc student with demonstrated interest in security who have fulfilled (or soon finishing) the course requirements. Good programming skills are required, as is good spoken and written English. Experience with the Bluetooth programming is a plus. Applications should include a brief personal letter, CV, and recent grades. In your application, make sure to give examples of previous programming or other projects that you consider relevant for the position. Candidates are encouraged to send in their application as soon as possible. Suitable applicants will be interviewed as applications are received. Start time: As soon as possible City: SICS Swedish ICT Kista, Stockholm Contact person: Prof. Dr. Thiemo Voigt, Leader of the NES group E-mail: [email protected] SICS Swedish ICT AB Networked Embedded Systems Group, Electrum Building, Isafjordsgatan 22SE-164 40 Kista, Stockholm

The OAuth 2.0 Authorization for the Internet of Things · PDF file Thesis Title: The OAuth 2.0 Authorization for the Internet of Things Description of the units: The Networked Embedded

Download PDF Report

Upload
vuongtram
View
223
Download
3

Embed Size (px)

Citation preview

Page 1: The OAuth 2.0 Authorization for the Internet of Things · PDF file Thesis Title: The OAuth 2.0 Authorization for the Internet of Things Description of the units: The Networked Embedded

www.sics.se

ThesisTitle:TheOAuth2.0AuthorizationfortheInternetofThingsDescriptionoftheunits:

TheNetworkedEmbeddedSystems(NES)groupatSICSSwedishICTisapartoftheComputerSystemsLaboratory.The current research focus is on the Internet of Things. Among the group's key technologies are the Contikioperating system, uIP stack, ContikiRPL, SICSLoWPAN, SICSthSense, and lightweight implementation of IPsec andDTLS.TheNESgroupconductsprojectstogetherwithindustryandacademicpartnersfromSwedenandacrosstheworld.

Thesisdescription:

InternetofThings(IoT)istheinterconnectionofeverydayphysicalobjectswiththeInternet.OAuthisanopenstandardforauthorization.OAuthprovidesclientapplicationsa'securedelegatedaccess'toserverresourcesonbehalfofaresourceowner.InordertosolveauthorizationproblemintheIoT,OAuthcanbeextendedtotheIoTdomain.TherearealreadysomeproposalsontheuseofOAuthintheIoT.WealsoseeagreatpotentialinOAuthtobeusedinIoTdevices.ThisthesisaimstoinvestigatetheapplicabilityofOAuthintheIoTdomain,implementtheproposedsolutionforIoTdevices,andevaluateitinanIoTsetup.

SICSwillprovidebothbackgroundinformation,acertainamountofcodelibrariesreflectingthecurrentstatusoftheresearchproject,andnecessaryhardware.ThetasksoftheMastersstudentforthisthesisare:

• StudyIoTprotocolsandtheOAuth2.0.• Proposeaprotocol-levelsolutionshowingtheuseofOAuthintheIoT.• ImplementandevaluatetheproposedOAuth-basedsolutionfortheIoT• Documenttheresultsasathesisdocument.

Competence: WearelookingforabrightMScstudentwithdemonstratedinterestinsecuritywhohavefulfilled(orsoonfinishing)thecourserequirements.Goodprogrammingskillsarerequired,asisgoodspokenandwrittenEnglish.ExperiencewiththeBluetoothprogrammingisaplus.

Applications should include a brief personal letter,CV, and recent grades. In your application,make sure to giveexamples of previous programming or other projects that you consider relevant for the position. Candidates areencouragedtosendintheirapplicationassoonaspossible.Suitableapplicantswillbe interviewedasapplicationsarereceived.

Starttime: AssoonaspossibleCity: SICSSwedishICTKista,StockholmContactperson:Prof.Dr.ThiemoVoigt,LeaderoftheNESgroupE-mail:[email protected],ElectrumBuilding,Isafjordsgatan22SE-16440Kista,Stockholm