Analysis of Cyber Security Aspects of Data Transmission in Large-Scale Networks Based on the LoRaWAN Protocol Intended for Monitoring Critical Infrastructure Sensors
Abstract
:1. Introduction
- Long range—connects rural devices from 2 km to as much as 1000 km, depending on the technology apart, and penetrates densely populated urban environments or complex interiors compared to traditional mobile communication;
- Low cost—reducing investments in expanding and upgrading infrastructure, costs of replacing power sources and ultimately operational expenditure;
- Low power—minimizes battery replacement costs with minimal power requirements and an extended battery life of up to 10 years;
- High scalability—operation of a larger number of cooperating devices in a larger area;
- High capacity—meets the needs of popular public network operators serving much larger markets by supporting millions of servicesfor each base station;
- Standardized—enables rapid deployment of IoT applications anywhere through device global availability and interoperability of LoRaWAN networks using a star topology where each network endpoint connects directly to a common central access point similar to Wi-Fi;
2. Technological Advantage of LoRaWAN in the Context of Choosing the Most Appropriate Way of Transmitting Signals
- End devices—wirelessly connected via radio gateways to LoRaWAN networks;
- Gateways—forwarding received LoRaWAN radio packets to the network server;
- Network server—the center of the star topology, based on a server that manages the entire system;
3. Security in LPWAN
- Harmlessness—the device must operate without posing a direct or indirect threat to human life and health;
- Protection—the device must be protected against unauthorized use, both intentional and accidental;
- Privacy—information collected shall only be made available to authorized entities, and the user shall be informed of and consent to the data gathered by the device;
- Reliability—the device must perform the tasks required of it correctly, in the conditions for which it is intended, and within the time specified by the manufacturer;
3.1. Class-A End Devices (Bi-Directional)
- Purpose: the lowest power end-device system;
- Each uplink transmission of the end device is followed by two short downlink reception time windows;
- The downlink communication from the server occurs shortly after the end device sends the uplink transmission;
- The choice of transmission time is based on the communication needs of the end device i.e., as in the ALOHA protocol.
3.2. Class-B End Devices with Scheduled Receive Slots (Bi-Directional)
- Mid-power consumption;
- At the scheduled time, additional reception windows are opened;
- To realize this, the end device receives the time synchronized by the beacon from the gateway.
3.3. Class-C End Devices with Maximal Receive Slots (Bi-Directional)
- 1.
- Over-the-air activation (OTAA):
- NwkSKey for MAC commands encryption;
- AppSKey for application data encryption.
- 2.
- Activation by personalization (ABP)
- Establishment of secure AES-128 protected connections for message transport between end devices and application server (end-to-end security);
- Verification of device addresses;
- Authentication of end devices and integrity of messages from them;
- Deduplication of uplink messages;
- Selection of the gateway that is most suitable for sending downlink messages;
- Sending ADR messages to optimize device data rates;
- Acknowledging uplink data messages;
- Directing uplink messages to the appropriate application servers;
- Forwarding join requests and join accept messages between devices and the join server;
- Responding to MAC layer commands.
4. Discussion
4.1. Challenges
4.2. Solutions
- Loss of the cable/connector;
- Gain of the antenna;
- Directional losses.
- Plaintext recovery;
- Malicious modification of message;
- Forgery of the delivery report;
- Replay attack (i.e., selective denial of service on an IoT device);
- Battery depletion attack.
4.3. Comparison
4.3.1. Bluetooth Low Energy
- Supply current—the maximum current that Bluetooth LE modules draw from the 3.7 V source is about 15 mA. With classic Bluetooth, it is 40 mA or more. This makes it possible to work for months or even years on a single battery;
- Data transmission—very short data packets (from 8 to 27 octets) are supported, transmitted at speeds of up to 1 Mb/s;
- Frequency hopping—known from other Bluetooth implementations, the mechanism of hopping the operating frequency. Used to minimize interference with other technologies in the 2.4 GHz band;
- Host Control—Places most of the communication intelligence in the controller, allowing the host to sleep for extended periods and only be woken by the controller when action is required. This provides the greatest energy savings in portable devices, where power consumption is typically much higher than that of the communication controller;
- Delays—Bluetooth Smart allows you to establish a connection and transfer data in as little as 3 ms. This allows the application to establish a connection, transfer data and then quickly disconnect;
- Range—the increased modulation index allows connections over distances of more than 100 m;
- Stability—a 24-bit CRC checksum is used on all packets;
4.3.2. Zigbee
- Coordinator—the central device. Each network can have only one of these devices. The coordinator acts as the starting node from which other devices can join. It usually acts as a data collection device. The coordinator is usually limited in the number of devices that can connect to it. The most popular coordinators include Samsung SmartThings, Apple HomeKit, Bosch Home Connect, Google Home Hub, Amazon Echo and Nest Audio;
- Router—this device is similar in function to a traditional network router. Its job is to amplify the signal and increase the range, creating hops. A repeater can be a device that plugs into the mains, such as a light bulb, switch, relay, smart socket or wall switch. However, it must have an N wire. Devices without N are not routers;
- End device—this is a battery-powered device such as a motion, smoke or flood sensor. Such a device is connected directly to the gate and provides it with information about its status and what it is currently measuring. To reduce power consumption, the device can temporarily go into sleep mode and wake up in milliseconds. To achieve ZigBee certification, the device must last at least 2 years on battery power [1,2,3,4,5,6,7,8,9,10].
- Star topology—mainly used in home networks. A single device acts as the coordinator, and all other end devices communicate directly with it. The disadvantage of this type of network is that if the coordinator fails, the whole network fails;
- Tree topology—a popular unit consisting of a root and its dependent nodes. In the case of ZigBee, the coordinator plays the role of the root, and end devices can only be placed on the last branches. This topology allows more nodes to be connected, thus covering a larger area. The disadvantage is that there are delays in transmission, and the failure of one node can affect the operation of other devices;
4.4. Taxonomy
4.5. Limitations of Our Own Studies
4.6. Directions for Future Research
5. Conclusions
Author Contributions
Funding
Data Availability Statement
Conflicts of Interest
References
- Gomez, C.; Oller, J.; Paradells, J. Overview and Evaluation of Bluetooth Low Energy: An Emerging Low-Power Wireless Technology. Sensors 2012, 12, 11734–11753. [Google Scholar] [CrossRef]
- Sornin, N.; Luis, M.; Eirich, T.; Kramp, T.; Hersent, O. LoRa Specification 1.0. Lora Alliance Standard Specification. 2015. Available online: www.lora-alliance.org (accessed on 30 April 2023).
- Adelatando, F. The Things Network Global Team, LoRaWAN Distance World Record Broken, Twice. Available online: www.thethingsnetwork.org (accessed on 30 April 2023).
- Vilajosana, X.; Tuset-Peiro, P.; Martinez, B.; Melià-Seguí, J.; Watteyne, T. Understanding the Limits of LoRaWAN. IEEE Commun. Mag. 2017, 55, 34–40. [Google Scholar]
- Seller, O.B.A. Wireless Communication Method. U.S. Patent No. 9,647,718, 9 September 2015. [Google Scholar]
- Lee, C.-J.; Ryu, K.-S.; Kim, B.-J. Periodic Ranging in a Wireless Access System for Mobile Station in Sleep Mode. U.S. Patent No. 7,194,288, 20 March 2007. [Google Scholar]
- Alghamdi, A.M.; Khairullah, E.F.; Al Mojamed, M.M. LoRaWAN Performance Analysis for a Water Monitoring and Leakage Detection System in a Housing Complex. Sensors 2022, 22, 7188. [Google Scholar] [CrossRef] [PubMed]
- Quigley, T.J.; Rabenko, T. Latency Reduction in a Communications System. U.S. Patent No. 7,930,000, 19 April 2011. [Google Scholar]
- Bankov, D.; Khorov, E.; Lyakhov, A. On the Limits of LoRaWAN Channel Access. In Proceedings of the 2016 International Conference on Engineering and Telecommunication (EnT), Moscow, Russia, 29–30 November 2016; pp. 10–14. [Google Scholar]
- Seneviratne, P. Beginning LoRa Radio Networks with Arduino—Build Long Range, Low Power Wireless IoT Networks; eBook; Apress: New York, NY, USA, 2019. [Google Scholar]
- Sundaram, J.P.S.; Du, W.; Zhao, Z. A Survey on LoRa Networking: Research Problems, Current Solutions, and Open Issues. IEEE Commun. Surv. Tutor. 2020, 22, 371–388. [Google Scholar] [CrossRef]
- Prodanović, R.; Rančić, D.; Vulić, I.; Zorić, N.; Bogićević, D.; Ostojić, G.; Sarang, S.; Stankovski, S. Wireless Sensor Network in Agriculture: Model of Cyber Security. Sensors 2020, 20, 6747. [Google Scholar] [CrossRef]
- Vangelista, L. Frequency Shift Chirp Modulation: The LoRa Modulation. IEEE Signal Process. Lett. 2017, 24, 1818–1821. [Google Scholar] [CrossRef]
- Ma, H.; Fang, Y.; Cai, G.; Han, G.; Li, Y. A New Frequency-Bin-Index LoRa System for High-Data-Rate Transmission: Design and Performance Analysis. IEEE Internet Things J. 2022, 9, 12515–12528. [Google Scholar] [CrossRef]
- Fang, Y.; Zhuo, J.; Ma, H.; Mumtaz, S.; Li, Y. Design and Analysis of a New Index-Modulation-aided DCSK System with Frequency-and-Time Resources. IEEE Trans. Veh. Technol. 2023, 99, 1–14. [Google Scholar] [CrossRef]
- Chiani, M.; Elzanaty, A. On the LoRa Modulation for IoT: Waveform Properties and Spectral Analysis. IEEE Internet Things J. 2019, 6, 8463–8470. [Google Scholar] [CrossRef]
- Ma, H.; Cai, G.; Fang, Y.; Chen, P.; Han, G. Design and Performance Analysis of a New STBC-MIMO LoRa System. IEEE Trans. Commun. 2021, 69, 5744–5757. [Google Scholar] [CrossRef]
- Elshabrawy, T.; Joerg, R. Closed-Form Approximation of LoRa Modulation BER Performance. IEEE Commun. Lett. 2018, 22, 1778–1781. [Google Scholar] [CrossRef]
- Buchheit, M.; Hirsch, F.; Martin, R.A.; Bemmel, V.; Espinosa, A.J.; Zarkout, B.; Hart, C.F.; Tseng, M. Industrial Internet Consortium (IIC) The Industrial Internet of Things Trustworthiness Framework Foundations An Industrial Internet Consortium Foundational Document. Version V1.00—2021-07-15. Available online: https://www.google.com.hk/url?sa=i&rct=j&q=&esrc=s&source=web&cd=&ved=0CAIQw7AJahcKEwioh-ry6KD_AhUAAAAAHQAAAAAQAg&url=https%3A%2F%2Fwww.iiconsortium.org%2Fpdf%2FTrustworthiness_Framework_Foundations.pdf&psig=AOvVaw0EBJFtHbs8LhCv9N2km7Qq&ust=1685665852309027 (accessed on 21 May 2023).
- Perković, T.; DujićRodić, L.; Šabić, J.; Šolić, P. Machine Learning Approach towards LoRaWAN Indoor Localization. Electronics 2023, 12, 457. [Google Scholar] [CrossRef]
- Al-Gumaei, Y.A.; Aslam, N.; Aljaidi, M.; Al-Saman, A.; Alsarhan, A.; Ashyap, A.Y. A Novel Approach to Improve the Adaptive-Data-Rate Scheme for IoTLoRaWAN. Electronics 2022, 11, 3521. [Google Scholar] [CrossRef]
- Goulart, A.; Chennamaneni, A.; Torre, D.; Hur, B.; Al-Aboosi, F.Y. On Wide-Area IoT Networks, Lightweight Security and Their Applications—A Practical Review. Electronics 2022, 11, 1762. [Google Scholar] [CrossRef]
- Navarro-Ortiz, J.; Chinchilla-Romero, N.; Delgado-Ferro, F.; Ramos-Munoz, J.J. A LoRaWAN Network Architecture with MQTT2MULTICAST. Electronics 2022, 11, 872. [Google Scholar] [CrossRef]
- Fan, C.-I.; Zhuang, E.-S.; Karati, A.; Su, C.-H. A Multiple End-Devices Authentication Scheme for LoRaWAN. Electronics 2022, 11, 797. [Google Scholar] [CrossRef]
- Almuhaya, M.A.M.; Jabbar, W.A.; Sulaiman, N.; Abdulmalek, S. A Survey on LoRaWAN Technology: Recent Trends, Opportunities, Simulation Tools and Future Directions. Electronics 2022, 11, 164. [Google Scholar] [CrossRef]
- Ugwuanyi, S.; Paul, G.; Irvine, J. Survey of IoT for Developing Countries: Performance Analysis of LoRaWAN and Cellular NB-IoT Networks. Electronics 2021, 10, 2224. [Google Scholar] [CrossRef]
- Sabovic, A.; Delgado, C.; Subotic, D.; Jooris, B.; De Poorter, E.; Famaey, J. Energy-Aware Sensing on Battery-Less LoRaWAN Devices with Energy Harvesting. Electronics 2020, 9, 904. [Google Scholar] [CrossRef]
- Gupta, M.; Abdelsalam, M.; Khorsandroo, S.; Mittal, S. Security and Privacy in Smart Farming: Challenges and Opportunities. IEEE Access 2020, 8, 34564–34584. [Google Scholar] [CrossRef]
- Ray, P.P.; Skala, K. Internet of Things Aware Secure Dew Computing Architecture for Distributed Hotspot Network: A Conceptual Study. Appl. Sci. 2022, 12, 8963. [Google Scholar] [CrossRef]
- Pospisil, O.; Fujdiak, R.; Mikhaylov, K.; Ruotsalainen, H.; Misurec, J. Testbed for LoRaWAN Security: Design and Validation through Man-in-the-Middle Attacks Study. Appl. Sci. 2021, 11, 7642. [Google Scholar] [CrossRef]
- Pathak, G.; Gutierrez, J.; Ghobakhlou, A.; Rehman, S.U. LPWAN Key Exchange: A Centralised Lightweight Approach. Sensors 2022, 22, 5065. [Google Scholar] [CrossRef]
- Loukil, S.; Fourati, L.C.; Nayyar, A.; Chee, K.-W.-A. Analysis of LoRaWAN 1.0 and 1.1 Protocols Security Mechanisms. Sensors 2022, 22, 3717. [Google Scholar] [CrossRef] [PubMed]
- Mohamed, A.; Wang, F.; Butun, I.; Qadir, J.; Lagerström, R.; Gastaldo, P.; Caviglia, D.D. Enhancing Cyber Security of LoRaWAN Gateways under Adversarial Attacks. Sensors 2022, 22, 3498. [Google Scholar] [CrossRef]
- Ruotsalainen, H.; Shen, G.; Zhang, J.; Fujdiak, R. LoRaWAN Physical Layer-Based Attacks and Countermeasures, A Review. Sensors 2022, 22, 3127. [Google Scholar] [CrossRef]
- Hakeem, S.A.A.; El-Kader, S.M.A.; Kim, H. A Key Management Protocol Based on the Hash Chain Key Generation for Securing LoRaWAN Networks. Sensors 2021, 21, 5838. [Google Scholar] [CrossRef]
- Chen, X.; Lech, M.; Wang, L. A Complete Key Management Scheme for LoRaWAN v1.1. Sensors 2021, 21, 2962. [Google Scholar] [CrossRef]
- Celaya-Echarri, M.; Azpilicueta, L.; Lopez-Iturri, P.; Picallo, I.; Aguirre, E.; Astrain, J.J.; Villadangos, J.; Falcone, F. Radio Wave Propagation and WSN Deployment in Complex Utility Tunnel Environments. Sensors 2020, 20, 6710. [Google Scholar] [CrossRef]
- Ribeiro, V.; Holanda, R.; Ramos, A.; Rodrigues, J.J.P.C. Enhancing Key Management in LoRaWAN with Permissioned Blockchain. Sensors 2020, 20, 3068. [Google Scholar] [CrossRef]
- Gao, S.-Y.; Li, X.-H.; Ma, M.-D. A Malicious Behavior Awareness and Defense Countermeasure Based on LoRaWAN Protocol. Sensors 2019, 19, 5122. [Google Scholar] [CrossRef] [PubMed]
- Haxhibeqiri, J.; De Poorter, E.; Moerman, I.; Hoebeke, J. A Survey of LoRaWAN for IoT: From Technology to Application. Sensors 2018, 18, 3995. [Google Scholar] [CrossRef] [PubMed]
- You, I.; Kwon, S.; Choudhary, G.; Sharma, V.; Seo, J.T. An Enhanced LoRaWAN Security Protocol for Privacy Preservation in IoT with a Case Study on a Smart Factory-Enabled Parking System. Sensors 2018, 18, 1888. [Google Scholar] [CrossRef] [PubMed]
- Sanchez-Iborra, R.; Sánchez-Gómez, J.; Pérez, S.; Fernández, P.J.; Santa, J.; Hernández-Ramos, J.L.; Skarmeta, A.F. Enhancing LoRaWAN Security through a Lightweight and Authenticated Key Management Approach. Sensors 2018, 18, 1833. [Google Scholar] [CrossRef]
- Van der Veen, V.; Fratantonio, Y.; Lindorfer, M.; Gruss, D.; Maurice, C.; Vigna, G.; Bos, H.; Razavi, K.; Giuffrida, C. Drammer: Deterministic Rowhammer Attacks on Mobile Platforms. In Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, Vienna, Austria, 24–28 October 2016; pp. 1675–1689. [Google Scholar]
- Coppola, M.; Kornaros, G. Automation for Industry 4.0 by using Secure LoRaWAN Edge Gateways. In Multi-Processor System-on-Chip; Andrade, L., Rousseau, F., Eds.; ISTE Ltd.: London, UK; Wiley: New York, NY, USA, 2021; Volume 2. [Google Scholar]
- Bakoyiannis, D.; Tomoutzoglou, O.; Kornaros, G.; Coppola, M. From Hardware-Software Contracts to Industrial IoT-Cloud Block-chains for Security, Privacy and Authenticity. In Proceedings of the 2021 Smart Systems Integration (SSI), Grenoble, France, 27–29 April 2021; pp. 1–4. [Google Scholar] [CrossRef]
- Yang, X.; Karampatzakis, E.; Doerr, C.; Kuipers, F. Security Vulnerabilities in LoRaWAN. In Proceedings of the 2018 IEEE/ACM Third International Conference on Internet-of-Things Design and Implementation (IoTDI), Orlando, FL, USA, 17–20 April 2018; pp. 129–140. [Google Scholar] [CrossRef]
- Hessel, F.; Almon, L.; Hollick, M. LoRaWAN Security: An Evolvable Survey on Vulnerabilities, Attacks and their Systematic Mitigation. ACM Trans. Sen. Netw. 2023, 18, 70. [Google Scholar] [CrossRef]
- European Commission, Joint Research Centre (JRC). JRC Cybersecurity Taxonomy. 2021. [Dataset] PID. Available online: http://data.europa.eu/89h/d2f56334-a0df-485b-8dc8-2c0039d31122 (accessed on 25 May 2023).
- EU Cyber Solidarity Act. Available online: https://digital-strategy.ec.europa.eu/en/library/proposed-regulation-cyber-solidarity-act (accessed on 29 May 2023).
- Delgado-Ferro, F.; Navarro-Ortiz, J.; Chinchilla-Romero, N.; Ramos-Munoz, J.J. A LoRaWAN Architecture for Communications in Areas without Coverage: Design and Pilot Trials. Electronics 2022, 11, 804. [Google Scholar] [CrossRef]
- Rojek, I.; Macko, M.; Mikołajewski, D.; Saga, M.; Burczynski, T. Modern methods in the field of machine modeling and simulation as a research and practical issue related to Industry 4.0. Bull. Pol. Acad. Sci. Tech. Sci. 2021, 69, e136719. [Google Scholar] [CrossRef]
- Rojek, I.; Mikołajewski, D.; Macko, M.; Szczepański, Z.; Dostatni, E. Optimization of Extrusion-Based 3D Printing Process Using Neural Networks for Sustainable Development. Materials 2021, 14, 2737. [Google Scholar] [CrossRef]
- Rojek, I.; Mikołajewski, D.; Kotlarz, P.; Macko, M.; Kopowski, J. Intelligent system supporting technological process planning for machining and 3D printing. Bull. Pol. Acad. Sci. Tech. Sci. 2021, 69, e136722. [Google Scholar]
- Sales Mendes, A.; Jiménez-Bravo, D.M.; Navarro-Cáceres, M.; Reis QuietinhoLeithardt, V.; Villarrubia González, G. Multi-Agent Approach Using LoRaWAN Devices: An Airport Case Study. Electronics 2020, 9, 1430. [Google Scholar] [CrossRef]
- Gava, M.A.; Rocha, H.R.O.; Faber, M.J.; Segatto, M.E.V.; Wörtche, H.; Silva, J.A.L. Optimizing Resources and Increasing the Coverage of Internet-of-Things (IoT) Networks: An Approach Based on LoRaWAN. Sensors 2023, 23, 1239. [Google Scholar] [CrossRef] [PubMed]
Region | Band [MHz] | Duty Cycle [%] | Output Power |
---|---|---|---|
EU | 868 | <1 | +13 |
EU | 433 | <1 | +10 |
US | 915 | No | +27 |
CN | 779 | <0.1 | +10 |
AS | 923 | No | +13 |
IN | 865 | No | +27 |
KR | 920 | No | +11 |
RU | 864 | <1 | +13 |
AU | 915 | No | +28 |
CN | 470 | No | +17 |
Name | Application |
---|---|
A (All) |
|
B (Beacon) |
|
C (Continuous) |
|
Spreading Factor (RegModulationCfg) | Spreading Factor [Chips/Symbol] | LoRa Demodulator SNR [dB] |
---|---|---|
6 | 64 | −5 |
7 | 128 | −7.5 |
8 | 256 | −10 |
9 | 512 | −12.5 |
10 | 1024 | −15 |
11 | 2048 | −17.5 |
12 | 4096 | −20 |
Disclaimer/Publisher’s Note: The statements, opinions and data contained in all publications are solely those of the individual author(s) and contributor(s) and not of MDPI and/or the editor(s). MDPI and/or the editor(s) disclaim responsibility for any injury to people or property resulting from any ideas, methods, instructions or products referred to in the content. |
© 2023 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/).
Share and Cite
Czeczot, G.; Rojek, I.; Mikołajewski, D. Analysis of Cyber Security Aspects of Data Transmission in Large-Scale Networks Based on the LoRaWAN Protocol Intended for Monitoring Critical Infrastructure Sensors. Electronics 2023, 12, 2503. https://doi.org/10.3390/electronics12112503
Czeczot G, Rojek I, Mikołajewski D. Analysis of Cyber Security Aspects of Data Transmission in Large-Scale Networks Based on the LoRaWAN Protocol Intended for Monitoring Critical Infrastructure Sensors. Electronics. 2023; 12(11):2503. https://doi.org/10.3390/electronics12112503
Chicago/Turabian StyleCzeczot, Grzegorz, Izabela Rojek, and Dariusz Mikołajewski. 2023. "Analysis of Cyber Security Aspects of Data Transmission in Large-Scale Networks Based on the LoRaWAN Protocol Intended for Monitoring Critical Infrastructure Sensors" Electronics 12, no. 11: 2503. https://doi.org/10.3390/electronics12112503
APA StyleCzeczot, G., Rojek, I., & Mikołajewski, D. (2023). Analysis of Cyber Security Aspects of Data Transmission in Large-Scale Networks Based on the LoRaWAN Protocol Intended for Monitoring Critical Infrastructure Sensors. Electronics, 12(11), 2503. https://doi.org/10.3390/electronics12112503