Pesavento, D.
, Shi, J.
, McKay, K.
and Benmohamed, L.
(2022),
PION: Password-based IoT Onboarding Over Named Data Networking, ICC 2022 - IEEE International Conference on Communications, Seoul, KR, [online], https://doi.org/10.1109/ICC45855.2022.9839088, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=932909
(Accessed October 8, 2025)
| CARVIEW |
Select Language
HTTP/2 200
date: Fri, 10 Oct 2025 03:49:35 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
cache-control: public, max-age=2764800
content-language: en
content-security-policy: default-src 'self'; script-src 'self' *.nist.gov js-agent.newrelic.com bam.nr-data.net bam-cell.nr-data.net gov-bam.nr-data.net 'unsafe-inline' 'unsafe-eval' www.google-analytics.com *.googletagmanager.com platform.twitter.com https://player.vimeo.com static.cloudflareinsights.com https://challenges.cloudflare.com; style-src 'self' 'unsafe-inline' *.nist.gov fonts.googleapis.com *.typekit.net; img-src 'self' 'unsafe-inline' data: *.nist.gov *.google-analytics.com *.googletagmanager.com cdnsecakmi.kaltura.com nist-el-nfrlhrr.s3.amazonaws.com https://cdn.jsdelivr.net/npm/leaflet-fullscreen@1.0.2/dist/fullscreen@2x.png https://cdn.jsdelivr.net/npm/leaflet-fullscreen@1.0.2/dist/fullscreen.png api.mapbox.com syndication.twitter.com https://h5p.org https://i.vimeocdn.com; media-src 'self' nist-el-nfrlhrr.s3.amazonaws.com; frame-src 'self' tube.nist.gov sts.nist.gov sts2.nist.gov *.kaltura.com *.youtube.com *.arcgis.com https://platform.twitter.com/ https://player.vimeo.com *.bluejeans.com https://vimeo.com/ https://time.gov/ login.nist.gov https://customer-ltx6ylk10sje63q6.cloudflarestream.com https://challenges.cloudflare.com; frame-ancestors 'self'; child-src 'self' blob: tube.nist.gov sts.nist.gov sts2.nist.gov *.kaltura.com *.youtube.com *.arcgis.com *.time.gov login.nist.gov; font-src 'self' *.nist.gov fonts.googleapis.com fonts.gstatic.com *.typekit.net data:; connect-src 'self' bam.nr-data.net bam-cell.nr-data.net gov-bam.nr-data.net *.google-analytics.com *.analytics.google.com *.googletagmanager.com; report-uri /report-csp-violation; upgrade-insecure-requests
expires: Sun, 19 Nov 1978 05:00:00 GMT
last-modified: Thu, 09 Oct 2025 23:11:34 GMT
strict-transport-security: max-age=31536000
vary: Cookie,Accept-Encoding
via: varnish
x-ah-environment: prod
x-cache: MISS
x-content-type-options: nosniff
x-drupal-cache: HIT
x-frame-options: SAMEORIGIN
x-generator: Drupal 10 (https://www.drupal.org)
x-request-id: v-234acd96-a58c-11f0-8ab4-53dd9b956a0e
cf-cache-status: MISS
set-cookie: __cf_bm=RsfhFPcqTl_Ede1HryKXK08O6PsLVR1s96sVEeYnsqc-1760068175-1.0.1.1-kDcQ2KoapFtJi36maq6BOBMH6TLjzNqEvneL3B1usJCflUorGbGuNwRrfdv5.pDGB5ezHYIix04QlRxfsUA7FrU4W2RqsUTMh1Ygkhtfhu8; path=/; expires=Fri, 10-Oct-25 04:19:35 GMT; domain=.nist.gov; HttpOnly; Secure; SameSite=None
set-cookie: _cfuvid=USw_Ye0581aDq0sxGT0vQ20RfYBakmxNjMkXZL6Xy7E-1760068175538-0.0.1.1-604800000; path=/; domain=.nist.gov; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 98c326105cebf4e6-ORD
PION: Password-based IoT Onboarding Over Named Data Networking | NIST
Skip to main content
NOTICE: Due to a lapse in annual appropriations, most of this website is not being updated. Learn more.
Form submissions will still be accepted but will not receive responses at this time. Sections of this site for programs using non-appropriated funds (such as NVLAP) or those that are excepted from the shutdown (such as CHIPS and NVD) will continue to be updated.
An official website of the United States government
Here’s how you know
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
https://www.nist.gov/publications/pion-password-based-iot-onboarding-over-named-data-networking
PION: Password-based IoT Onboarding Over Named Data Networking
Published
Author(s)
Davide Pesavento, Junxiao Shi, Kerry McKay, Lotfi Benmohamed
Abstract
While the IoT market continues to grow, securing IoT systems remains a challenge as successful cyberattacks keep escalating. Named Data Networking (NDN) offers a number of advantages over traditional IP-based communications and is considered a promising candidate to revolutionize the IoT space, thanks to its improved scalability and built-in security features. A cornerstone of any NDN IoT network is the onboarding protocol, whose main goal is to bootstrap the cryptographic keys and trust relationships necessary for a newly joining device to securely communicate with the rest of the network. Though several such protocols have been proposed, none so far combines strong security guarantees with ease of use on IoT devices that have highly constrained input/output interfaces. In this paper we introduce a novel password-based onboarding protocol to address this need. In addition to discussing its design, we produce a formalization of the protocol and verify its security properties using an automated analyzer. Finally, we present the results of benchmarking carried out on a proof-of-concept implementation that demonstrates the feasibility of our approach.Proceedings Title
ICC 2022 - IEEE International Conference on Communications
Conference Dates
May 16-20, 2022
Conference Location
Seoul, KR
Pub Type
Conferences
Download Paper
Citation
Issues
If you have any questions about this publication or are having problems accessing it, please contact [email protected].
Created August 11, 2022, Updated November 29, 2022