Autonomous and malware-proof blockchain-based firmware update platform with efficient batch verification for Internet of Things devices

Abstract

Internet of Things (IoT) devices are expected to penetrate users’ lives everywhere. However, the occurrence of several massive distributed denial-of-service (DDoS) attacks in infected IoT devices has brought increased attention to the importance of IoT security. Since IoT devices are equipped only with lightweight operation systems, the installation of antivirus software cannot be guaranteed. Therefore, a method through which the firmware of IoT devices can be securely and autonomously updated must be developed. This paper proposes a blockchain-based firmware updating platform to enhance the process of updating firmware. A smart contract is used to ensure integrity and enforce the scanning of malicious code. With a peer-to-peer file sharing system, our platform enjoys high availability without the single failure point problem, mitigating the possibility of DDoS attacks. We use batch verification in case of multiple updating requests for better scalability. Through function comparisons and performance simulation, our scheme is shown to be effective in strengthening IoT security.

Introduction

The Internet of Things (IoT) has become extremely popular with the rapid development of small low-cost sensors, wireless communication technologies, and new Internet techniques (Chen et al., 2017). IoT techniques are applied to different scenarios including intelligent transportation and logistics, smart homes, environmental monitoring, medical and health care. Gartner forecasts that 8.4 billion connected things were in use worldwide in 2017, having increased 31 percent from 2016, and will reach 20.4 billion by 2020 (Gartner, 2017). The total spending on endpoints and services could have reached almost two trillion in 2017. However, the increasing popularity of IoT devices has been accompanied by several challenges including security and infrastructure scalability. In terms of security, IoT devices are designed for lightweight operating systems. Therefore, they are difficult to equip with antivirus software in the sense that their security depends on whether the manufacturers consider security problems.

Unfortunately, IoT devices still have new weaknesses (Puri, 2016) such as vulnerable firmware, poor authentication, compromised OS tools, and insecure chipsets. Consequently, several security attacks have occurred. In October 2016, DDoS attacks brought down the Internet across the United States, fortunately for only a couple of hours (EMI, Yan, Yu, Gong, 2016). Despite some progress in software engineering resulting from the use of better programming models, improved development methods, and more effective testing tools, the software is still far from perfect (Chen et al., 2011). Therefore, one feasible means of protecting embedded devices is the continuous updating of the latest firmware (Hayden et al., 2012).

Moreover, how to deal with the scalability of massive IoT devices is another emerging issue. Assume a scenario in which a popular manufacturer of IoT devices sells more than ten thousands products per year; once a well-known weakness reveals itself, hundreds of thousands of IoT devices must update their own firmware. However, a typical website cannot serve more than five thousand people in the same time period, let alone handle hundreds of thousands of IoT devices. As a result, each manufacturer must incur substantial cost and spend substantial time maintaining updating servers to increase service availability.

Currently, a breakthrough technology called blockchain (Nakamoto, 2008) is receiving ever-increasing attention, with approximately $300 million invested in 2016 (Dinh, Liu, Zhang, Chen, Ooi, Wang, 2018, Gatteschi, Lamberti, Demartini, Pranteda, Santamaría, 2018). Bitcoin (Nakamoto, 2008) is the most well-known application of blockchain. A blockchain is a distributed database with strong security protection. Each node in a blockchain maintains a ledger shared with the other nodes. As long as a transaction (information) is recorded on a blockchain, security assurance can be exponentially improved over time. The essential characteristics include immutability, consensus, finality, and provenance. Since 2014, the Ethereum blockchain (Dannen, 2017) protocol has been equipped with a function of smart contracts to improve the programming ability of Bitcoin. A smart contract is a distributed and Turing-complete program. As a result, the outcome of a smart contract is solid and verified by each node, which can effectively enhance security and scalability.

In this paper, we propose a blockchain-based firmware updating platform with efficient batch verification to enhance security and scalability for IoT devices. First, a smart contract is used to perform the autonomous updating procedure, and to ensure that the download URL and checksum of the latest firmware file are malware proof. Next, we integrate the virus scanning website VirusTotal (Google, 2017) into our smart contract to check whether any malware is embedded in the latest firmware. To improve scalability, batch verification for signatures is proposed to facilitate must-do multiple signature verifications.¹

To summarize, the contributions of this paper include (1) ensuring firmware integrity, (2) detecting malicious code, (3) improving scalability, (4) reducing occurrences of. DDoS and advanced persistent threat (APT) motivation, and (5) shortening signature verification time.

The remainder of this paper is organized as follows. In Section 2, related work is surveyed. The security requirements and cryptographic preliminaries of our scheme are discussed in Section 3. The proposed blockchain-based firmware updating platform is described in Section 4. In Section 5, we describe the security analysis and performance evaluations. The platform prototype is implemented and set up to verify our mechanism in Section 6. We conclude the paper in Section 7.