Paper Info
Title
Security Risk Analysis of LoRaWAN and Future Directions.
Abstract
LoRa (along with its upper layers definition-LoRaWAN) is one of the most promising Low Power Wide Area Network (LPWAN) technologies for implementing Internet of Things (IoT)-based applications. Although being a popular technology, several works in the literature have revealed vulnerabilities and risks regarding the security of LoRaWAN v1.0 (the official 1st specification draft). The LoRa-Alliance has built upon these findings and introduced several improvements in the security and architecture of LoRa. The result of these efforts resulted in LoRaWAN v1.1, released on 11 October 2017. This work aims at reviewing and clarifying the security aspects of LoRaWAN v1.1. By following ETSI guidelines, we provide a comprehensive Security Risk Analysis of the protocol and discuss several remedies to the security risks described. A threat catalog is presented, along with discussions and analysis in view of the scale, impact, and likelihood of each threat. To the best of the authors' knowledge, this work is one of the first of its kind, by providing a detailed security risk analysis related to the latest version of LoRaWAN. Our analysis highlights important practical threats, such as end-device physical capture, rogue gateway and self-replay, which require particular attention by developers and organizations implementing LoRa networks.
Year
DOI
Venue
2019
10.3390/fi11010003
FUTURE INTERNET
Keywords
Field
DocType
internet of things,sensor node,LPWAN,attacks,threats,vulnerabilities,IoT,analysis,risk,assessment,low power,LoRa,v1.1
Sensor node,Architecture,Computer science,Risk analysis (business),Computer security,Internet of Things,Knowledge management,Default gateway,Wide area network,LPWAN,Vulnerability
Journal
Volume
Issue
ISSN
11
1
1999-5903
Citations 
PageRank 
References 
3
0.49
8
Authors
3
Name
Order
Citations
PageRank
Butun, Ismail1203.27
Nuno Pereira227320.55
Mikael Gidlund352352.95