Next Article in Journal
Rotor Fault Diagnosis Method Using CNN-Based Transfer Learning with 2D Sound Spectrogram Analysis
Next Article in Special Issue
Interval Type 2 Fuzzy Adaptive Motion Drive Algorithm Design
Previous Article in Journal
Modelling of ML-Enablers in 5G Radio Access Network-Conceptual Proposal of Computational Framework
Previous Article in Special Issue
Efficient and Secured Mechanisms for Data Link in IoT WSNs: A Literature Review
 
 
Search for Articles:
Title / Keyword
Author / Affiliation / Email
Journal
Article Type
 
 
Advanced Search
 
Section
Special Issue
Volume
Issue
Number
Page
 
Journals
Electronics
Volume 12
Issue 3
10.3390/electronics12030482
electronics-logo
Submit to this Journal Review for this Journal Propose a Special Issue
Article Menu

Article Menu

share Share announcement Help format_quote Cite question_answer Discuss in SciProfiles thumb_up
...
Endorse textsms
...
Comment
first_page
settings
Order Article Reprints
Font Type:
Arial Georgia Verdana
Font Size:
Aa Aa Aa
Line Spacing:
Column Width:
Background:
Review

Efficient Secure Routing Mechanisms for the Low-Powered IoT Network: A Literature Review

by
Muhammad Zunnurain Hussain
* and
Zurina Mohd Hanapi
Department of Communication Technology and Networking, Universiti Putra Malaysia, Seri Kembangan 43400, Selangor, Malaysia
*
Author to whom correspondence should be addressed.
Electronics 2023, 12(3), 482; https://doi.org/10.3390/electronics12030482
Submission received: 28 November 2022 / Revised: 9 January 2023 / Accepted: 12 January 2023 / Published: 17 January 2023
(This article belongs to the Special Issue Applications of Machine Learning in Real World)
Browse Figures
Review Reports Versions Notes

Abstract

:
The Wireless Sensor Network in the Internet of Things (WSN-IoT) has been flourishing as another global breakthrough over the past few years. The WSN-IoT is reforming the way we live today by spreading through all areas of life, including the dangerous demographic aging crisis and the subsequent decline of jobs. For a company to increase revenues and cost-effectiveness growth should be customer-centered and agile within an organization. WSN-IoT networks have simultaneously faced threats, such as sniffing, spoofing, and intruders. However, WSN-IoT networks are often made up of multiple embedded devices (sensors and actuators) with limited resources that are joined via various connections in a low-power and lossy manner. However, to our knowledge, no research has yet been conducted into the security methods. Recently, a Contiki operating system’s partial implementation of Routing Protocol for Low Power & Lossy Network RPL’s security mechanisms was published, allowing us to evaluate RPL’s security methods. This paper presents a critical analysis of security issues in the WSN-IoT and applications of WSN-IoT, along with network management details using machine learning. The paper gives insights into the Internet of Things in Low Power Networks (IoT-LPN) architecture, research challenges of the Internet of Things in Low Power Networks, network attacks in WSN-IoT infrastructures, and the significant WSN-IoT objectives that need to be accompanied by current WSN-IoT frameworks. Several applied WSN-IoT security mechanisms and recent contributions have been considered, and their boundaries have been stated to be a significant research area in the future. Moreover, various low-powered IoT protocols have been further discussed and evaluated, along with their limitations. Finally, a comparative analysis is performed to assess the proposed work’s performance. The study shows that the proposed work covers a wide range of factors, whereas the rest of the research in the literature is limited.

1. Introduction

IoT has been thriving as another global innovation in the last few years. It is expected that the world’s fortunes will be changed by implementing IoT in various systems over the coming years. IoT will likely revolutionize the way we live today. The Internet of Things foundation was established to improve communication and data exchange between humans and devices for massive data transfer [1]. IoT’s motivation involves the association of registering gadgets, mechanical and computerized objects, humans, and machines through applications utilizing the web interface and portable applications. The IoT climate can move information through an organization without expecting human-to-human or human-to-computer correspondence [2].
IoT is becoming a significant necessity for many industrial and communication technology applications. There has been an enormous increase in IoT implementation as it has been considered to have the massive number of 50 billion devices connected to the Internet by 2020 [3]. Furthermore, IoT applications designed to assist the disabled or elderly provide ease and mobility at varying degrees of unconventionality for a reasonable price [4]. In addition, IoT adds to numerous fields, for example, agribusiness, climate, clinical areas, the educational sector, transportation, and finance. These innovations and upgrades improve our everyday lives [5].
Figure 1 shows the graph depicting the number of IoT devices in billions globally from 2018 to 2030 [6].
Numerous organizations and scientific research associations are working on various aspects of the IoT. They have presented a functional outline for the IoT’s impacts on the economy and the vast majority of other existing fields over the next 10 years. Cisco is the primary organization that delivers numerous IoT undertakings, which included 24 billion smart objects by 2019. It is also expected that the Huawei company will introduce 100 billion IoT associations by 2025 [7,8,9]. Every second in the world, 127 devices are linked to the Internet. By 2020, out of all electronic device use, 63% will be using IoT technology. Of all the massive, smart city commercial projects, 23% consist of IoT implementation, while by the end of 2020, 40% of all healthcare organizations were embedding IoT [10]. Figure 2 depicts an analysis of the worldwide expenditure in billions of dollars on IoT from 2018 to 2023, which shows the cost of IoT is increasing day by day as enhancement in technology (such as automated machine systems, devices, etc.,) increases. In 2018 the expenditure was 616 billion USD, after that it increased slightly in 2019 and there was a significant change predicted for 2022–2023 [11].
Via controllers and cloud management, autonomy can be generated for the self-sufficiency and decision-making of nodes [12]. There is always a wide open door for intruders or hackers to utilize IoT devices for their potential benefit via various attacks, such as Denial-of-Service (DoS) attacks, phishing emails, and other unsafe worms or Trojans [13]. The IoT layers present multiple risks such as sniffing, spoofing, eavesdropping, and intrusion. IoT utilizes hubs, sensors, and intelligent recognition gadgets to gather information. Because of the nonappearance of verification administration, unapproved access can change data integrity or even erase the stored data [14,15].
IoT systems can work under various conditions and, in most cases, have little computing capacity. Therefore, specific IoT devices can connect to many hubs, raising significant security concerns. As a result, security issues have proven to be more challenging to solve, as it is difficult to establish a nonexclusive security architecture or model [16]. The Internet has undergone remarkable changes that offer both extraordinary opportunities and significant difficulties for users; troubles emerge from unauthorized users utilizing cyberspace and exploiting its numerous weaknesses. Various cyber insights are required for the Internet to assess risks and overcome challenges [17].
The increasing proliferation of WSN devices in an actuating–communicating network has spawned the Internet of Things (IoT), in which data is seamlessly shared across platforms by fusing sensors and actuators with our surroundings. Medical and environmental monitoring can be automated using these low-cost WSN devices. RPL improves the utilization of these sensors in real-world applications by assessing their performance. Low-Power and Lossy Networks (LLNs) are mainly restricted nodes with limited processing power and fluctuating energy. Most traffic patterns are multipoint-to-point or multipoint-to-multipoint rather than point-to-point. As a result, data rates are often reduced, resulting in instability [18]. Contiki is an operating system that allows RPL and lossless monitoring of Internet of Things devices. Topological node assignment is based on multi-hop transmissions and has been employed in environmental monitoring, health care, and other smart systems [19]. Routing is a popular topic in the IoT community because of the limitations imposed by these devices. In many IoT networks, the Internet Engineering Task Force’s (IETF) routing protocol for low power and lossy networks (LPN) has become the norm since it was intended to effectively utilize the finite resources of IoT devices while delivering effective routing services. RPL’s architecture included many but optional security methods for ensuring reliable routing. Research on the security elements of RPL’s routing protocol, such as routing assaults, novel mitigation mechanisms and intrusion detection systems (IDSs), and goal functions with an eye on security, has exploded since the protocol’s 2012 standardization (OFs). The impacts of RPL’s security features against routing assaults have not yet been studied, which is strange. RPL’s security features have not been implemented in any of the existing IoT operating systems (OSs), such as Contiki OS and TinyOS.
RPL security features have been partially implemented in Contiki OS, with the addition of a preloaded secure mode (PSM) and an optional replay protection system. Using this approach, we were able to provide the groundwork for this paper. We summarize our contributions as follows.
We confirmed that, except for the wormhole, RPL in the preinstalled secure mode (PSM) could prevent external adversaries from entering the IoT network for the examined attacks (WH). Additionally, we demonstrated that the optional replay protection offers superior protection against the neighbor attack (NA). However, it needs more optimization to minimize its impact on energy usage. We observed and assessed the effect of the examined assaults on the routing topology and offered two simple strategies for mitigating the consequences of the investigated attacks without using external security measures, such as intrusion detection systems or other security mechanisms. Another performance comparison of the suggested methodologies’ implementation was undertaken. The findings indicated that RPL performed better in terms of end-to-end (E2E) latency and packet delivery rate (PDR) when subjected to Selective-Forward (SF) and Black-hole assaults.
This paper explored the numerous security challenges in wireless sensor networks (WSNs) and the IoT. The function of the IoT in Industry 4.0 demonstrates how various automated systems can be used to optimize processes. Similarly, the IoT-LPN protocols are examined in this paper, which describes each protocol’s strengths and weaknesses. This paper also discusses security objectives (availability, confidentiality, privacy, and so on), threats, and WSN and IoT-LPN problems. These attacks are further categorized into physical layer-based, network layer-based, software-based, and data-based attacks. In addition, the security processes associated with Industry 4.0 are addressed. The suggested research performed a comparative analysis with current work based on various criteria, indicating that the proposed work covers several factors, whereas existing work discusses fewer. Based on the preceding explanation, the proposed work focuses on four questions and targets them as follows:
Q1.
What are the applications utilized in IoT-LPN?
Q2.
What are the existing protocols in IoT-LPN and their strengths and limitations?
Q3.
What are the security objectives of WSN-IoT?
Q4.
What are the security issues and challenges in WSN-IoT?
Figure 3 depicts the research collection mechanism, including identifying the data, title screening, exclusion criteria, and finally, the included papers.
The rest of the paper can be described as follows. Section 2 briefly discusses IoT in Industry 4.0. Similarly, Section 3 is related to IoT-LPN architecture and its applications. Section 4 is about security issues and challenges in WSN-IoT. Section 5 covers the categories of network attacks in WSN-IoT layers. Section 6 is related to the WSN-IoT security mechanism in Industry 4.0. Subsequently, the existing literature is discussed in Section 7. Similarly, a comparative analysis of the proposed work with the current work is discussed in Section 8, and finally, the conclusion and findings are described in Section 9.

2. IoT in Industry 4.0

A company should adapt its manufacturing and logistics processes to follow emerging technology in this modern era. Profitability and cost-effectiveness have increased as business has expanded. Customer-centric development methods should be included, and internal business agility should be prioritized. Similarly, the transformation of all social and business structures around digital communication can be described as “digitalization.” Digital innovations are incorporated into corporate activity by digitalizing all conceivable operations [20]. However, IoT provides the opportunity to view data from anywhere and share data between computers, devices, and nodes. Manufacturing processes are interconnected and there are real-time flows between all aspects of the supply chain [21]. The IIoT is a particular IoT field that emphasizes its implementations and uses for new industries and intellectual development. It is a dynamic structure with a wide range of processes. Besides, it is a central feature of the manufacturing sphere and is closely tied to the fourth industrial revolution (IR 4.0) [22]. It combines several cutting-edge critical technologies to produce a system that outperforms the sum of its parts. This one-of-a-kind domain stands out for its many innovative applications and services and its myriad integrated appliances and modern manufacturing operations [23]. Through the use of core technologies such as Cyber-Physical Systems (CPSs); IoT; autonomous, scalable, cooperative robotics; the Internet of Services (IoS); simulations that exploit real-time data to create a computer model that reflects the actual world; big data analytics; and enhanced re-assembly, IR 4.0 aims to improve and update existing production plants, maintenance and management processes, and technology to an intellectual level [24]. The term “responsibility” refers to determining whether a person is responsible for their actions. A top-down and bottom-up system would create an integrated network that helps an automated supply chain build skills, functions, divisions, and companies. The presentation, analysis, and interpretation of data from various sources, including industrial processes, warehouses, and corporate consumer information systems, has become the norm in IR 4.0 to aid real-time decision-making. Networking technology, smartphones, sensors, applications, middleware, and storage devices are all included.
Simply put, Industry 4.0 alters both living and working practices. However, a new era in human history becomes possible through technological developments comparable to the first, second, and third industrial revolutions. They provide more automation and act as a bridge between the physical and digital worlds by using a cyber-physical system (CPS), which is a fundamental component of the smart factory as envisioned by Industry 4.0. CPS is a manufacturing system that uses sensors and software throughout the manufacturing process. Sensors collect and preserve data, which is subsequently analyzed by a computer to make various decisions. These decisions immediately impact the physical system via actuators and human-machine interfaces.
Furthermore, CPS enhances automated machines with the help of industrial IoT. CPS also collects and distributes data from and about the plant’s assets and locations. Therefore, various approaches (cloud computing, AI, and machine learning) have been utilized to analyze this data and make decisions that improve system optimization. CPS and IoT work in tandem to develop smart factories. These competitive factories have decreased downtime, increased efficiency, produced better products, and increased output [21]. A modified version of AntHocNet offers a unique routing mechanism for FANET. Compared to other traditional optimal path selection strategies, ant colony optimization, or metaheuristics in general, it has proven more reliable and effective. This study’s energy stabilizing parameter enhances network performance overall and energy efficiency. According to the simulation findings, the suggested protocol outperforms generic Ant Colony Optimization (ACO) and other established routing protocols used in FANET [25].

3. IoT-LPN Architecture and Its Applications

The Internet of Things employs low-power and lossy networks, known as Low-Power and Lossy Networks (LLN), which may impose limits on infrastructure integration. It enables devices to interact with embedded devices, such as sensors, and can connect many nodes. The traffic variety of LLN systems is also defined; they use point-to-point, point-to-multipoint, and multipoint-to-multipoint architectures. Because of the intricacy of such a network, it is critical to have a routing protocol that serves the purpose. This has been one of the researchers’ primary problems. So, to achieve this goal, the IETF ROLL working group developed RPL, a protocol for LLNs. This protocol is built on a collection-based network in which nodes gather information at regular intervals and transfer it to the collection point. The entire communication architecture is built on low-power wide area networks (LPWA) using unlicensed spectrum (Sigfox, LoRa) and other LPWA technologies proposed by the 3rd Generation Partnership Project (3GPP) that works within a licensed frequency range (NB-IoT, LTE-M). At the same time, the unlicensed spectrum origins made it more challenging to meet the integration goal and increased the possibility of interference and congestion. A licensed frequency range reduces external interference and improves dependability, signal-to-interference-plus-noise ratio (SINR), and security. Similarly, getting a license for these bands comes with a high upfront cost and a regular renewal price. The rise in cost will inevitably be passed on to subscribers, raising capital expenditures for deployment and ongoing operational expenses.
Software-defined networking (SDN) architectural technology increases network performance and monitoring [26,27]. However, the network system is divided into device management, the Internet of Everything (IoE) gateway, and intelligent LPWA with the help of AI and deep learning. IoE services provide cellular communication in the licensed and unlicensed spectrum. Similarly, AI is responsible for smart wireless communication technology using smart applications and IoE services. Some typical IoT applications developed with the help of LPWA are the smart city, track and trace, and smart building applications.

4. IoT-LPN Protocols

Several routing protocols have been developed to improve the efficiency and functionality of networks in IoT systems. Low-powered protocols have been prevalent in the demand for low-powered IoT frameworks as they are efficient and require fewer resources, making them practical and providing many benefits. Table 1 shows the most efficient and popular low-powered and LLN protocols; here, the protocols are characterized by their foundational, low-powered protocols, including RPL, GOAFR, LOADng, SMRF Smart-Hop, and SPEED. GeoRank aims to improve P2P functionality and minimize the number of control messages needed, but it reduces scalability and requires static nodes or GPS-enabled devices. Further, the protocols are mapped with the routing solutions they present, which are P2P support, multicast communication, mobile node support, Quality of Service QoS, and energy efficiency. Table 1 briefly describes each protocol and states its strengths and limitations. The limitations of each protocol highlight grey areas that need attention for improvements. Energy-efficient region-based RPL (ER-RPL) is designed to prevent the network from flooding with peer-to-peer (P2P) route-finding packets, resulting in energy savings and an increase in the P2P packet delivery ratio. P2P-RPL allows for the construction of alternative P2P routes for application routing needs, but it increases the overheads and energy consumption of the network. Bidirectional multicast RPL forwarding (BMRF) improves both upstream and downstream multicast data forwarding. Still, it has a slight increase in memory consumption and can have low productivity due to end-to-end latency and incorrect parameter settings. Stateless Multicast RPL Forwarding SMRF improves RPL’s multicast data forwarding and reduces energy waste but only allows for downward multicast broadcasting and can have high end-to-end latency. mRPL provides quick and reliable mobility support in RPL but increases the length of control messages and the number of control messages sent and received. Backpressure RPL (BRPL) aims to improve RPL’s performance in large-scale networks, but it requires a large amount of memory and has a high end-to-end latency.

5. IoT-LPN Research Challenges

So, here’s a quick rundown of the IoT-LLN challenges. We have seen that the entire communication strategy is based on LPWANs in an IoT-LLN. For LPWANs, scalability is a big challenge in the dense network [41]. It enables several devices to connect to each base station and deploy more stations across the network. Resultantly, structural scalability was already insufficient to meet LPWANs’ use cases, so it required more devices to meet the requirements.
Similarly, most LPWANs are confined to star topologies. In contrast, cellular-based networks (EC-GSM-IoT, NB-IoT, LTE Cat. M1, 5G) depend on wired infrastructure to integrate networks and cover wider regions. So, the improper infrastructure hampers applications such as the agriculture IoT [42]. The scalability of short-range and cellular wireless networks is the subject of current research. Offloading (from the licensed to the unlicensed spectrum), common in cellular-based technologies, is impractical for LPWANs operating in the unlicensed spectrum. To overcome the scalability issues, there is a need to approach some other strategies, such as adaptive data rate MAC protocols, the adaptation of spectrum-efficient modulation techniques, and LPWAN channel diversity exploration. Another significant issue is the collection of LPWAN-relevant data regarding methodologies and performances. Because the data of popular LPWANs (LoRaWAN, SigFox, and NB-IoT) is easily accessible, gathering the data for others is complicated due to fewer references. Nowadays, LPWANs are widespread and there is more demand among users to develop new applications because of the discovery of new methods applicable to their personal lives and business operations.
It is understood that security and privacy are the primary concerns in all fields. However, there has been little emphasis on LPWAN’s security in general. Unauthorized access can easily breach the security of a smart home controller. Using unauthorized access, attackers can steal information and completely control home appliances, causing inconvenience to their users.
Similarly, unauthorized access to smart cities, agriculture, and inter-vehicle communication can cause death and environmental harm. So there is a need for adequate security to authenticate the user or owner efficiently; otherwise, LPWANs are not viable for commercial purposes [43]. Moreover, the essential components of security related to WSN-IoT are discussed in Section 4. These components are considered necessary before implementing any WSN-IoT application; otherwise, it will be vulnerable.

6. Security Objectives of WSN-IOT

WSN-IoT’s security requirements are the essential characteristics necessary to be implemented to fulfill network security requirements. It consists of various preventive measures for the smooth functioning of the IoT framework [4,44,45,46,47,48,49].

6.1. Availability

The nature of keeping the service accessible to clients is accessibility. The goal of accessibility is to provide clients with the ability to obtain services at any time and from any location. It is critical to keep assets regularly available to clients and the organization. Consequently, all clients must be confirmed to combat assaults and risks to the organization. Accessibility may help to avoid blockage circumstances such as framework conflicts and organizational blockages that disrupt the information flow.

6.2. Accountability

Accountability is one of the WSN-IoT framework’s basic properties, but it cannot preempt network attack risks and WSN-IoT vulnerabilities. However, rationing and supporting other security criteria such as data integrity and privacy are imperative. They are utilized to follow any node (device) that sends and receives information to notice and distinguish any obscure activities by providing guidelines for the device, clients, and their actions.

6.3. Confidentiality and Privacy

Confidentiality is otherwise known as privacy To fulfill the security requirements, it is implemented to prevent unauthorized clients from obtaining information. Confidentiality gives recognizable proof of verification and authorization for any sensitive item in the IoT network. Numerous security modules ensure the security of information. Maintaining data secrecy is a critical security requirement as it is vital to keep the framework intruder-proof. Privacy guarantees authorized users’ private data and preempts intruders from accessing network services or stealing any data. Privacy has to be implemented at many levels. Privacy for devices is necessary to maintain physical and data confidentiality, as a network can be exposed to data intrusion. Privacy during data transmission within IoT devices preserves sensitive information. Privacy is crucial during the processing and storing of data, as it is most vulnerable at this point. Privacy of location is intended to prevent the disclosure of the geographical position of IoT devices from intruders.

6.4. Auditing

Auditing is essential; without it, the framework’s criteria for meeting security requirements will not be accomplished. It is used to recognize the security shortcomings of WSN-IoT. Auditing is entirely related to accountability, yet it depends on assessing the framework and its services. Auditing measures how well the WSN-IoT framework meets its network performance criteria and components.

6.5. Integrity

Integrity is one security idea that empowers legitimate and authorized access to modify data according to requirements under limited conditions. Integrity can forestall inner attacks, the most hazardous issue in the network framework, as all users must be validated and authorized with access rights. Notwithstanding, cybercriminals may change information during network communication. Integrity may preempt outside attacks to get to or alter sensitive information.

6.6. Access Control

Network access control is verified by an authorized network administrator for the smooth management of user access. It gives clients/users explicit roles or verified admittance to utilize network assets to view, alter, or modify data. Access control offers certain rights to legitimate users to perform precise work.

6.7. Authentication and Authorization

Authentication is the user’s verification, the primary security necessity, as it recognizes users as validated clients utilizing security frameworks such as cryptography algorithms. After authentication, authorization plays a role in the approval of authentic users to use network services. Table 2 shows the security objectives of WSN-IoT.

7. Security Issues and Challenges in WSN-IOT

7.1. Data Confidentiality

In the field of WSN-IoT and network protection, data secrecy is a critical concern. The client has access to the details and the system management in WSN-IoT frameworks. The IoT device should check that the user or machine has been granted access to the system [50]. Approval determines whether a person or device can receive assistance after presenting distinguishing evidence. Access management restricts property access by granting or refusing permission based on a series of laws. Creating a secure connection between devices and services necessitates approval and access control. The main point is creating a specific relationship between other devices and administrations, which requires support and access control. The most critical problem in this situation is making access management regulations easy to develop and understand. This is a vital issue in the Internet of Things; many clients, objects, and devices must verify each other through trustworthy administrations to gain system access. The problem is to find a solution for safely dealing with the client’s personality, items, and gadgets [51,52].

7.2. Privacy

Privacy and confidentiality are significant issues in WSN-IoT gadgets and frameworks under the IoT systems’ universal character. Entities are linked, and information is conveyed and exchanged via the Internet, delivering client protection and causing various risks to sensitive information in many ways. So that the exploration issues are satisfied, knowledge acquisition security is just as important as information sharing security. Information protection is one of the primary uncertainties in the WSN-IoT because of the high chance of security vulnerabilities, such as sniffing and spoofing, unapproved access, data altering, and forgery with the unapproved altering of IoT nodes [53]. An aggressor can exploit numerous WSN-IoT administrations and applications to store sensitive and personal data, and if they are exposed, unstable and sensitive data can be exposed to outsiders [50,54].

7.3. Trust Management

In WSN-IoT frameworks, there is a consequence of regional conventions, resources, and limits of distinctive devices, which is a considerable assessment of IoT trust management. Trust is a significant part of WSN-IoT security, data security, administration, applications, and client protection. Trust is a fundamental component of communications among WSN-IoT devices to trade and manage information. IoT layers have a unique assortment of gadgets. Every gadget creates an enormous amount of information vulnerable to various assaults, dangers, and issues. These issues and attacks have the potential to spread across all IoT layers. As a result, the accuracy of information and administration will be reduced [53,55].
Trust management in IoT ought to accomplish the accompanying objectives of having faith in IoT nodes and choices to help one another. It should moderate client security, information transmission, and trust correspondence, as indicated by the IoT system’s strategy. It should increase the superiority of IoT services, framework security, and reliability [56,57,58]. Furthermore, clients should not be aware of it.

7.4. Vulnerabilities

Vulnerabilities are flaws, and flaws in a system or plan that allow attackers to run commands, access unapproved data, and trigger DoS. In WSN-IoT implementations, bugs may be identified in several locations. They can be weaknesses in the client’s devices and flaws in the system’s hardware, code, or techniques used in the methods [59]. Hardware and software are the two fundamental components of IoT architecture. Both have configuration flaws daily. Hardware loopholes are challenging to detect and repair, regardless of whether the vulnerabilities were identified due to equipment similarities and interoperability, or the effort required to overcome them [16]. They can be found in working systems, application programming, and control programs, such as communications conventions and software changes. A significant cause of exposure is human error. The consequences of not understanding the necessities of teamwork, requirement engineering, testing and validation, security assessment, data integrity, and privacy can cause the framework to fail [60].

7.5. Security

Physical, network, and data protection are significant issues in WS-IoT frameworks. The growth in the number of connected devices on communication networks in the IoT [61] leads to increased security risks and new security challenges. Protection risks are acquired by any node that connects to the Internet, whether it is a limited or smart device [62]. On the Internet of Things, you can find almost any security issue. As a result, a few primary security criteria in the IoT, such as acceptance, confirmation, classification, confidence, and information security, should be considered.
Consequently, things should be safely associated with their assigned networks, flexibly controlled, authenticated, and authorized [63]. Physical security tampering, stealing, and attacks are performed on IoT devices. The attacker can grab and steal a node or exchange it with a malicious node, causing harm to the whole network; moreover, the intruder can break the node or steal valuable or peculiar information that could be used against the system [64]. Maintaining a secure network means stopping intruders from finding their way into the system and causing severe damage by sending malware, sniffing, spoofing, stealing sensitive data, man-in-the-middle eavesdropping, or performing DoS attacks. Outsiders or employees within the organization can be intruders. Data security entails ensuring data integrity and privacy while data is transferred within the framework. Security is a method of protecting information from tyrannical forces or unauthorized access. IoT security depends heavily on information security, also known as computer security. [65].

7.6. Interoperability

A fractured landscape hampers users’ value with patented IoT technical execution. Even if complete interoperability across goods and services is not always possible, consumers cannot like purchasing products and services that lack versatility and are subject to distributor lock-in [66]. Poorly designed WSN-IoT devices can negatively impact the networking resources to which they are linked. Another significant factor is cryptography, which has been used for years to protect against security vulnerabilities in several applications. A single protection application cannot have a suitable defense mechanism against attacks [67]. As a result, various levels of security are required to counteract WSN-IoT authentication risks. Hacks could be avoided by designing more sophisticated security features and incorporating them into devices. This evasion occurs because consumers purchase goods with good security features to guard against vulnerabilities. Any of the steps suggested to guarantee that the IoT is safe are cyber-security mechanisms [68].

7.7. Identification, Authentication, and Authorization

Nodes are the IoT building blocks that need to be defined in the network or physically. IoT networks cover a large area to track the transmission between devices and acquire access to the entire network. The total naming layout of nodes is unsafe without data consistency [69]. DNS cache positioning assaults may wreak havoc on the network’s overall performance. For each target to be uniquely identified, node identification is necessary. The false node should be detected efficiently since each mark indicates a potential attack location. The network must be defended against physical or logical attacks on devices and their data. Authentication requires checking the identity of the nodes [70]. Undeniably, if contact with the correct node is not ensured, the secrecy and fairness of the messages exchanged cannot be guaranteed. An attacker can access the network and insert erroneous statements if the authentication is poorly handled. It is challenging to ensure authentication because of the wireless media’s existence and the nature of sensor networks. Authentication involves confirming that you are who you claim to be. This is commonly achieved using an authentication method based on a username and password [71]. This scheme, though, is not safe enough. Passwords typically need to be updated regularly, and unattended computers should not be used. Authentication also requires the authentication method for both the sender and the recipient to validate the messages’ origin [72].

7.8. Attacks

“The IoT frameworks hold a vast volume of information; the network layer is particularly vulnerable to attacks, creating much network congestion.” The network’s data integrity and authentication are critical security problems [73]. A significant problem is an attack by hackers and rogue nodes that damage the network’s computers. The current security restrictions applied to IoT render them susceptible to attacks. Based on the particular design and features of the WSNs, these attacks usually follow new tactics [74]. Indeed, in the Open System Interconnection (OSI) model, attacks can be characterized according to the targeted protocol layer. Another method of grouping classifies assaults depending on the existence of the offender. We may also describe attacks as internal or external, passive or active. Nodes outside the network execute external attacks [75].
Passive threats are confined exclusively to the study, capture, and data snooping of traffic. Active attacks, however, usually exploit the data by disrupting the connection between the nodes and affecting the nodes’ availability, so attacks can also be carried out [76]. On the other hand, internal attacks are initiated by valid network nodes that function against their requirements. Table 3 shows the security issues and challenges in IoT.

8. Categories of Network Attacks in WSN-IoT Layers

Network attacks can be classified based on the specific IoT layer they hit. However the categories of network attacks on IoT layers are Physical. Network, Software and Data Attacks [77].

8.1. Physical Layer Attacks

(1)
Tampering
A denial of service (DoS) attack occurs when network tampering detaches or changes the existing network. The attacker can replace the actual node with a dummy or malicious node. After demonstrating the physical theft of devices, the attacker may extract sensitive data from the captured devices to launch other attacks in the WSN-IoT framework [78].
(2)
Malicious code injection attack
Code injection or remote code execution occurs when an attacker utilizes a software input validation error to construct and execute malicious code, known as code injection or remote code execution [79]. The server-side interpreter injects and executes code into the language of the targeted application. Any software that takes invalidated input directly is vulnerable to code injection, and online apps are a common target for hackers [80].
(3)
RF interference jamming
To perform DoS attacks on Radio Frequency Identification (RFID) tags/sensor nodes, an attacker generates and delivers noise signals over radio frequency [17]/WSN signals [81]. All devices communicate via radio and operate on a wireless signal [17]. If a more powerful signal overshadows such signals, a “stronger” signal that drowns out the standard wireless frequency is jamming.
(4)
Fake node injection attack
Many infected nodes collaborate to create a bogus report and insert it into the network in false node injection attacks. An attacker places a faulty node between them to monitor the data transfer between two valid network nodes. Since they only validate a fixed number of message authentication codes (MACs) held in the files, these attacks are brutal to defend against [82].
(5)
Sleep denial attack
Denial-of-sleep (DoSL) is a denial-of-service attack that prevents sensor nodes powered by batteries from sleeping. By feeding incorrect inputs to the battery-powered computers, the attacker makes them alert. As a result, their batteries are exhausted, forcing them to shut down and causing network capacity to be disrupted [83].
(6)
Side-channel attack
A side-channel attack is a computer security attack that relies on knowledge obtained from the execution of a computer system rather than flaws in the algorithm itself. The attacker obtains the encryption keys using timing, control, and fault attacks on the system’s computers [57].
(7)
Permanent denial of service attack (PDoS)
Denial of service through hardware sabotage is known as a permanent denial of service (PDoS) attack. Phishing is a general term for one way of launching a PDoS attack. An attacker damages a computer or hardware during such an attack, making the device or whole machine worthless [84].

8.2. Network Layer Attacks

(1)
Traffic analysis attacks
These attacks, such as eavesdropping attacks, rely on what the attacker hears in the network. Furthermore, without getting close to the network, the intruder will sniff confidential information or data flowing to and from the computers. However, the perpetrator must sacrifice the actual data in this attack [56].
(2)
Wormhole attack
A wormhole attack is when an attacker creates a low-latency connection between two sensor nodes to mislead them, which impacts network routing, and then tunnels packets from one point to another across this link [85].
(3)
RFID spoofing and unauthorized access
Because of the lack of proper authentication protocols, an attacker can read, alter, or erase data stored on RFID nodes. On the other hand, RFID spoofing entails reading and recording a data transmission from an RFID tag without being detected. When the data is re-sent, the original tag’s Tag Identifier (TID) is used, making it appear accurate [86].
(4)
Sybil attack
A peer-to-peer network attack is one in which a node executes several identities simultaneously, violating credibility schemes’ legitimacy and control. In this case, a single malicious node takes on several roles (known as Sybil nodes) and transfers them around the network [87].
(5)
Routing information attack
The routing information attack is a defunct network routing tactic to launch distributed denial of service (DDoS) reflection attacks against several targets, including direct attacks. The attacker spoofs or alters routing information and causes annoyance through events such as routing loops, error messages, and so on [88].
(6)
Man-in-the-middle attack
The attack happens when an intruder introduces himself into a conversation between a receiver and an application, either to listen in or impersonate one of the participants. An attacker can listen in on or exploit an exchange between two IoT devices to access their private data while making it seem as if the conversation is expected [89].
(7)
Selective forwarding
In this network attack, malicious nodes fail to facilitate data packets to prevent them from being transmitted to other nodes. All messages sent to other nodes in the network can be altered, dropped, or selectively forwarded by the malicious node. Consequently, the information sent to the intended receiver is inadequate [14].
(8)
Replay attack
When a cybercriminal listens in on a protected network file, intercepts it, and fraudulently delays or re-sends it to the target, a DDoS assault results. A DoS assault is launched using a distributed strategy. [48].
(9)
Blackhole attack
The attack in which all packets (control and data) routed through it are dropped by the malicious node. However, it is considered a DoS attack, but in conjunction with a blackhole attack and rank or sinkhole attacks, it becomes exceptionally hazardous [90].
(10)
Denial/distributed denial of service attack
DDoS is a distributed denial of service (DDoS) attack launched by several sites simultaneously. A DDoS attack makes a web resource inaccessible to visitors by overloading the expected URL with more requests than the server can handle. Unlike a DoS attack, a DDoS attack requires multiple infected nodes to flood a single target with messages or connection requests to slow down or even crash the device server or network resource [91,92].

8.3. Software Attacks

(1)
Worms, viruses, Trojan horses
An adversary can infect a device with malicious software to tamper with data, steal information, or even conduct a denial-of-service attack. When you download a file or perform an update, a computer worm infects your computer. After that, the worm replicates and attacks other computers on the network. The Trojan horse infects your machine by downloading and opening a file. Unlike viruses, most Trojans are only present on your computer. When you email out files, a virus infects the host files on your machine and spreads to other users [93,94].
(2)
Malware
Malware is any software that may impair your computer equipment’s output and functionality, either locally or remotely. Malware might contaminate the cloud or data centers if data from IoT devices were infected [95].

8.4. Data Attacks

(1)
Data breach
A data breach occurs when private, secure, or confidential information is stored, distributed, accessed, stolen, or used by someone who cannot do so. Memory leakage is the disclosure of personal, critical, or confidential information [17].
(2)
Unauthorized access
Unauthorized access occurs when a person uses another person’s account or other methods to access a website, software, server, facility, or other equipment. Giving access to registered users and refusing entry to unauthorized users is what access management entails. Malicious users may obtain data control or privileged access through unauthorized access [96].
(3)
Data inconsistency
In the WSN-IoT, “data inconsistency” is a phrase used to describe an attack on data honesty that results in data inconsistency in transit or data kept in a central database [56].

9. WSN-IoT Security Mechanism in Industry 4.0

Numerous studies have been conducted on implementing effective security mechanisms in IR 4.0 applications. The research is mainly limited to research and development, which is why they lack real-time implementations; other limitations are security, performance, and testing. Most frameworks are based on academic research, so no real-time testing was conducted to evaluate their performance. Table 4 depicts the existing work related to security mechanisms and security solutions implemented by various researchers in WSN-IoT and maps these novel contributions with their limitations, which highlights the weak points of specific work to improve or overcome such limitations in the future or for the understanding of readers and researchers.

10. Existing Literature

Many researchers have proposed their novel work in the domain of WSN-IoT. Table 5 shows the contributions of the recent work conducted by several researchers. The table states the contribution of their work and the limitations in terms of the research gaps of the specific research. The table identifies the research gaps, which helps spot the regions where further research and development must be conducted. The most significant research gaps are in the context of security, implementation, real-time processing, and evaluation. These gaps can provide future areas of work in this domain.

11. Comparative Analysis

Several approaches [44,50,57,58,59] have been developed in the literature related to routing mechanisms and protocols. Table 6 shows a comparative analysis, which shows that our proposed work discusses several factors, whereas others only discuss a few. Most existing works have not discussed anomaly types, challenges, advantages, and restraints regarding specific techniques. Information about attacks is also not addressed by most of the researchers. Finally, the total score has been calculated to measure the highest factor rate for computing purposes. However, this work is novel in terms of the factors mentioned earlier, as other existing research has not been as comprehensive work, especially in terms of IoT-LPN research challenges, LPN architecture, and LPN application.

12. Conclusions and Findings

The WSN-IoT is recognized as a technology that has already had economic consequences and generated the hope that different sectors’ competitive domains will change dramatically. In the manufacturing industry, sensor-equipped machines can collect data from the production system in real-time and use it to store and synchronize real-world data on the cyber side. It is possible to continually develop and synchronize with the natural world by changing data in real-time and contrasting cyberspace with physical space simultaneously. IIoT, which acts as an inevitable IR 4.0 infrastructure, imposes high reliability, low latency, scalability, energy consumption, and security requirements. However, many low-power wireless specifications and infrastructure protocols aim to meet and conform to those criteria. The emphasis is on addressing the current problems and pursuing future exploration avenues to discover potential solutions. In particular, the “smart” side of IR 4.0 is focused on the availability of self-awareness, self-management, and self-healing intelligent networks. That includes technical concerns such as real-time cellular networking, 5G cellular networks, shallow power usage, and industrial cyber-security. The most trending WSN-IoT security mechanism techniques are blockchain, cryptography algorithms, and AI techniques. These can be an excellent solution to this problem and provide accuracy, autonomy, security, and efficient results.
This article aims to provide a detailed overview of WSN-IoT’s characteristics and aspects for low-powered IoT mechanisms; the paper throws light on the research gaps, including WSN-IoT issues and challenges. According to our findings, researchers have proposed WSN-IoT security mechanisms. However, the significant limitations are that these solutions are still under study and in progress. As previously stated, most of the work conducted so far is in its early stages, is only for research or academic purposes, and does not involve working in real-time scenarios. Considerable research has been for educational purposes and lacks proper deployment on a large scale and testing in the natural environment. Furthermore, frameworks’ functional and large-scale deployment are significant limitations in the context of current research and contributions.

13. Future Work

The current low-powered WSN-IoT protocols also have various limitations. Further, the work so far lacks implementation strictness and real-time security techniques or measurement parameters, which can help identify the security level and provide an analysis. These limitations and research gaps have created a whole new space and opportunity for researchers to develop new solutions. New efficient security mechanisms and testing techniques are needed to ensure these security techniques’ integrity and quality. Furthermore, in the future, this also requires improvements on the work already undertaken as there is a requirement for real-time and large-scale systems.

Author Contributions

Formal analysis, M.Z.H.; Investigation, M.Z.H.; Methodology, M.Z.H.; Visualization, M.Z.H.; Writing—original draft, M.Z.H.; Writing—review & editing, M.Z.H. Project administration, Z.M.H.; Funding acquisition, Z.M.H.; Supervision, Z.M.H. All authors have read and agreed to the published version of the manuscript.

Funding

This work was supported by Geran Putra Berimpak Universiti Putra Malaysia, Vote Number 9659400. Our sincere thanks to Geran Putra Berimpak Universiti Putra Malaysia for their support.

Data Availability Statement

Not applicable.

Conflicts of Interest

The authors declare no conflict of interest.

References

  1. Evans, D. The Internet of Things: How the Next Evolution of the Internet Is Changing Everything. 2011. Available online: http://www.cisco.com/web/about/ac79/docs/innov/IoT_IBSG_0411FINAL (accessed on 11 December 2022).
  2. Lakshmi, I. The Internet of Things (IoT) and Cyber Security: Vulnerabilities, Threats, Intruders and Attacks. IOSR J. Comput. Eng. (IOSR-JCE) 2017, 19, 85–94. [Google Scholar]
  3. Libelium. 50 Sensor Applications for a Smarter World. 2020. Available online: https://www.libelium.com/libeliumworld/top-50-iot-sensor-applications-ranking (accessed on 11 December 2022).
  4. Jimenez, J.; Koster, M.; Tschofenig, H. IPSO smart objects. In a Position paper for the IOT Semantic Interoperability Workshop, 2016.
  5. Sethi, P.; Sarangi, S.R. Internet of things: Architectures, protocols, and applications. J. Electr. Comput. Eng. 2017, 2017, 9324035. [Google Scholar] [CrossRef] [Green Version]
  6. Statista. Several Connected Devices Worldwide 2030. 2020. Available online: https://www.statista.com/statistics/802690/worldwide-connected-devices-by-access-technology (accessed on 11 December 2022).
  7. Dragomir, D.; Gheorghe, L.; Costea, S.; Radovici, A. A survey on secure communication protocols for IoT systems. In Proceedings of the 2016 International Workshop on Secure Internet of Things (SIoT), Heraklion, Greece, 26–30 September 2016; pp. 47–62. [Google Scholar]
  8. Pishva, D. Internet of Things: Security and privacy issues and possible solution. In Proceedings of the 2017 19th International Conference on Advanced Communication Technology (ICACT), PyeongChang, Republic of Korea, 19–22 February 2017; pp. 797–808. [Google Scholar]
  9. Huawei. Tap into New Growth with Intelligent Connectivity. 2018. Available online: https://www.huawei.com/minisite/gci/assets/files/gci_2018_whitepaper_en.pdf?v=20180716 (accessed on 11 December 2022).
  10. Vega, M. Internet of things statistics facts & predictions [2020’s update]. Retrieved Novemb. 2020, 30, 2020. [Google Scholar]
  11. Mukherjee, B. Iot Statistics for 2020. Available online: https://www.stoodnt.com/blog/iot-statistics-for-2020 (accessed on 8 November 2020).
  12. Tan, X.; Su, S.; Huang, Z.; Guo, X.; Zuo, Z.; Sun, X.; Li, L. Wireless sensor networks intrusion detection based on SMOTE and the random forest algorithm. Sensors 2019, 19, 203. [Google Scholar] [CrossRef] [PubMed] [Green Version]
  13. Ostadal, R.; Matyas, V.; Svenda, P.; Nemec, L. Crowdsourced security reconstitution for wireless sensor networks: Secrecy amplification. Sensors 2019, 19, 5041. [Google Scholar] [CrossRef] [Green Version]
  14. Gendreau, A.A.; Moorman, M. Survey of intrusion detection systems towards an end-to-end secure internet of things. In Proceedings of the 2016 IEEE 4th International Conference on the Future Internet of Things and Cloud (FiCloud), Vienna, Austria, 22–24 August 2016; pp. 84–90. [Google Scholar]
  15. Lee, C.-C. Security and privacy in wireless sensor networks: Advances and challenges. Sensors 2020, 20, 744. [Google Scholar] [CrossRef] [Green Version]
  16. Sicari, S.; Rizzardi, A.; Grieco, L.A.; Coen-Porisini, A. Security, privacy and trust in Internet of Things: The road ahead. Comput. Netw. 2015, 76, 146–164. [Google Scholar] [CrossRef]
  17. Zhou, J.; Cao, Z.; Dong, X.; Vasilakos, A.V. Security and privacy for cloud-based IoT: Challenges. IEEE Commun. Mag. 2017, 55, 26–33. [Google Scholar] [CrossRef]
  18. Alansari, Z.; Prasanth, A.; Belgaum, M. A comparison analysis of fault detection algorithms in wireless sensor networks. In Proceedings of the 2018 International Conference on Innovation and Intelligence for Informatics, Computing, and Technologies (3ICT), Sakhier, Bahrain, 18–20 November 2018; pp. 1–6. [Google Scholar] [CrossRef]
  19. Lee, T.H.; Xie, X.S.; Chang, L. RSSI-based IPv6 routing metrics for RPL in low-power and lossy networks. In Proceedings of the 2014 IEEE International Conference on Systems, Man, and Cybernetics (SMC), San Diego, CA, USA, 5–8 October 2014; pp. 1714–1719. [Google Scholar]
  20. Nafchi, M.Z.; Mohelská, H. Organizational culture as an indication of readiness to implement industry 4.0. Information 2020, 11, 174. [Google Scholar] [CrossRef] [Green Version]
  21. Oluyisola, O.E.; Sgarbossa, F.; Strandhagen, J.O. Smart production planning and control: Concept, use-cases and sustainability implications. Sustainability 2020, 12, 3791. [Google Scholar] [CrossRef]
  22. Müller, J.M.; Buliga, O.; Voigt, K.-I. Fortune favors the prepared: How SMEs approach business model innovations in Industry 4.0. Technol. Forecast. Soc. Chang. 2018, 132, 2–17. [Google Scholar] [CrossRef]
  23. Posada, J.; Toro, C.; Barandiaran, I.; Oyarzun, D.; Stricker, D.; De Amicis, R. Visual computing as a key enabling technology for industrie 4.0 and industrial internet. IEEE Comput. Graph. Appl. 2015, 35, 26–40. [Google Scholar] [CrossRef] [PubMed]
  24. Lange, S.; Pohl, J.; Santarius, T. Digitalization and energy consumption. Does ICT reduce energy demand? Ecol. Econ. 2020, 176, 106760. [Google Scholar] [CrossRef]
  25. Khan, I.U.; Qureshi, I.M.; Aziz, M.A.; Cheema, T.A.; Shah, S.B.H. Smart IoT Control-Based Nature Inspired Energy Efficient Routing Protocol for Flying Ad Hoc Network (FANET). IEEE Access 2020, 8, 56371–56378. [Google Scholar] [CrossRef]
  26. Priyadarsini, M.; Bera, P. Software-defined networking architecture, traffic management, security, and placement: A survey. Comput. Netw. 2021, 192, 108047. [Google Scholar] [CrossRef]
  27. Radel, J. Organizational Change and Industry 4.0 (id4). A perspective on possible future challenges for Human Resources Management. Ind. Von Morgen 2017, 5, 32–39. [Google Scholar]
  28. Barriquello, C.H.; Denardin, G.W.; Campos, A. A geographic routing approach for IPv6 in large-scale low-power and lossy networks. Comput. Electr. Eng. 2015, 45, 182–191. [Google Scholar] [CrossRef]
  29. Zhao, M.; Ho, I.W.-H.; Chong, P.H.J. An energy-efficient region-based RPL routing protocol for low-power and lossy networks. IEEE Internet Things J. 2016, 3, 1319–1333. [Google Scholar] [CrossRef] [Green Version]
  30. Liu, B.; Anand, S.V.; Perkins, C.E.; Anamalamudi, S.; Zhang, M. Asymmetric AODV-P2P-RPL in Low-Power and Lossy Networks (LLNs) 2019.
  31. Lorente, G.G.; Lemmens, B.; Carlier, M.; Braeken, A.; Steenhaut, K. BMRF: Bidirectional multicast RPL forwarding. Ad Hoc Netw. 2017, 54, 69–84. [Google Scholar] [CrossRef] [Green Version]
  32. Gaddour, O.; Koubâa, A.; Abid, M. Quality-of-service aware routing for static and mobile IPv6-based low-power and lossy sensor networks using RPL. Ad Hoc Netw. 2015, 33, 233–256. [Google Scholar] [CrossRef]
  33. Fotouhi, H.; Moreira, D.; Alves, M. mRPL: Boosting mobility in the Internet of Things. Ad Hoc Netw. 2015, 26, 17–35. [Google Scholar] [CrossRef]
  34. Bouaziz, M.; Rachedi, A.; Belghith, A.; Berbineau, M.; Al-Ahmadi, S. EMA-RPL: Energy and mobility aware routing for the Internet of Mobile Things. Future Gener. Comput. Syst. 2019, 97, 247–258. [Google Scholar] [CrossRef]
  35. Qiu, T.; Lv, Y.; Xia, F.; Chen, N.; Wan, J.; Tolba, A. ERGID: An efficient routing protocol for emergency response Internet of Things. J. Netw. Comput. Appl. 2016, 72, 104–112. [Google Scholar] [CrossRef]
  36. Kelsey, R.; Hui, J. Multicast Protocol for Low-Power and Lossy Networks (MPL), IETF, RFC 7731, 2016.
  37. Fadeel, K.Q.A.; El Sayed, K. ESMRF: Enhanced stateless multicast RPL forwarding for IPv6-based low-power and lossy networks. In Proceedings of the 2015 Workshop on IoT challenges in Mobile and Industrial Systems, Florence, Italy, 18 May 2015; pp. 19–24. [Google Scholar]
  38. Tahir, Y.; Yang, S.; McCann, J. BRPL: Backpressure RPL for high-throughput and mobile IoTs. IEEE Trans. Mob. Comput. 2017, 17, 29–43. [Google Scholar] [CrossRef] [Green Version]
  39. Bouaziz, M.; Rachedi, A.; Belghith, A. EKF-MRPL: Advanced mobility support routing protocol for internet of mobile things: Movement prediction approach. Future Gener. Comput. Syst. 2019, 93, 822–832. [Google Scholar] [CrossRef]
  40. Taghizadeh, S.; Bobarshad, H.; Elbiaze, H. CLRPL: Context-aware and load balancing RPL for IoT networks under heavy and highly dynamic load. IEEE Access 2018, 6, 23277–23291. [Google Scholar] [CrossRef]
  41. De Poorter, E.; Hoebeke, J.; Strobbe, M.; Moerman, I.; Latré, S.; Weyn, M. Sub-GHz LPWAN network coexistence, management, and virtualization: An overview and open research challenges. Wirel. Pers. Commun. 2017, 95, 187–213. [Google Scholar] [CrossRef] [Green Version]
  42. FarmBeats: AI, Edge & IoT for Agriculture. 2015. Available online: https://www.microsoft.com/en-us/research/project/farmbeats-iot-agriculture/ (accessed on 11 December 2022).
  43. Buurman, B.; Kamruzzaman, J.; Karmakar, G.; Islam, S. Low-power wide-area networks: Design goals, architecture, suitability to use cases and research challenge. IEEE Access 2020, 8, 17179–17220. [Google Scholar] [CrossRef]
  44. Ferrag, M.A.; Maglaras, L.A.; Janicke, H.; Jiang, J.; Shu, L. Authentication protocols for the internet of things: A comprehensive survey. Secur. Commun. Networks 2017, 2017, 6562953. [Google Scholar] [CrossRef] [Green Version]
  45. Iqbal, M.A.; Olaleye, O.G.; Bayoumi, M.A. A review on internet of things (IoT): Security and privacy requirements and the solution approach. Glob. J. Comput. Sci. Technol. 2016, 16, 1–9. [Google Scholar]
  46. Ravindran, R.; Yomas, J.; Sebastian, E.J. IoT: A review on security issues and measures. Int. J. Eng. Sci. Technol. 2015, 5, 348–351. [Google Scholar]
  47. Yan, Z.; Zhang, P.; Vasilakos, A.V. A survey on trust management for Internet of Things. J. Netw. Comput. Appl. 2014, 42, 120–134. [Google Scholar] [CrossRef]
  48. Sun, Y.; Apostolaki, M.; Birge-Lee, H.; Vanbever, L.; Rexford, J.; Chiang, M.; Mittal, P. Mittal Securing internet applications from routing attacks. Commun. ACM 2021, 64, 86–96. [Google Scholar] [CrossRef]
  49. Rajasekar, V.; Rajkumar, S. A Study on Impact of DIS flooding Attack on RPL-based 6LowPAN Network. Microprocess. Microsyst. 2022, 94, 104675. [Google Scholar] [CrossRef]
  50. Dalipi, F.; Yayilgan, S.Y. Security and privacy considerations for iot application on smart grids: Survey and research challenges. In Proceedings of the 2016 IEEE 4th International Conference on Future Internet of Things and Cloud Workshops (FiCloudW), Vienna, Austria, 22–24 August 2016; pp. 63–68. [Google Scholar]
  51. Fink, G.A.; Zarzhitsky, D.V.; Carroll, T.E.; Farquhar, E.D. Security and privacy grand challenges for the Internet of Things. In Proceedings of the 2015 International Conference on Collaboration Technologies and Systems (CTS), Atlanta, GA, USA, 1–5 June 2015; pp. 27–34. [Google Scholar]
  52. Henze, M.; Hermerschmidt, L.; Kerpen, D.; Häußling, R.; Rumpe, B.; Wehrle, K. A comprehensive approach to privacy in the cloud-based Internet of Things. Future Gener. Comput. Syst. 2016, 56, 701–718. [Google Scholar] [CrossRef] [Green Version]
  53. Hossain, M.M.; Fotouhi, M.; Hasan, R. Towards an analysis of security issues, challenges, and open problems in the internet of things. In Proceedings of the 2015 IEEE World Congress on Services, New York, NY, USA, 27 June–2 July 2015; pp. 21–28. [Google Scholar]
  54. Ling, Z.; Liu, K.; Xu, Y.; Jin, Y.; Fu, X. An end-to-end view of iot security and privacy. In Proceedings of the GLOBECOM 2017—2017 IEEE Global Communications Conference, Singapore, 4–8 December 2017; pp. 1–7. [Google Scholar]
  55. Sicari, S.; Rizzardi, A.; Miorandi, D.; Coen-Porisini, A. REATO: REActing TO Denial of Service attacks in the Internet of Things. Comput. Netw. 2018, 137, 37–48. [Google Scholar] [CrossRef]
  56. Abomhara, M. Department of Information and Communication Technology, University of Agder, Norway, GM Køien, and Department of Information and Communication Technology, University of Agder, Norway, Cyber security and the internet of things: Vulnerabilities, threats, intruders and attacks. J. Cyber Secur. Mobil. 2015, 4, 65–88. [Google Scholar]
  57. Alaba, F.A.; Othman, M.; Hashem, I.A.T.; Alotaibi, F. Internet of Things security: A survey. J. Netw. Comput. Appl. 2017, 88, 10–28. [Google Scholar] [CrossRef]
  58. Zhou, J.; Dong, X.; Cao, Z.; Vasilakos, A.V. Secure and privacy-preserving protocol for cloud-based vehicular DTNs. IEEE Trans. Inf. Forensics Secur. 2015, 10, 1299–1314. [Google Scholar] [CrossRef]
  59. Granjal, J.; Monteiro, E.; Silva, J.S. Security for the internet of things: A survey of existing protocols and open research issues. IEEE Commun. Surv. Tutor. 2015, 17, 1294–1312. [Google Scholar] [CrossRef]
  60. Ranjan, A.K.; Somani, G. Access control and authentication in the internet of things environment. In Connectivity Frameworks for Smart Devices; Springer: Berlin/Heidelberg, Germany, 2016; pp. 283–305. [Google Scholar]
  61. Iotforall. The Role of IoT and Industry 4.0 in Creating Digital Factories of Tomorrow. 2022. Available online: https://www.iotforall.com/the-role-of-iot-and-industry-4-0-in-creating-digital-factories-of-tomorrow (accessed on 11 December 2022).
  62. Zaldivar, D.; Lo, A.T.; Muheidat, F. Investigating the security threats on networked medical devices. In Proceedings of the 2020 10th Annual Computing and Communication Workshop and Conference (CCWC), Las Vegas, NV, USA, 6–8 January 2020; pp. 0488–0493. [Google Scholar]
  63. Lo’ai, A.T.; Somani, T.F. More secure Internet of Things using robust encryption algorithms against side-channel attacks. In Proceedings of the 2016 IEEE/ACS 13th International Conference of Computer Systems and Applications (AICCSA), Agadir, Morocco, 29 November–2 December 2016; pp. 1–6. [Google Scholar]
  64. Liu, X.; Zhao, M.; Li, S.; Zhang, F.; Trappe, W. A security framework for the internet of things in the future internet architecture. Future Internet 2017, 9, 27. [Google Scholar] [CrossRef] [Green Version]
  65. Dabbagh, M.; Rayes, A. Internet of things security and privacy. In The Internet of Things from Hype to Reality; Springer: Berlin/Heidelberg, Germany, 2019; pp. 211–238. [Google Scholar]
  66. Perera, C.; Ranjan, R.; Wang, L.; Khan, S.U.; Zomaya, A.Y. Big data privacy in the internet of things era. IT Prof. 2015, 17, 32–39. [Google Scholar] [CrossRef] [Green Version]
  67. Ziegeldorf, J.H.; Morchon, O.G.; Wehrle, K. Privacy in the Internet of Things: Threats and challenges. Secur. Commun. Netw. 2014, 7, 2728–2742. [Google Scholar] [CrossRef] [Green Version]
  68. Vasilomanolakis, E.; Daubert, J.; Luthra, M.; Gazis, V.; Wiesmaier, A.; Kikiras, P. On the security and privacy of internet of things architectures and systems. In Proceedings of the 2015 International Workshop on Secure Internet of Things (SIoT), Vienna, Austria, 21–25 September 2015; pp. 49–57. [Google Scholar]
  69. Frustaci, M.; Pace, P.; Aloi, G.; Fortino, G. Evaluating critical security issues of the IoT world: Present and future challenges. IEEE Internet Things J. 2017, 5, 2483–2495. [Google Scholar] [CrossRef]
  70. Gai, K.; Choo, K.-K.R.; Qiu, M.; Zhu, L. Privacy-preserving content-oriented wireless communication in internet-of-things. IEEE Internet Things J. 2018, 5, 3059–3067. [Google Scholar] [CrossRef]
  71. Glissa, G.; Rachedi, A.; Meddeb, A. A secure routing protocol based on RPL for Internet of Things. In Proceedings of the 2016 IEEE Global Communications Conference (GLOBECOM), Washington, DC, USA, 4–8 December 2016; pp. 1–7. [Google Scholar]
  72. Boubiche, D.E.; Athmani, S.; Boubiche, S.; Toral-Cruz, H. Cybersecurity issues in wireless sensor networks: Current challenges and solutions. Wirel. Pers. Commun. 2021, 117, 177–213. [Google Scholar] [CrossRef]
  73. Safdar, Z.; Farid, S.; Pasha, M.; Safdar, K. A security model for iot based systems. Tech. J. 2017, 22. [Google Scholar]
  74. Saibabu, G.; Jain, A.; Sharma, V. Security issues and challenges in IoT routing over wireless communication. Int. J. Innov. Technol. Explor. Eng. 2020, 9, 1572–1580. [Google Scholar]
  75. Desai, D.; Upadhyay, H. Security and privacy consideration for the internet of things in smart home environments. Int. J. Eng. Res. Dev. 2014, 10, 73–83. [Google Scholar]
  76. Wittenberg, C. Cause the trending Industry 4.0 in the automated industry to new requirements on user interfaces? In Proceedings of the International Conference on Human-Computer Interaction, Bamberg, Germany, 14–18 September 2015; pp. 238–245. [Google Scholar]
  77. Singh, M.; Rajan, M.; Shivraj, V.; Balamuralidhar, P. Secure mqtt for the internet of things (iot). In Proceedings of the 2015 Fifth International Conference on Communication Systems and Network Technologies, Gwalior, MP, India, 4–6 April 2015; pp. 746–751. [Google Scholar]
  78. Sengupta, J.; Ruj, S.; Bit, S.D. A comprehensive survey on attacks, security issues and blockchain solutions for IoT and IIoT. J. Netw. Comput. Appl. 2020, 149, 102481. [Google Scholar] [CrossRef]
  79. Herceg, I.V.; Kuč, V.; Mijušković, V.M.; Herceg, T. Challenges and driving forces for industry 4.0 implementation. Sustainability 2020, 12, 4208. [Google Scholar] [CrossRef]
  80. Adat, V.; Gupta, B. A DDoS attack mitigation framework for internet of things. In Proceedings of the 2017 International Conference on Communication and Signal Processing (ICCSP), Chennai, India, 6–8 April 2017; pp. 2036–2041. [Google Scholar]
  81. Ahemd, M.M.; Shah, M.A.; Wahid, A. IoT security: A layered approach for attacks & defenses. In Proceedings of the 2017 International Conference on Communication Technologies (ComTech), Rawalpindi, Pakistan, 19–21 April 2017; pp. 104–110. [Google Scholar]
  82. Airehrour, D.; Gutierrez, J.A.; Ray, S.K. SecTrust-RPL: A secure trust-aware RPL routing protocol for Internet of Things. Future Gener. Comput. Syst. 2019, 93, 860–876. [Google Scholar] [CrossRef]
  83. Al-Turjman, F.; Alturjman, S. Context-sensitive access in the industrial internet of things (IIoT) healthcare applications. IEEE Trans. Ind. Inform. 2018, 14, 2736–2744. [Google Scholar] [CrossRef]
  84. Varga, P.; PLoSz, S.; Soos, G.; Hegedus, C. Security threats and issues in automation IoT. In Proceedings of the 2017 IEEE 13th International Workshop on Factory Communication Systems (WFCS), Trondheim, Norway, 31 May–2 June 2017; pp. 1–6. [Google Scholar]
  85. Benazzouz, Y.; Munilla, C.; Günalp, O.; Gallissot, M.; Gürgen, L. Sharing user IoT devices in the cloud. In Proceedings of the 2014 IEEE World Forum on Internet of Things (WF-IoT), Seoul, Republic of Korea, 6–8 March 2014; pp. 373–374. [Google Scholar]
  86. Kumar, S.A.; Vealey, T.; Srivastava, H. Security in the internet of things: Challenges, solutions, and future directions. In Proceedings of the 2016 49th Hawaii International Conference on System Sciences (HICSS), Koloa, HI, USA, 5–8 January 2016; pp. 5772–5781. [Google Scholar]
  87. Huawei. Iot_Security_White_Paper_2018_V2_En.Pdf. 2018. Available online: https://carrier.huawei.com/~/media/CNBG/Downloads/Spotlight/iot-as-a-service/liantong0929-en.pdf (accessed on 12 December 2022).
  88. Alansari, Z.; Anuar, N.; Kamsin, A.; Belgaum, M. A systematic review of routing attacks detection in wireless sensor networks. PeerJ. Comput. Sci. 2022, 8, e1135. [Google Scholar] [CrossRef]
  89. Thiagarajan, S. Raising Your IoT Security Game. 2018. Available online: https://docplayer.net/90481457-Opportunities-raising-your-iot-security-game-how-to-pursue-the-author.html (accessed on 12 December 2022).
  90. Djedjig, N.; Tandjaoui, D.; Medjek, F.; Romdhani, I. Trust-aware and cooperative routing protocol for IoT security. J. Inf. Secur. Appl. 2020, 52, 102467. [Google Scholar] [CrossRef]
  91. Behera, T.M.; Mohapatra, S.K.; Samal, U.C.; Khan, M.S.; Daneshmand, M.; Gandomi, A.H. Residual energy-based cluster-head selection in WSNs for IoT application. IEEE Internet Things J. 2019, 6, 5132–5139. [Google Scholar] [CrossRef] [Green Version]
  92. Tan, Y.; Yang, W.; Yoshida, K.; Takakuwa, S. Application of IoT-aided simulation to manufacturing systems in the cyber-physical system. Machines 2019, 7, 2. [Google Scholar] [CrossRef] [Green Version]
  93. Haque, M.; Asikuzzaman, M.; Khan, I.U.; Ra, I.-H.; Hossain, M.; Shah, S.B.H. Comparative study of IoT-based topology maintenance protocol in a wireless sensor network for structural health monitoring. Remote Sens. 2020, 12, 2358. [Google Scholar] [CrossRef]
  94. Bulaghi, Z.A.; Navin, A.H.Z.; Hosseinzadeh, M.; Rezaee, A. SENET: A novel architecture for IoT-based body sensor networks. Inform. Med. Unlocked 2020, 20, 100365. [Google Scholar] [CrossRef]
  95. Sharma, R.; Prakash, S. Enhancement of relay nodes communication approach in WSN-IoT for underground coal mine. J. Inf. Optim. Sci. 2020, 41, 521–531. [Google Scholar] [CrossRef]
  96. Kamel, S.O.M.; Hegazi, N.H. A proposed model of IoT security management system, based on a study of internet of things (IoT) security. Int. J. Sci. Eng. Res. 2018, 9, 1227–1244. [Google Scholar]
  97. Rathee, G.; Balasaraswathi, M.; Chandran, K.P.; Gupta, S.D.; Boopathi, C. A secure IoT sensors communication in industry 4.0 using blockchain technology. J. Ambient. Intell. Humaniz. Comput. 2021, 12, 533–545. [Google Scholar] [CrossRef]
  98. Garg, S.; Kaur, K.; Kaddoum, G.; Choo, K.-K.R. Toward secure and provable authentication for Internet of Things: Realizing industry 4.0. IEEE Internet Things J. 2019, 7, 4598–4606. [Google Scholar] [CrossRef]
  99. Wan, J.; Tang, S.; Shu, Z.; Li, D.; Wang, S.; Imran, M. Software-defined industrial internet of things in the context of industry 4.0. IEEE Sens. J. 2016, 16, 7373–7380. [Google Scholar] [CrossRef]
  100. Rahman, A.; Sara, U.; Kundu, D.; Islam, S.; Islam, M.; Hasan, M. Distb-sdoindustry: Enhancing security in industry 4.0 services based on the distributed blockchain through software-defined networking-IoT enabled architecture. arXiv 2020, arXiv:2012.10011. [Google Scholar] [CrossRef]
  101. Wu, Y.; Dai, H.-N.; Wang, H. Convergence of blockchain and edge computing for secure and scalable IIoT critical infrastructures in industry 4.0. IEEE Internet Things J. 2020, 8, 2300–2317. [Google Scholar] [CrossRef]
  102. Wan, J.; Chen, B.; Imran, M.; Tao, F.; Li, D.; Li, C. Toward dynamic resources management for IoT-based manufacturing. IEEE Commun. Mag. 2018, 56, 52–59. [Google Scholar] [CrossRef]
  103. Hornillo-Mellado, S.; Martín-Clemente, R.; Baena-Lecuyer, V. Prediction of satellite shadowing in smart cities with application to IoT. Sensors 2020, 20, 475. [Google Scholar] [CrossRef] [Green Version]
  104. Dasgupta, S.; Saha, B. HMA-ID mechanism: A hybrid mayfly optimization-based apriori approach for intrusion detection in a big data application. Telecommun. Syst. 2022, 80, 77–89. [Google Scholar] [CrossRef]
  105. Samy, A.; Yu, H.; Zhang, H. Fog-based attack detection framework for the internet of things using deep learning. IEEE Access 2020, 8, 74571–74585. [Google Scholar] [CrossRef]
  106. Anbar, M.; Al-Amiedy, T.; Hasbullah, I. Routing Protocol for Low Power and Lossy Network. Encyclopedia. Available online: https://encyclopedia.pub/entry/23039 (accessed on 19 December 2022).
  107. Alimi, K.O.A.; Ouahada, K.; Abu-Mahfouz, A.; Rimer, S. A survey on the security of low power wide area networks: Threats, challenges, and potential solutions. Sensors 2020, 20, 5800. [Google Scholar] [CrossRef] [PubMed]
  108. Raza, U.; Kulkarni, P.; Sooriyabandara, N. Low power wide area networks: An overview. IEEE Commun. Surv. Tutor. 2017, 19, 855–873. [Google Scholar] [CrossRef] [Green Version]
  109. Muzammal, S.M.; Murugesan, R.K.; Jhanjhi, N.; Hossain, M.; Yassine, A. Trust and Mobility-Based Protocol for Secure Routing in the Internet of Things. Sensors 2022, 22, 6215. [Google Scholar] [CrossRef] [PubMed]
Electronics 12 00482 g001 550
Figure 1. Number of IoT devices in billions connected globally from the year 2018 to 2030 [6].
Figure 1. Number of IoT devices in billions connected globally from the year 2018 to 2030 [6].
Electronics 12 00482 g001
Electronics 12 00482 g002 550
Figure 2. Worldwide expenditure on IoT from the year 2018–2023 [11].
Figure 2. Worldwide expenditure on IoT from the year 2018–2023 [11].
Electronics 12 00482 g002
Electronics 12 00482 g003 550
Figure 3. Research collection mechanism.
Figure 3. Research collection mechanism.
Electronics 12 00482 g003
Table
Table 1. Effective low-powered and LLN protocols in IoT frameworks.
Table 1. Effective low-powered and LLN protocols in IoT frameworks.
ProtocolFoundationRouting SolutionDescriptionStrengthsLimitations
ER-RPL [28]RPLP2P supportER-RPL prevents the whole network from flooding with P2P route-finding packets, lowering network energy usage. Furthermore, the technique enables the transmission of P2P messages and utilizes the structure produced by default RPL for various traffic patterns.It prevents the whole network from flooding with P2P control messages, resulting in significant energy savings and an increase in the P2P packet delivery ratio.Some location-aware nodes are required (e.g., GPS) to have a complex strategy; additional control messages are added in addition to the essential RPL messages.
P2P-RPL [29,30]RPLP2P supportP2P-RPL allows RPL networks to have better P2P data traffic and develops new P2P routes on demand as an alternative to RPL-built P2P routes. Communications sent between these nodes follow a single path. Allows for constructing alternative P2P routes to meet application routing needs while avoiding using a root node for P2P message forwarding.Increases the overheads and energy consumption of the network by flooding it with control packets.
geographic routing approachGeoRank [31]RLP and Greedy Other Adaptive Face Routing GOAFRP2P supportGeoRank seeks to improve 6LoWPAN’s P2P functionality and minimize the number of control messages needed. It first uses the list of DODAG roots to determine the distance between the source and destination. The node transmits a message to its neighbor with one hop to the message destination and then passes the packet to the referenced parent.Reduces scalability by avoiding the usage of DAO messages, allowing memory consumption. RPL control messages are changed by default. Static nodes or GPS-enabled devices are required.
BMRF [32]SMRF and RPLMulticast communicationExcept for the root node, when a node in the BMRF wants to send a multicast message, it sends it upstream and downward. Upward sending is conducted using unicast transmission, whereas downward sending is accomplished through the BMRF mode; this behavior aids in avoiding packet duplication.SMRF improves both upstream and downstream multicast data forwarding. Increases the packet delivery ratio while reducing the number of radio transmissions and energy usage.Increases memory consumption by a small amount. End-to-end latency and incorrect parameter settings can lead to low productivity.
SMRF [33]RPLMulticast communicationSMRF presents a cross-layer technique for multicast forwarding operations that enhances the working of Radio Duty Cycling (RDC) protocols. SMRF operates in storage mode with IETF multicast support. When compared to the default strategy, the conventional solution provides better outcomes.RPL’s multicast data forwarding should be improved. Reduces the energy waste caused by multicast RPL’s many unicast transmissions. The processing of duplicated multicast packets is avoided.Only downward multicast broadcasting is permitted. High end-to-end latency is possible. SMRF processes only packets transmitted from the node’s selected parent. Messages received from child nodes are not processed or forwarded as a result.
mRPL [34,35]RPL and Smart-HOPMobile node supportSmart-HOP employs RPL-control messages similar to beacons in mRPL. The mechanism is separated into two phases due to two types of nodes: mobile nodes (MN) and access points (AP). An MN broadcasts a sequence of n DIS beacons to a serving AP during the data transfer phase. Based on the n received messages, the serving AP computes the average received signal strength indication (RSSI) value.In RPL, provides quick and dependable mobility support. Provides a technique for avoiding collisions and loops. Interoperable with RPL by default. Reduces packet loss and delay rate.A small amount increases the length of the control messages. Increases the number of control messages sent and received.
BRPL [36]RPL and backpressure routingMobile node supportBRPL supports the creation of numerous logical topologies based on distinct Optical Fiber(OFs). For each Directed Acyclic Grap (DAG), each Backpressure RPL BRPL node maintains a buffered packet queue. DODAG Information Object (DIO) messages communicate information between nodes, such as the maximum queue length, RPL rank, and queue length. As a result, each node that receives a DIO message must update the information about the packet sender in the neighbor database.Improves RPL to accommodate mobility and dynamic traffic loads, reduces packet loss significantly, and may exist together in a network using default RPL.End-to-end latency is momentarily increased.
Emergency Response IoT based on Global Information DecisionERGID [37]SPEEDQoS and Energy EfficiencyERGID is a routing system for IoT applications that promises rapid emergency response and reliable data delivery. It relies on two distinct methods. For example, the delay iterative method (DIM) classifies the nodes of a potential route based on a global delay calculation. This method is used to prevent a legitimate route from being ignored. The second method, residual energy probability choice (REPC), allows for residual energy information throughout the message-forwarding process.For emergency response applications, it provides reduced latency and load balancing. Reduces average latency and packet loss rate without increasing energy usage by selecting routes based on global information.Uses many control messages to keep delayed information current and accurate. Calculations and routing table updates are required regularly.
Quality of Services (QoS) RPL [38]RPLQoS and Energy EfficiencyQoS RPL is a routing metric based on transmission delay that aims to better meet the energy efficiency and QoS criteria in LLNs. During the routing protocol operation, the information regarding energy and latency is mapped onto the control messages, while each node that receives a packet computes and updates this information.Improves LLN energy efficiency and QoS while lowering delay and energy usage.Reduces the ratio of packets delivered, which can disrupt load balancing, leading to an increase in control message overhearing.
LOAGng-IoT [39] LOADngQoS and Energy EfficiencyLOADng-IoT also has a route caching technique to decrease route search costs and a new error message for when an IC node loses its Internet connection. As a result, the idea enables LOADng to address better the QoS and energy efficiency needs of various IoT applications.Allows LOADng to identify and maintain routes in diverse networks more efficiently. Allows nodes to identify Internet gateways without prior setup and provides a strategy for reducing the overhead created during route discovery.Also necessitates the addition of an extra field to the average LOADng control messages. Memory use may be increased by using the route cache method.
RPLca+ [40]RPLQoS and Energy EfficiencyRPLca+ comprises two specialized libraries, one for estimating link quality and the other for managing neighbor tables. The first library aims to improve RPL operations using a hybrid link-monitoring architecture to evaluate connection quality with minimal overheads. The second library consists of a series of approaches for neighbor table management.Improves data delivery reliability in RPL and offers a dynamic link; the quality estimator establishes the policies for the project. Routing table management enhances packet delivery rates.Boosts energy usage by submitting implementation overheads.
Table
Table 2. Security objectives of WSN-IoT.
Table 2. Security objectives of WSN-IoT.
Sr. NoSecurity Objectives of WSN-IoTDefinitionLayers
1AvailabilityAccessibility is the nature of keeping the service accessible for clients.Perception Layer
2AccountabilityAccountability is one of the IoT frameworks’ basic properties, but it cannot preempt network attacks and IoT vulnerabilities.Network Layer
3Confidentiality and PrivacyConfidentiality is otherwise known as as secrecy; to fulfill the security requirements, it is implemented to prevent unauthorized clients from getting information.Network Layer
4AuditingThis is an essential component; without it, the framework’s criteria for meeting security requirements will not be accomplished. It is used to recognize the security shortcomings of the IoT.Network Layer
5IntegrityIt enables legitimate and authorized access to modify data following requirements, but only under certain conditions.Network Layer
6Access ControlIt gives clients/users explicit roles or verified admittance to utilize network assets to view, alter, or modify data.Application Layer
7Authentication and AuthorizationAuthentication is the user’s verification, which is the primary security necessity as it recognizes users as validated clients utilizing security frameworks such as cryptography algorithms.Network, Application Layer
Table
Table 3. Security challenges in WSN-IoT.
Table 3. Security challenges in WSN-IoT.
Sr. NoServicesChallenges
1Data ConfidentialityData confidentiality is a significant concern in WSN-IoT frameworks since the customer can access the details and system administration. As a result, an IoT device access management system is required to identify the legitimate user and allow system access.
2PrivacyEntities are linked, and information is conveyed and traded across the Internet, providing client safety while posing various hazards to sensitive data in numerous ways. There is a high chance of security vulnerabilities, such as sniffing and spoofing, unapproved access, and data alteration through unauthorized modification of WSN-IoT nodes.
3Trust managementIoT layers have a distinct and diverse set of devices. Every device generates massive amounts of data subject to numerous attacks, risks, and concerns. These flaws are extended to each IoT layer and highly affect the quality of information or administration.
4VulnerabilitiesVulnerabilities are the loopholes that allow the attacker to access the device unethically and steal important information. Vulnerabilities in WSN-IoT exist at numerous levels, including user devices, scripts, hardware, methodologies, etc., which cause the framework to fail.
5SecuritySecurity is a significant concern in all fields. The growth in the number of connected devices to communication networks in the Internet of Things [61] leads to increased security risks and new security challenges, such as unauthorized access. With the help of unauthorized access, attackers can steal information and take complete control of smart appliances which causes inconvenience to their users.
6InteroperabilityWSN-IoT devices that are poorly designed might harm network resources. However, the customer rarely pays attention to the products and services that lack versatility.
7Authentication, Identification, and AuthorizationAn attacker can access the network by inserting erroneous statements if the authentication is poorly handled. However, it is challenging to ensure authentication nowadays because of the wireless media’s existence and the nature of sensor networks.
8AttacksAn important issue is an assault by hackers and rogue nodes that damages the machines on the network. The current security limits imposed on WSN-IoT render it vulnerable to various threats.
Table
Table 4. WSN-IoT security mechanism solutions and their limitations.
Table 4. WSN-IoT security mechanism solutions and their limitations.
Author Name and YearProposed SolutionLimitations
Geetanjali Rathee et al., 2020 [97]Applying blockchain technology significantly increases wireless sensor security by comparing security metrics. It maintains worker confidentiality and accountability and tracks each sensor’s operation. WSN-IoT artifacts and sensors are accumulated on the blockchain. The architecture is tested against the likelihood of an attack succeeding, the system’s ability to detect an attack, and a falsification attack.I time it takes to examine a single block before it is added to the blockchain is not mentioned.
Sahil Garg et al., 2019 [98]The protocol’s performance has been assessed, with the commonly used AVISPA, PUFs, ECC, and a host of other cryptographic primitives being used in the design of our stable, lightweight, and reliable authentication system for WSN-IoT environments, revealing that the proposed protocol supports shared authentication between WSN-IoT nodes and servers, as well as being resistant to a variety of security threats.The protocIl is for research and academic purposes, and the implementation of the presented protocol has not been subjected to real-world application.
Jiafu Wan et al., 2016 [99] Software-defined IIoT is proposed as a modern paradigm for industrial environments. It introduces features that make the network more scalable. The IIoT architecture can handle physical devices and an interface for information-sharing mechanisms via a conveniently customizable networking protocol. Additionally, the equipment’s improved intelligence would boost the system’s reliability and the availability of various services.Information about the network attacks that the proposed software-defined IIoT can tackle is not mentioned.
Anichur Rahman et al., 2017 [100] Industry 4.0 implementations in SDN-IoT-powered environments are faced with distributed blockchain-based authentication. The blockchain enhances the protection and privacy of Industry 4.0 services. The blockchain has the potential to lead in terms of security, secrecy, and confidentiality. Furthermore, the SDN-IoT integrates various Industry 4.0 services with increased security and stability.The introduction of blockchain technology is also in its early stages. There is no study of the various threats, such as denial of service (DoS) and flooding attacks. Packet arrival rate, data response time, throughput, and other evaluation parameters are not specified.
Yulei Wu et al., 2020 [101] Security and scalability have become top priorities in Industry 4.0, IoT, and IIoT. IoT and IIoT are implemented as vital technologies in Industry 4.0, and the blockchain and edge computing paradigms are briefly addressed. Integrating these two paradigms will contribute to developing stable and scalable critical infrastructure. The state-of-the-art WSN-IoT and IIoT infrastructure protection and privacy solutions and scalability solutions are evaluated and addressed.Several possible research challenges and open problems are discussed but not adequately addressed or provided with a solution.
Jiafu Wan et al., 2018 [102] Object Linking and Embedding (OLE) for process control technology, software-defined industrial networks, and device-to-device communications technology are combined with ontology modeling and multi-agent technology to achieve complex resource management. For innovative factory management for IoT-driven production, a load balancing mechanism based on Jena logic and Contract-Net Protocol technology provides a solution for complex resource utilization problems in Industry 4.0.The sharing and reusing technologies of the ontology knowledge base are not mentioned without a scheduling system and algorithm optimization.
Table
Table 5. Current work conducted in the domain of WSN-IoT and the research gaps.
Table 5. Current work conducted in the domain of WSN-IoT and the research gaps.
Sr.noAuthor Name and YearContributionResearch Gaps
1Susana H. Mellado et al., 2020 [103]The technique has a low computing load and is very attractive for producing coverage maps that can be used for the optimum distribution of network resources.The evaluation of output connectivity protocol requirements for satellite-based WSN-IoT simulations in virtual environments is lacking.
2Trupti M. Behera et al., 2019 [91] The algorithm considers residual energy, initial energy, and the cluster heads’ desired value to select the following cluster heads for the network that fit WSN-IoT applications to maximize throughput, lifetime, and residual energy.Does not consider further CH selection parameters in a mobile node network that continually changes its role.
3Yifei Tan et al., 2019 [92] Capable of collecting real-time data from an IoT-aided production device and creating a Design Thinking (DT) model that essentially represents the actual system’s real situation.Other essential features of DT are the lack of experimentation and optimization to forecast future positions or results.
4Md. Ershadul Haque et al., 2020 [93] The system is suitable for measurements of vibrations or earthquake events. The simulation results show that the EECDS-SGETRot mode offers the best products for a better version of the monitoring network and nodes that sinks can reach.Not all of the nodes engage in data collection.
5Zohre A. Bulaghi et al., 2020 [94] The design reduces the amount of energy used by wireless sensors. The method is also helpful for determining the architectural location of sensors in WSNs, the total number of sensors required, and reliability.The design contains some drawbacks and does not function on data in real-time.
6Ravi Sharma & Shiva Prakash, 2020 [95] Framework architecture for implementation patterns of relay nodes and load balancing between them to increase the network lifespan. This strengthens the deployment pattern of relay nodes for the sensor network.The different network measurement criteria, such as network lifetime, overhead transmission costs, average electricity usage, and adequate overall area coverage, are still unknown.
7Nabil D. et al., 2020 [90]A new security mechanism, “Metric-based Routing Protocol for Low-power and Lossy Networks (RPL) Trustworthiness Scheme (MRTS),” is introduced to address the RPL vulnerabilities. Furthermore, the simulations indicate that MRTS is far more effective regarding energy consumption, packet delivery ratio, changes in node rank, and throughput.The proposed strategies are highly complex since the reintegration of classified isolated nodes affects the model’s efficacy and raises new issues.
8S. Dasgupta and B. Saha, [104]Machine learning was used to predict the types of DDoS attacks. XGBoost and Random Forest were used to reach the DDoS prediction system for the research. The UNWS-np-15 dataset from GitHub was simulated with Python. After using machine learning models to assess model performance, a confusion matrix was produced. The accuracy (PR) and recall (RE) of Random Forest in the first classification are 89%. The AC on this model is 89%, which is good.It is imperative to provide a user-friendly, quicker substitute for deep learning calculations that delivers better results in a shorter amount of time.
9Samy et al., [105]Authors have slightly complicated the design of generic models to function successfully. The researcher has employed several different methods of categorization in their efforts to forecast DDOS assaults. Additionally, the authors used the support vector machine (SVM), the K-nearest neighbor (KNN) method, and the random forest (RF) algorithm. The SVM has a 99.5% accuracy rate for identifying DDoS assaults, whereas the KNN and RF have accuracy rates of 97.5% and 98.74%, respectively.The author wants to work with real-time datasets, but this model only works with offline datasets. As a result, we must begin transferring this work to real-time fraud detection applications centered on supervised learning models.
Table
Table 6. Comparative analysis with existing research.
Table 6. Comparative analysis with existing research.
FactorsDragomir [7]Gendreau and Moorman [14]Iqbal et al. [45]Dalipi and Yayilgan [50]Alansari et al. [88]Anbar, et al. [106]Adefemi Alimi et al. [107]Raza et al. [108]Muzammal et al. [109]This Paper
LPN architecture0000001011
LPN application0000101111
Physical layer attacks0000100001
Network layer attacks0110111111
Software attacks0000001001
Data attacks0000000001
WSN issues and challenges0100100111
IoT-LPN research challenges 0000001101
Security objectives/factor1011011111
Protocols discussion1001011101
Industry 4.00000000001
Total Score22224376511
Disclaimer/Publisher’s Note: The statements, opinions and data contained in all publications are solely those of the individual author(s) and contributor(s) and not of MDPI and/or the editor(s). MDPI and/or the editor(s) disclaim responsibility for any injury to people or property resulting from any ideas, methods, instructions or products referred to in the content.

Share and Cite

MDPI and ACS Style

Hussain, M.Z.; Hanapi, Z.M. Efficient Secure Routing Mechanisms for the Low-Powered IoT Network: A Literature Review. Electronics 2023, 12, 482. https://doi.org/10.3390/electronics12030482

AMA Style

Hussain MZ, Hanapi ZM. Efficient Secure Routing Mechanisms for the Low-Powered IoT Network: A Literature Review. Electronics. 2023; 12(3):482. https://doi.org/10.3390/electronics12030482

Chicago/Turabian Style

Hussain, Muhammad Zunnurain, and Zurina Mohd Hanapi. 2023. "Efficient Secure Routing Mechanisms for the Low-Powered IoT Network: A Literature Review" Electronics 12, no. 3: 482. https://doi.org/10.3390/electronics12030482

Note that from the first issue of 2016, this journal uses article numbers instead of page numbers. See further details here.

Article Metrics

Back to TopTop