Privacy-preserving encrypted traffic inspection with symmetric cryptographic techniques in IoT

Dajiang CHEN, Hao WANG, Ning ZHANG, Xuyun NIE, Hong-ning DAI, Kuan ZHANG, Kwang Raymond CHOO

Research output: Journal PublicationsJournal Article (refereed)peer-review


To ensure the security of Internet of Things (IoT) communications, one can use deep packet inspection (DPI) on network middleboxes to detect and mitigate anomalies and suspicious activities in network traffic of IoT, although doing so over encrypted traffic is challenging. Therefore, in this paper, an efficient and privacy-preserving encrypted traffic detection scheme is proposed. The scheme uses only lightweight cryptographic operations (i.e., symmetric encryption, hash functions and pseudo-random functions) to achieve both privacy and security within an inspection round. A dispute resolution mechanism is also designed to address potential disputes between client(s) and server(s). We also present the corresponding security proof and experimental evaluation, which demonstrate that our proposed scheme achieves strong security and privacy preservation and good performance.
Original languageEnglish
Number of pages15
JournalIEEE Internet of Things Journal
Publication statusPublished - 28 Feb 2022

Bibliographical note

Publisher Copyright:


  • Cryptography
  • Encryption
  • Inspection
  • Internet of Things
  • Middleboxes
  • Protocols
  • Security


Dive into the research topics of 'Privacy-preserving encrypted traffic inspection with symmetric cryptographic techniques in IoT'. Together they form a unique fingerprint.

Cite this