{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T01:26:12Z","timestamp":1760059572364,"version":"build-2065373602"},"reference-count":24,"publisher":"MDPI AG","issue":"4","license":[{"start":{"date-parts":[[2025,6,23]],"date-time":"2025-06-23T00:00:00Z","timestamp":1750636800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["JSAN"],"abstract":"<jats:p>This paper explores the integration of Internet of Things (IoT) devices into modern cybersecurity frameworks, and it is intended to be a binder for the incorporation of these devices into emerging cybersecurity paradigms. Most IoT devices rely on WPA2-personal protocol, a wireless protocol with known security flaws, being effortless to penetrate by using various specific tools. Through this paper, we proposed the use of two Raspberry Pi platforms, with the help of which we created a secure wireless connection by implementing the 802.1X protocol and using digital certificates. Implementing this type of architecture and the devices used, we obtained huge benefits from the point of view of security and energy consumption. We tested multiple authentication methods, including EAP-TLS and EAP-MSCHAPv2, with the Raspberry Pi acting as an authentication server and certificate manager. Performance metrics such as power consumption, latency, and network throughput were analysed, confirming the architecture\u2019s effectiveness and scalability for larger IoT deployments.<\/jats:p>","DOI":"10.3390\/jsan14040064","type":"journal-article","created":{"date-parts":[[2025,6,23]],"date-time":"2025-06-23T09:08:44Z","timestamp":1750669724000},"page":"64","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Design and Implementation of a Secure Communication Architecture for IoT Devices"],"prefix":"10.3390","volume":"14","author":[{"ORCID":"https:\/\/orcid.org\/0009-0005-3244-7899","authenticated-orcid":false,"given":"Cezar-Gabriel","family":"Dumitrache","sequence":"first","affiliation":[{"name":"Interdisciplinary Doctoral School, Electronic Engineering, Telecommunications, and Information Technologies, National University of Science and Technology POLITEHNICA Bucharest, Pitesti University Centre, 110040 Pitesti, Romania"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3879-0995","authenticated-orcid":false,"given":"Petre","family":"Anghelescu","sequence":"additional","affiliation":[{"name":"Interdisciplinary Doctoral School, Electronic Engineering, Telecommunications, and Information Technologies, National University of Science and Technology POLITEHNICA Bucharest, Pitesti University Centre, 110040 Pitesti, Romania"},{"name":"Department of Electronics, Computers and Electrical Engineering, National University of Science and Technology POLITEHNICA Bucharest, Pitesti University Centre, 110040 Pitesti, Romania"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2025,6,23]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","unstructured":"Kampourakis, V., Chatzoglou, E., Kambourakis, G., Dolmes, A., and Zaroliagis, C. (2022). WPAxFuzz: Sniffing Out Vulnerabilities in Wi-Fi Implementations. Cryptography, 6.","DOI":"10.3390\/cryptography6040053"},{"key":"ref_2","doi-asserted-by":"crossref","unstructured":"Marian, C.V. (2021, January 24\u201328). DNS Records Secure Provisioning Mechanism for Virtual Machines automatic management in high density data centers. Proceedings of the IEEE International Black Sea Conference on Communications and Networking (BlackSeaCom), Bucharest, Romania.","DOI":"10.1109\/BlackSeaCom52164.2021.9527811"},{"key":"ref_3","doi-asserted-by":"crossref","unstructured":"Anghelescu, P. (2024, January 15\u201319). Design and Implementation of an Electronic Encryption System Based on Programmable Cellular Automata Algorithm. Proceedings of the The 47th International Spring Seminar on Electronics Technology (ISSE), Prague, Czech Republic.","DOI":"10.1109\/ISSE61612.2024.10603678"},{"key":"ref_4","doi-asserted-by":"crossref","first-page":"101202","DOI":"10.1016\/j.iot.2024.101202","article-title":"Multi-dimension-precision chaotic encryption mechanism for Internet of Things","volume":"26","author":"Fan","year":"2024","journal-title":"Internet Things"},{"key":"ref_5","doi-asserted-by":"crossref","unstructured":"Zhang, B., Zhang, T., Xi, Z., Chen, P., Wei, J., and Liu, Y. (2024). Secure Device-to-Device Communication in IoT: Fuzzy Identity from Wireless Channel State Information for Identity-Based Encryption. Electronics, 13.","DOI":"10.3390\/electronics13050984"},{"key":"ref_6","first-page":"389","article-title":"An advanced and effective encryption methodology used for modern IoT security","volume":"81","author":"Velmurugan","year":"2023","journal-title":"Mater. Today"},{"key":"ref_7","doi-asserted-by":"crossref","unstructured":"Cezar, D., Gheorghe, G., Gabriel, P., and Mariuca-Roxana, G. (2024, January 27\u201328). Device For Securing IoT In The Wireless Environment. Proceedings of the 16th International Conference on Electronics, Computers and Artificial Intelligence (ECAI), Iasi, Romania.","DOI":"10.1109\/ECAI61503.2024.10607458"},{"key":"ref_8","unstructured":"Ahmad, N., Madhura, K., Agarwal, T., and Zaidi, T. (2023, January 15\u201316). Implementing Encryption Algorithms for the Protection of Wireless Networks. Proceedings of the 5th International Conference on Data Science, Machine Learning and Applications, Hyderabad, India."},{"key":"ref_9","first-page":"17","article-title":"Security in Wi-Fi networks: A systematic review","volume":"2","year":"2024","journal-title":"ARIS2-J."},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Kaur, N., and Gupta, L. (2025). Securing the 6G\u2013IoT Environment: A Framework for Enhancing Transparency in Artificial Intelligence Decision-Making Through Explainable Artificial Intelligence. Sensors, 25.","DOI":"10.3390\/s25030854"},{"key":"ref_11","unstructured":"(2025, February 20). Cisco: Powering an Inclusive, Digital Future for All, Powering an Inclusive, Digital Future for All. Available online: https:\/\/newsroom.cisco.com\/c\/r\/newsroom\/en\/us\/a\/y2023\/m01\/powering-an-inclusive-digital-future-for-all.html."},{"key":"ref_12","doi-asserted-by":"crossref","unstructured":"Abo-Soliman, M.A., and Azer, M.A. (2017, January 27\u201328). A study in WPA2 enterprise recent attacks. Proceedings of the 13th International Computer Engineering Conference (ICENCO), Cairo, Egypt.","DOI":"10.1109\/ICENCO.2017.8289808"},{"key":"ref_13","doi-asserted-by":"crossref","unstructured":"Kohlios, C.P., and Hayajneh, T. (2018). A Comprehensive Attack Flow Model and Security Analysis for Wi-Fi and WPA3. Electronics, 7.","DOI":"10.20944\/preprints201809.0524.v1"},{"key":"ref_14","doi-asserted-by":"crossref","unstructured":"Oproiu, M.I., Ileana, M., and Marian, C.V. (2024, January 27\u201328). Exploring the Intricacies of the Architectural Framework Under-lying the Internet of Things Ecosystem. Proceedings of the International Conference on Electronics, Computers and Artificial Intelligence (ECAI), Iasi, Romania.","DOI":"10.1109\/ECAI61503.2024.10607423"},{"key":"ref_15","doi-asserted-by":"crossref","unstructured":"Ileana, M., Oproiu, M.I., and Marian, C.V. (2024, January 28\u201330). Exploring and Analyzing Internet of Things Devices for Process Optimization in Industrial Environments. Proceedings of the Advanced Topics on Measurement and Simulation (ATOMS), Constanta, Romania.","DOI":"10.1109\/ATOMS60779.2024.10921554"},{"key":"ref_16","unstructured":"(2025, February 20). How Authentication Protocols Work. Available online: https:\/\/networkradius.com\/articles\/2022\/02\/20\/how-authentication-protocols-work.html."},{"key":"ref_17","unstructured":"(2025, February 20). Available online: https:\/\/iperf.fr\/iperf-doc.php."},{"key":"ref_18","doi-asserted-by":"crossref","unstructured":"Chung, J., and Vlajic, N. (2022, January 3\u20135). Survey of Remote TLS Vulnerability Scanning Tools and Snapshot of TLS Use in Banking Sector. Proceedings of the IEEE Conference on Communications and Network Security (CNS), Austin, TX, USA.","DOI":"10.1109\/CNS56114.2022.9947230"},{"key":"ref_19","unstructured":"Emily, L., and VoIP, J. (2025, February 20). What It Is and How to Fix It. Available online: https:\/\/www.openphone.com\/blog\/voip-jitter."},{"key":"ref_20","unstructured":"Vivek, R. (2025, February 20). EAP-TTLS Versus PEAP (Protected Extensible Authentication Protocol) Authentication Method. Available online: https:\/\/www.securew2.com\/blog\/eap-tls-vs-eap-ttls-pap."},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Duan, L., Li, Y., and Liao, L. (2023). Practical Certificate-Less Infrastructure with Application in TLS. Cryptography, 7.","DOI":"10.3390\/cryptography7040063"},{"key":"ref_22","unstructured":"Ibrar, A. (2024, March 06). A Comparative Study on the Power Usage of Raspberry Pi Models. Available online: https:\/\/projects-raspberry.com\/a-comparative-study-on-the-power-usage-of-raspberry-pi-models."},{"key":"ref_23","unstructured":"Lungu, R.S., and Marian, C.V. (July, January 30). Data Collection and Command Mechanism for Management of Network Re-sources. Proceedings of the 14th International Conference on Electronics, Computers and Artificial Intelligence (ECAI), Ploiesti, Romania."},{"key":"ref_24","doi-asserted-by":"crossref","unstructured":"Raceanu, D.N., and Marian, C.V. (2023, January 23\u201325). Cybersecurity Virtual Labs for Pentesting Education. Proceedings of the 13th International Symposium on Advanced Topics in Electrical Engineering (ATEE), Bucharest, Romania.","DOI":"10.1109\/ATEE58038.2023.10108187"}],"container-title":["Journal of Sensor and Actuator Networks"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2224-2708\/14\/4\/64\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,9]],"date-time":"2025-10-09T17:56:56Z","timestamp":1760032616000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2224-2708\/14\/4\/64"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,6,23]]},"references-count":24,"journal-issue":{"issue":"4","published-online":{"date-parts":[[2025,8]]}},"alternative-id":["jsan14040064"],"URL":"https:\/\/doi.org\/10.3390\/jsan14040064","relation":{},"ISSN":["2224-2708"],"issn-type":[{"type":"electronic","value":"2224-2708"}],"subject":[],"published":{"date-parts":[[2025,6,23]]}}}