{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,11]],"date-time":"2025-11-11T15:44:53Z","timestamp":1762875893177,"version":"build-2065373602"},"reference-count":37,"publisher":"MDPI AG","issue":"7","license":[{"start":{"date-parts":[[2017,7,11]],"date-time":"2017-07-11T00:00:00Z","timestamp":1499731200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>As the IoT continues to grow over the coming years, resource-constrained devices and networks will see an increase in traffic as everything is connected in an open Web of Things. The performance- and function-enhancing features are difficult to provide in resource-constrained environments, but will gain importance if the WoT is to be scaled up successfully. For example, scalable open standards-based authentication and authorization will be important to manage access to the limited resources of constrained devices and networks. Additionally, features such as caching and virtualization may help further reduce the load on these constrained systems. This work presents the Secure Service Proxy (SSP): a constrained-network edge proxy with the goal of improving the performance and functionality of constrained RESTful environments. Our evaluations show that the proposed design reaches its goal by reducing the load on constrained devices while implementing a wide range of features as different adapters. Specifically, the results show that the SSP leads to significant savings in processing, network traffic, network delay and packet loss rates for constrained devices. As a result, the SSP helps to guarantee the proper operation of constrained networks as these networks form an ever-expanding Web of Things.<\/jats:p>","DOI":"10.3390\/s17071609","type":"journal-article","created":{"date-parts":[[2017,7,11]],"date-time":"2017-07-11T11:13:11Z","timestamp":1499771591000},"page":"1609","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":11,"title":["Secure Service Proxy: A CoAP(s) Intermediary for a Securer and Smarter Web of Things"],"prefix":"10.3390","volume":"17","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-7422-5283","authenticated-orcid":false,"given":"Floris","family":"Van den Abeele","sequence":"first","affiliation":[{"name":"Ghent University - imec, IDLab, Department of Information Technology, Technologiepark Zwijnaarde 15, B-9052 Ghent, Belgium"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2377-3674","authenticated-orcid":false,"given":"Ingrid","family":"Moerman","sequence":"additional","affiliation":[{"name":"Ghent University - imec, IDLab, Department of Information Technology, Technologiepark Zwijnaarde 15, B-9052 Ghent, Belgium"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Piet","family":"Demeester","sequence":"additional","affiliation":[{"name":"Ghent University - imec, IDLab, Department of Information Technology, Technologiepark Zwijnaarde 15, B-9052 Ghent, Belgium"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2039-007X","authenticated-orcid":false,"given":"Jeroen","family":"Hoebeke","sequence":"additional","affiliation":[{"name":"Ghent University - imec, IDLab, Department of Information Technology, Technologiepark Zwijnaarde 15, B-9052 Ghent, Belgium"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2017,7,11]]},"reference":[{"key":"ref_1","unstructured":"Bradley, J., Barbier, J., and Handler, D. (2013). Embracing the Internet of Everything To Capture Your Share of 14.4 Trillion USD, Cisco White Paper."},{"key":"ref_2","doi-asserted-by":"crossref","first-page":"1497","DOI":"10.1016\/j.adhoc.2012.02.016","article-title":"Internet of things: Vision, applications and research challenges","volume":"10","author":"Miorandi","year":"2012","journal-title":"Ad Hoc Netw."},{"key":"ref_3","doi-asserted-by":"crossref","first-page":"1645","DOI":"10.1016\/j.future.2013.01.010","article-title":"Internet of Things (IoT): A vision, architectural elements, and future directions","volume":"29","author":"Gubbi","year":"2013","journal-title":"Future Gener. Comput. Syst."},{"key":"ref_4","doi-asserted-by":"crossref","unstructured":"Bormann, C., Ersue, M., and Keranen, A. (2014). Terminology for Constrained-Node Networks, Internet Engineering Task Force (IETF).","DOI":"10.17487\/rfc7228"},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"1655","DOI":"10.1016\/j.comcom.2006.12.020","article-title":"Wireless sensor networks: A survey on the state of the art and the 802.15.4 and ZigBee standards","volume":"30","author":"Baronti","year":"2007","journal-title":"Comput. Commun."},{"key":"ref_6","unstructured":"Winter, T., and Thubert, P. (2012). RPL: IPv6 Routing Protocol for Low-Power and Lossy Networks, Internet Engineering Task Force (IETF)."},{"key":"ref_7","unstructured":"Tschofenig, H., and Fossati, T. (2016). Transport Layer Security (TLS)\/Datagram Transport Layer Security (DTLS) Profiles for the Internet of Things, Internet Engineering Task Force (IETF)."},{"key":"ref_8","doi-asserted-by":"crossref","unstructured":"Vu\u010dini\u0107, M., Tourancheau, B., Watteyne, T., Rousseau, F., Duda, A., Guizzetti, R., and Damon, L. (September, January 30). DTLS Performance in Duty-Cycled Networks. Proceedings of the International Symposium on Personal, Indoor and Mobile Radio Communications (PIMRC 2015), Hong Kong, China.","DOI":"10.1109\/PIMRC.2015.7343505"},{"key":"ref_9","doi-asserted-by":"crossref","unstructured":"Shelby, Z., Hartke, K., Bormann, C., and Frank, B. (2014). Constrained Application Protocol (CoAP), Internet Engineering Task Force (IETF).","DOI":"10.17487\/rfc7252"},{"key":"ref_10","unstructured":"Kuladinithi, K., Bergmann, O., and Becker, M. (2011, January 11). Implementation of CoAP and its Application in Transport Logistics. Proceedings of the Workshop on Extending the Internet to Low power and Lossy Networks, Chicago, IL, USA."},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Hartke, K. (2015). Observing Resources in the Constrained Application Protocol (CoAP), Internet Engineering Task Force (IETF).","DOI":"10.17487\/RFC7641"},{"key":"ref_12","doi-asserted-by":"crossref","unstructured":"Rescorla, E., and Modadugu, N. (2012). Datagram Transport Layer Security Version 1.2, Internet Engineering Task Force (IETF).","DOI":"10.17487\/rfc6347"},{"key":"ref_13","doi-asserted-by":"crossref","unstructured":"Dierks, T., and Rescorla, E. (2008). The Transport Layer Security (TLS) Protocol Version 1.2, Internet Engineering Task Force (IETF).","DOI":"10.17487\/rfc5246"},{"key":"ref_14","doi-asserted-by":"crossref","unstructured":"McGrew, D. (2008). An Interface and Algorithms for Authenticated Encryption, Internet Engineering Task Force (IETF).","DOI":"10.17487\/rfc5116"},{"key":"ref_15","doi-asserted-by":"crossref","unstructured":"McGrew, D., and Bailey, D. (2012). AES-CCM Cipher Suites for Transport Layer Security (TLS), Internet Engineering Task Force (IETF).","DOI":"10.17487\/rfc6655"},{"key":"ref_16","doi-asserted-by":"crossref","unstructured":"Eronen, P., and Tschofenig, H. (2005). Pre-Shared Key Ciphersuites for Transport Layer Security (TLS), Internet Engineering Task Force (IETF).","DOI":"10.17487\/rfc4279"},{"key":"ref_17","unstructured":"Wouters, P., Tschofenig, H., Gilmore, J., Weiler, S., and Kivinen, T. (2014). Using Raw Public Keys in Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS), Internet Engineering Task Force (IETF)."},{"key":"ref_18","unstructured":"Bailey, D., Campagna, M., Dugal, R., and McGrew, D. (2014). AES-CCM Elliptic Curve Cryptography (ECC) Cipher Suites for TLS, Internet Engineering Task Force (IETF)."},{"key":"ref_19","doi-asserted-by":"crossref","unstructured":"Rescorla, E. (2008). TLS Elliptic Curve Cipher Suites with SHA-256\/384 and AES Galois Counter Mode, Internet Engineering Task Force (IETF).","DOI":"10.17487\/rfc5289"},{"key":"ref_20","doi-asserted-by":"crossref","unstructured":"Barker, E. (2016). NIST Special Publication 800-57 Part 1 Revision 4, Recommendation for Key Management Part 1: General. Technical Report.","DOI":"10.6028\/NIST.SP.800-57pt1r4"},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Santesson, S., Myers, M., Ankney, R., Malpani, A., Galperin, S., and Adams, C. (2013). X.509 Internet Public Key Infrastructure Online Certificate Status Protocol-OCSP, Internet Engineering Task Force (IETF).","DOI":"10.17487\/rfc6960"},{"key":"ref_22","doi-asserted-by":"crossref","unstructured":"Van den Abeele, F., Vandewinckele, T., Hoebeke, J., Moerman, I., and Demeester, P. (2015, January 7\u20139). Secure communication in IP-based wireless sensor networks via a trusted gateway. Proceedings of the IEEE Tenth International Conference on Intelligent Sensors, Sensor Networks and Information Processing (IEEE ISSNIP 2015), Singapore.","DOI":"10.1109\/ISSNIP.2015.7106963"},{"key":"ref_23","doi-asserted-by":"crossref","unstructured":"Shelby, Z. (2012). Constrained RESTful Environments (CoRE) Link Format, Internet Engineering Task Force (IETF).","DOI":"10.17487\/rfc6690"},{"key":"ref_24","unstructured":"Selander, G., Mattsson, J., Palombini, F., and Seitz, L. (2017, July 10). Object Security of CoAP (OSCOAP). Internet Engineering Task Force (IETF) Internet-Draft work in progress. Available online: https:\/\/tools.ietf.org\/html\/draft-ietf-core-object-security-03."},{"key":"ref_25","doi-asserted-by":"crossref","unstructured":"Raza, S., Duquennoy, S., Chung, T., Yazar, D., Voigt, T., and Roedig, U. (2011, January 27\u201329). Securing communication in 6LoWPAN with compressed IPsec. Proceedings of the 2011 International Conference on Distributed Computing in Sensor Systems and Workshops (DCOSS), Barcelona, Spain.","DOI":"10.1109\/DCOSS.2011.5982177"},{"key":"ref_26","doi-asserted-by":"crossref","unstructured":"Bonomi, F., Milito, R., Zhu, J., and Addepalli, S. (2012, January 13\u201317). Fog computing and its role in the internet of things. Proceedings of the First Edition of the MCC Workshop on Mobile Cloud Computing (MCC \u201912), Helsinki, Finland.","DOI":"10.1145\/2342509.2342513"},{"key":"ref_27","doi-asserted-by":"crossref","first-page":"1228","DOI":"10.1109\/COMST.2015.2498304","article-title":"The Virtual Object as a Major Element of the Internet of Things: A Survey","volume":"18","author":"Nitti","year":"2016","journal-title":"IEEE Commun. Surv. Tutor."},{"key":"ref_28","doi-asserted-by":"crossref","unstructured":"Kovatsch, M., Mayer, S., and Ostermaier, B. (2012, January 4\u20136). Moving application logic from the firmware to the cloud: Towards the thin server architecture for the internet of things. Proceedings of the 2012 Sixth International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing, Palermo, Italy.","DOI":"10.1109\/IMIS.2012.104"},{"key":"ref_29","doi-asserted-by":"crossref","first-page":"6687","DOI":"10.3390\/s130506687","article-title":"IPv6 addressing proxy: Mapping native addressing from legacy technologies and devices to the Internet of Things (IPv6)","volume":"13","author":"Jara","year":"2013","journal-title":"Sensors"},{"key":"ref_30","doi-asserted-by":"crossref","first-page":"1217","DOI":"10.3390\/s150101217","article-title":"A Proxy Design to Leverage the Interconnection of CoAP Wireless Sensor Networks with Web Applications","volume":"15","author":"Ludovici","year":"2015","journal-title":"Sensors"},{"key":"ref_31","doi-asserted-by":"crossref","unstructured":"Castellani, A., Loreto, S., Rahman, A., Fossati, T., and Dijk, E. (2017). Guidelines for Mapping Implementations: HTTP to the Constrained Application Protocol (CoAP), Internet Engineering Task Force (IETF).","DOI":"10.17487\/RFC8075"},{"key":"ref_32","doi-asserted-by":"crossref","unstructured":"Mingozzi, E., Tanganelli, G., and Vallati, C. (2014, January 15\u201318). CoAP Proxy Virtualization for the Web of Things. Proceedings of the 2014 IEEE 6th International Conference on Cloud Computing Technology and Science, Singapore.","DOI":"10.1109\/CloudCom.2014.163"},{"key":"ref_33","doi-asserted-by":"crossref","unstructured":"Tanganelli, G., Vallati, C., Mingozzi, E., and Kovatsch, M. (2016, January 12\u201314). Efficient proxying of CoAP observe with quality of service support. Proceedings of the 2016 IEEE 3rd World Forum on Internet of Things (WF-IoT), Reston, VA, USA.","DOI":"10.1109\/WF-IoT.2016.7845444"},{"key":"ref_34","doi-asserted-by":"crossref","unstructured":"Farris, I., Lera, A., Molinaro, A., and Pizzi, S. (2014, January 8\u201312). A CoAP-compliant solution for efficient inclusion of RFID in the Internet of Things. Proceedings of the 2014 IEEE Global Communications Conference, Austin, TX, USA.","DOI":"10.1109\/GLOCOM.2014.7037231"},{"key":"ref_35","unstructured":"Hummen, R., Shafagh, H., and Raza, S. (July, January 30). Delegation-based Authentication and Authorization for the IP-based Internet of Things. Proceedings of the 11th IEEE International Conference on Sensing, Communication, and Networking (SECON \u201914), Singapore."},{"key":"ref_36","doi-asserted-by":"crossref","first-page":"681","DOI":"10.1007\/s11276-015-1182-y","article-title":"IoT\u2014Cloud collaboration to establish a secure connection for lightweight devices","volume":"23","author":"Park","year":"2017","journal-title":"Wirel. Netw."},{"key":"ref_37","doi-asserted-by":"crossref","unstructured":"Garcia-Morchon, O., Keoh, S.L., Kumar, S., Moreno-Sanchez, P., Vidal-Meca, F., and Ziegeldorf, J.H. (2013, January 17\u201319). Securing the IP-based internet of things with HIP and DTLS. Proceedings of the Sixth ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec \u201913), Budapest, Hungary.","DOI":"10.1145\/2462096.2462117"}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/17\/7\/1609\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T18:42:17Z","timestamp":1760208137000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/17\/7\/1609"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017,7,11]]},"references-count":37,"journal-issue":{"issue":"7","published-online":{"date-parts":[[2017,7]]}},"alternative-id":["s17071609"],"URL":"https:\/\/doi.org\/10.3390\/s17071609","relation":{},"ISSN":["1424-8220"],"issn-type":[{"type":"electronic","value":"1424-8220"}],"subject":[],"published":{"date-parts":[[2017,7,11]]}}}