Privacy-Preserving Encrypted Traffic Inspection With Symmetric Cryptographic Techniques in IoT

Dajiang Chen, Hao Wang, Ning Zhang*, Xuyun Nie, Hong Ning Dai, Kuan Zhang, Kim Kwang Raymond Choo

*Corresponding author for this work

Research output: Contribution to journalJournal articlepeer-review

26 Citations (Scopus)


To ensure the security of Internet of Things (IoT) communications, one can use deep packet inspection (DPI) on network middleboxes to detect and mitigate anomalies and suspicious activities in network traffic of IoT, although doing so over encrypted traffic is challenging. Therefore, in this article, an efficient and privacy-preserving encrypted traffic detection scheme is proposed. The scheme uses only lightweight cryptographic operations (i.e., symmetric encryption, hash functions, and pseudorandom functions) to achieve both privacy and security within an inspection round. A dispute resolution mechanism is also designed to address potential disputes between client(s) and server(s). We also present the corresponding security proof and experimental evaluation, which demonstrate that our proposed scheme achieves strong security and privacy preservation and good performance.

Original languageEnglish
Pages (from-to)17265-17279
Number of pages15
JournalIEEE Internet of Things Journal
Issue number18
Publication statusPublished - 15 Sept 2022

Scopus Subject Areas

  • Signal Processing
  • Information Systems
  • Hardware and Architecture
  • Computer Science Applications
  • Computer Networks and Communications

User-Defined Keywords

  • Encrypted traffic inspection
  • IoT security
  • privacy preserving
  • symmetric cryptographic techniques


Dive into the research topics of 'Privacy-Preserving Encrypted Traffic Inspection With Symmetric Cryptographic Techniques in IoT'. Together they form a unique fingerprint.

Cite this