Certificate Management Scheme for IoT Services


  • Seung-Hwan Ju
  • Hee-Suk Seo


Industrial IoT services such as inter-vehicle communication systems, electric vehicle charging infrastructure, and advanced metering infrastructure provide security requirements. They use public key-based PKI, which leads to common requirements.
Using the results of the C-ITS vehicle authentication system and the mutual authentication system in the smart metering environment, this study analyzed the security requirements of the IoT environment and proposed a framework for designing the certificate management system of the IoT service. We analyzed the certification schemes of international standards such as IEEE 1609.2 of C-ITS, ISO/ EC 15118 of EV charging infrastructure, and IEC 62056 of smart metering.
At the manufacturing stage, the certificate is installed on the device. When the device is delivered to the user, the certificate is delivered to the user. This is a certificate for user verification that is used almost permanently unless the user of the device changes. The service participation certificate is managed separately. It has an authentication scheme with a short lifespan for privacy protection and security of service operations.
Many IoT services will launch in the future. It is expected to have a clearer security system by applying the certificate management system for credential management and service participation.