陳伶志王超Chen, Ling-JyhWang, Chao鍾佳欽Chung, Chia-Chin2023-12-082022-07-272023-12-082022https://etds.lib.ntnu.edu.tw/thesis/detail/1c05826399986891750ac9db6b408123/http://rportal.lib.ntnu.edu.tw/handle/20.500.12235/121606隨著科技的發展愈加進步、成熟，物聯網的應用也逐漸邁向多元化，於此同時，物聯網安全性的問題也漸漸浮出檯面。物聯網系統中有許多安全性問題有待解決，有鑑於此，物聯網安全需更加重視。如今，由於量子電腦的技術逐漸成熟，對於現有的公鑰密碼系統產生威脅，進而直接影響到TLS協定的安全性，導致物聯網的安全性降低。理想的解決方法是找到一種適用於物聯網且能夠抵抗量子電腦攻擊的輕量級演算法，目前學術界以後量子密碼學 (Post-Quantum Cryptography, PQC) 為主要趨勢，是一種能夠抵抗量子電腦攻擊的公鑰加密演算法。本研究將支援PQC演算法的TLS協定整合到物聯網常見的MQTT協定上，使得PQC演算法能在物聯網中使用，以強化物聯網安全性。我們進行了PQC演算法在物聯網情境下的性能測試，透過數據分析來比較演算法之間的差異，評估PQC演算法在物聯網的可行性。實驗結果顯示，大多數PQC演算法都保持在可承受的延遲和封包開銷範圍內，一些PQC演算法的表現甚至不遜於傳統的非對稱加密演算法。在應用方面，我們將PQC演算法應用在真實的物聯網系統--空氣盒子上，使得空氣盒子的傳輸通訊更加安全。我們希望這項研究能夠鼓勵更多人將PQC應用到物聯網裝置中，在量子電腦攻擊之前盡快部署。Internet of Things (IoT) technologies diversify into many aspects of our life due to the development of science and technology. While IoT brings much convenience, security issues have also become drastically more critical. With the growth of quantum computing technology, many commonly used asymmetric encryption algorithms are at stake, which directly affects the security of the TLS protocol. Therefore, it is crucial to find algorithms resilient to quantum computer attacks, namely Post-Quantum Cryptography (PQC).In this research, we integrate the TLS protocol that supports PQC into the MQTT protocol, which enables IoT devices to utilize PQC to strengthen their security. We conducted a series of performance tests on many different PQC algorithms. The results show that most PQC algorithms can stay within an affordable latency and packet overhead range, and some can perform better than conventional asymmetric encryption algorithms. Finally, to put the PQC algorithms to the test, we apply them to a real-world IoT system, the AirBox. We hope this research will encourage more people to adapt PQC to their IoT devices before quantum computer attacks.物聯網後量子密碼學MQTTTLSInternet of ThingsPost-Quantum CryptographyMQTTTLSetd