Beside of Orange OpenSource project https://github.com/Orange-OpenSource/fiware-openlpwa-iotagent and ATOS Research & Innovation https://github.com/Atos-Research-and-Innovation/IoTagent-LoRaWAN , we are a small students group of Sup'Com Engeneering School http://www.supcom.mincom.tn/Fr/accueil_46_3 with the help of Tritux www.tritux.com and ipnets www.ipnets.com.tn companies

Our group is made by six interns. We have a common task to achieve which is the installation of the IoT platform Fiware, which functionalities will be detailed further in this tuorial. Once this latter is in place, each one of us, the six interns, has a personal task within: device management, insuring communications using the LoRaWAN protocol, visualizing the data that circulates in the network and developing security schemes and algorithms for the system to be well protected.

• dev and test server : Docker on Vmware ESi
• Operation server : 4 cores 16G with public ip address with Docker
• Gateway: Raspberry Pi 3 with RFM95 @868.1 MHz
• devices : Arduino Uno R3 DHT22 humidity and temperature sensor

.Loading the existing code RedMineAtIpnet/Fiware/cayennlpp.ino into the DHT22 sensor. In order to transmit date to the fiware iot agent the payload has to be encoded with the Cayenne Low Power Payload (Cayenne LPP) \ .To learn more about the Cayennelpp data model see https://mydevices.com/cayenne/docs/lora/#lora-cayenne-low-power-payload\
.To see similar project visit https://github.com/sabas1080/CayenneLPP/blob/master/examples/WeatherStation_LMIC/WeatherStation_LMIC.ino

.activation of SPI see reference
.command line : $ sudo raspi-config Navigate to Interface Options -> SPI -> enable it
.Next comes downloading the WiringPi library: $ sudo apt-get install wiringpi
.We need git, too: $ sudo apt-get install git
.On the LoRa software We use the single-channel packet redirector, tftelkamp / single_chan_pkt_fwd. It's a little c / cpp program to listen to in order to communicate with a transceiver Semtech SX1276, listing LoRa paquets and transmitting it
$ git clone https://github.com/tftelkamp/single_chan_pkt_fwd.git
$ cd single_chan_pkt_fwd
$ nano main.cpp (//changing the server address from the TTN address to the lora gateway bridge host address)
$ make
$ ./single_chan_pkt_fwd

• Mosquitto MQTT broker: In order to install it, I executed the following command: sudo apt-get install mosquitto
• PostgreSQL database: LoRa Server persists the gateway data into a PostgreSQL database. To install the latest PostgreSQL:
wget –quiet -O - https://www.postgresql.org/media/keys/ACCC4CF8.asc | sudo apt-key add - sudo echo "deb http://apt.postgresql.org/pub/repos/apt/ jessie, trusty or xenial-pgdg main" | sudo tee /etc/apt/sources.list.d/pgdg.list sudo apt-get update sudo apt-get install postgresql-9.6\ • Redis database: LoRa Server stores all non-persistent data into a Redis datastore. Installation on Debian / Ubuntu: sudo apt-get\ install redis-server

It’s done simply by executing the following command that creates a configuration file is located at /etc/lora-gateway-bridge/lora-gatewaybridge.toml.
sudo apt-get install lora-gateway-bridge

• Gateway: Modify the packet-forwarder of the gateway so that it will send its data to the LoRa Gateway Bridge. serveraddress to the IP address / hostname of the LoRa Gateway Bridge servportup to 1700 (the default port that LoRa Gateway Bridge is using) servportdown to 1700 (same)
• The configuration file: entering the packet forwarder’s address which is the same as gateway’s.

Having the same requirements as the gateway bridge, LoRa Server needs its own database.

1. Starting the prompt: sudo -u postgres psql
2. Creating a user: create role loraserverNs with login password ’dbpassword’;
3. Creating a database create database loraserverNs with owner loraserverNs;

sudo apt-get install loraserver

Creating a user, database and a PostgreSQL pqtrgm extension After starting the prompt we entered the following commands:

1. Creating a user: create role loraserverAs with login password ’dbpassword’;
2. Creating a database create database loraserverAs with owner loraserverAs;
3. Changing to the LoRa App Server database: l,oraserverAs
4. Enabling the extension: create extension pgtrgm;

sudo apt-get install lora-app-server
After installation, modify the configuration file which is located at /etc/lora-app-server/loraapp-server.toml
Given that the password that I used when creating the PostgreSQL database is ’dbpassword’, the config variable postgresql.dsn had to be changed into:

Another thing that has to be changed in the name of the node in the uplink topic subsciption. In pour case the node is called 'node' so the code in the configuration file has to look like the screenshot below
\

In terms of security, the LoRANWAN standard specifies three AES-128 keys:
NwkSKey, network session key, which uses exchanges between the terminal and the core network. It ensures the authenticity of devices in calculation and by checking the integrity code of the message, MIC, from the Header cloth and the Payload.
AppSKey, Application Session Key, specific to end-device is used to encrypt and decrypt the payload
AppKey, application key known only by the application and the final device and which allows to deduce the two previous keys.

The application session key is only known by the application provider. It is impossible for a third party, including the operator, to consult the data. \

=> We have generated DevEUI ,NwKSKey , AppSKey in Loraserver by opening this link https://34.243.110.137:8080/ then login and password admin admin :\

A frame counter is also used to protect against replay attacks, which would consist of repeating a maliciously intercepted transmission. The counter is incremented with each transmission. The gateway and the end devices reject transmissions whose counter value is less than that present.

=> To be part of a LoRaWAN network, each device must obtain both session keys. This activation step can be done in two ways: Over-The-Air Activation (OTAA) or Activation By Personalization (APB).

In ABP, the NwkSKey session keys, AppSKey and DevAddr device address are directly stored on the end-device. It is then possible to bypass the procedure of join request, join accept. NwkSKey and AppSKey must be unique!

Radio link activation consists of a "join request" and a "join acceptance" between a terminal and a server.

When the activation process starts, an AppKey must be assigned to both devices and the network server. The end device should know AppEUI andDevEUI, and should be able to generate its DevNonce. AppKey is an AES-128 root key specified for an end device. AppEUI is an identifier of an application, while DevEUI is a unique identifier of a terminal. DevNonce is a sequence of random numbers and it is generated by emitting a signal strength indicator metric sequence (RSSI) and it is supposed to be ideally random. When the join procedure begins, it first sends a join request over the air The "Join Request" message is not encrypted, but it uses AppKey to generate the message Integrity code (MIC) to ensure the integrity of the message.

The server network sends a seal acceptance message to each device containing AppNonce (server-generated random value), NetID (network identifier), DevAddr (device identifier), DLSettings (device configuration), RXDelay (The delay between transmission and reception) and CFList which is optional (for channel frequencies). The Join Accept message is encrypted using AppKey instead of the join request message, which can lead to serious security issues. Anyone can know the device ID and the ID of the application to which the device is dedicated. You can also know the DevNonce included in the key generation. Then the server transfers the AppSkey to the application server for use in decrypting messages. After receiving the acceptance confirmation message, the device decrypts it and generates the session keys using the parameters included in the join acceptance message.

OTAA provides security mechanisms. First, it uses unique parameters. In OTAA, AppKey, DevEUI, AppEUI, AppNonce and DevNonce should all be unique between terminals. In this case, compromise a Final device does not mean compromising the entire network. Secondly, there is a buffer for DevNonce to prevent replay attacks. Each time a new join request is received, the server should check the buffer to see if the nuncio has been used before If it has been used, the end device is not allowed to join the network. In this case, copying a join request and replaying it is not possible.

Configuration to generate certificates for the LoRa Server project :
Go installation
tar -C /usr/local -xzf go$VERSION.$OS-$ARCH.tar.gz
export PATH=$PATH:/usr/local/go/bin \

CFSSL installation
For generating the certificates, cfssl is being used
go get -u github.com/cloudflare/cfssl/cmd/cfssl
go get -u github.com/cloudflare/cfssl/cmd/cfssljson
go get -u github.com/cloudflare/cfssl/cmd/... \

LoRa Server is an open-source network-server, part of the LoRa Server project
Configuration file : loraserver.toml
(addition of the generated certives + modification of the ports + generation of random bytes for the jwt_secret) \

LoRa App Server is an open-source application-server, part of the LoRa Server project Configuration file : lora-app-server.toml

LoRa Gateway Bridge abstracts the packet_forwarder protocol into JSON over MQTT
Configuration file : lora-gateway-bridge.toml \

To keep things simple all components will be run using Docker. Docker is a container technology which allows to different components isolated into their respective environments

We used it on “Linux” environment

• First of all, we have to install Docker on Linux. follow the instructions here : https://docs.docker.com/install/linux/docker-ce/ubuntu/#install-docker-ce-1

It is to note that Fiware is an existant platform and we are not the ones that developed it. Fiware is known by a unique and complex architecture that is based on its own components. We have tried different approached in Fiware’s installation and decided to use a project that has been worked on by Fiware’s partner ATOS. The installation and configuration steps are presented below:\

1. Clone the repository with the following command:

git clone https://github.com/Atos-Research-and-Innovation/IoTagent-LoRaWAN.git

2. Once the repository is cloned, you have to download the dependencies for the project. To do so, from the root folder of the project execute:

npm install

3. If you ever want to test the IoT Agent or make sure that it runs correctly, you can run it with the default configuration by executing the following command

node bin/iotagent-lora

The bootstrap process should finish with:

info: Loading devices from registry
info: LoRaWAN IoT Agent started

4. Check that the IoTA is running correctly:

curl -v http://localhost:4061/iot/about

The result must be similar to:

{"libVersion":"2.6.0-next","port":4061,"baseRoot":"/"}

5. To run orion manually for test purposes, you can run the following commands

o Manually, run MongoDB on another container for the data to be stored in it. Then, run orion while linking it to the already running MongoDB docker:

sudo docker run --name mongodb -d mongo:3.2
sudo docker build -t orion .
sudo docker run -d --name orion1 --link mongodb:mongodb -p 1026:1026 orion -dbhost mongodb.

o Specify where to find your MongoDB host:

sudo docker build -t orion .
sudo docker run -d --name orion1 -p 1026:1026 orion -dbhost .
Check that everything is correctly working with the command below

        curl localhost:1026/version

PS: The parameter -t orion in the docker build command gives the image a name.

For simplicity reasons, you can also run all the dockers in one go by using docker-compose.
You can configure as many containers as you want, how they should be built and connected, and where data should be stored.
A docker-compose.yml file
A docker-compose.yml file is a YAML file that defines how Docker containers should behave in production.

You can run a single command to build, run, and configure all of the containers.This will be done by running the following command:
docker-compose -f docker/docker-compose.yml up

The following figure presents the docker-compose.yml file with which we can run all the dockers containing fiware’s components with a single command:

This docker-compose.yml file tells Docker to do the following:

• Pull the image mongodb from mongo 3.2, the image orion from fiware/orion:latest and the image iotagent-lora from ioeari/iotagent-lora.
• Immediately restart containers if one fails.
• Map port 1026 on the host to web’s port 1026.
• Map port 4061 on the host to web’s port 4061.

LoRa application server comes with a user-web-interface that enables the management of the different components of the network and that allows the decoding and the visualization of the received data. The following steps lead to the configuration of this interface.

1. Configuring the bind address TLS certificates and the authentication key

2. Launching the gateway bridge
   

3. Launching the loRa network server

4. Launching LoRa application server
   

5. Access the configured bind address, in our case it’s: https://52.211.159.35:8080

6. In there, the used gateway’s as well as the device’s information have to be provided, respectively in the ’gateway profiles’ and ’device profiles’ sections showed in the figure above. The used network server with which the application server will deal must be entered in the ’network servers’ section. And in the ’Applications’ section, an application using the mentioned gateway and devices can be made. In the application we can choose to decode using a self developed javascript code or using CayenneLPP schema. In our case the latter one was chosen.

1. Launching the packet forwarder
   \

And here are the values that are being sent by the node

2. Encoded data will be then forwarded to the gateway bridge
   

3. In the application server’s interface, we can visualize frames that are being received by the gateway
   

4. Device provisioning: for the data to be forwarded to fiware’s IoT agent through an MQTT broker, the device has to be provisioned and that is by: entering the attributes which, in our case, are ’temperature’ and ’humidity’ as well as providing loraserver’s information, the device’s eui, application eui, id , key and the data model which is Cayennelpp.
   \

In the next figure, is the IoT agent processing the provisioning, connecting to the MQTT broker, starting the application and then subscribing to the application’s topic
\

In the figure below, the received and decoded data in the application server is shown
\

In the following figure, data that has been forwarded to the IoT agent is shown
\

And below, is data stored in to context broker’s database after being translated to NGSI by the IoT agent

This attack is designed to achieve spoofing and DoS. For the server, the attack goal is to achieve spoofing. After the attack, it will accept a malicious replayed message from the attacker’s end device, and the server will believe the message is from an accepted working end device. For the victim end device, the attack goal is to achieve DoS. After the attack, the message that the victim end device sends will not be accepted in the server. The period of DoS depends on the selection of replayed message.

In order to achieve this attack, the attacker should be capable of: • having knowledge of the physical payload format of LoRaWAN messages. • knowing the wireless communication frequency band of the victim end device. • having a device to capture LoRaWAN wireless messages. • having a device to send LoRaWAN messages in a certain frequency. • storing and reading plaintext of LoRaWAN messages If the attacker does not have a specific victimtarget, in a large LoRaWAN network, it will not take a long time for an attacker to wait for an overflow. However, if the attacker is performing attacks in a relatively small network, it is better if the attack is able to reset the victim end device to reduce the waiting time.

Capture messages. Use a device to capture uplink messages of an ABP activated node, and save them into the attacker’s database • Get FCnt value. Read the uplink counter value from these messages since counter values are not encrypted. • Wait till the end device resets or counter overflows. • Find a suitable message. Select a captured message with suitable counter value from attacker’s database. • Replay. Resend the message to the gateway.

This attack can be extremely harmful for ABP activated end devices in a large Lo- RaWAN network. In a small LoRaWAN network with only a few end devices, the attacker may need to wait a long time for a counter overflow. However, in a large LoRaWAN network with multiple end devices, the waiting time for any one of the end devices to be overflowed is highly decreased. Once the attacker gets the largest possible counter value for one end device, it can periodically replay this message, to make the end device be rejected permanently. Unless the session keys of the end device are changed, the end device cannot be functioning again. In addition, if the attacker can find a way to reset the end device (e.g. power outage), then there is no need for the attacker to wait for counter overflowing. By resetting the end device, and replaying the message with the largest counter value, messages from the victim end device will be rejected.

==> Possible countermeasures are the use of frame counters on a network level (when re-transmitting frames exactly as they are captured), and/or by implementing correct encryption levels.

A replay attack can be performed on any component of a LoRaWAN implementation where an adversary can get access to network communication. The easiest component for this attack is the wireless network communication. All communication between end-devices and the Network Server will always pass the wireless network.

If traffic between the Network Server and the gateways, or between the Network Server and Application Servers, needs to be replayed, then in most cases access to wired networks is required.

Most of the traffic that can be sniffed in a LoRaWAN implementation is encrypted. Additional activities are required to get access to the real transmitted data (if possible at all). A replay attack is therefore not easy. However, there is unencrypted traffic, and maybe there are options to replay encrypted data packets.

Besides network traffic between end-devices and the network server, there is also traffic between end-devices and gateways. A beacon is send from gateways to all end-devices on a regular interval for time synchronization features and gateway information. The beacon contains the time when the beacon was generated/sent. This time is used, by the end-device, to calculate the start of the receive slot windows.

the figure shows an Attack-Defense Tree (ADT) for three possible replay attacks for the beaconing message. Before replay attacks can be performed, an eavesdropping attack is required to capture a valid and existing Beaconing message.

The first replay attack is performed by re-transmitting the Beaconing network frame without any modifications. The impact of this attack is difficult to determine. Replaying the beacon immediately will make sure the beacon is received in the beacon receive window. However, it will contain the same value as an earlier beacon which is received the same window. This will lead to the same receive slots and same GPS data. When the beacon is replayed at a later beacon receive window, then it is unknown how the end-device will respond. If the details are processed then this will lead to receives slots in the past, which is most probably not accepted by the end-device.
The second replay attack is performed by first modifying the Time field value before re-transmitting the network frame. This attempt may have an impact on the opening of the receive slot windows by the end-device. When the receive slot window is too much out-ofsync with the real beacon time, the end-device may not be able to receive any information anymore.
The third replay attack is performed by first modifying the Gateway Information field values before re-transmitting the network frame.\

This attempt may have several impacts. First, the end-device might think it is in reach (or out-of-reach, depending on the change made) of a specific gateway. Depending on the type or function of the enddevice this may have an impact on application level. It may also have an impact on downlink routing information. The end-device might use the beacon information to update the network server with its routing details.

Because wireless networks use a shared media (the air), there is always the possibility for collisions. A collision is when two parties start sending at exactly the same moment. The result is that both transmissions are mixed-up (and thus results into an invalid frame), or that the strongest signal pushes away the weaker signal. Since LoRaWAN does not know a re-transmission mechanism, the network frame will be lost in case of a collision. A form of DOS attack is when a hacker can cause collisions on purpose. Using such an attack, an attacker would be able to corrupt the transmissions of a legitimate end-device (or gateway). Using this attack is difficult, it requires correct timing and signal strengths.

In a Man-in-the-Middle (MitM) attack, an adversary places himself into a conversation between two parties and impersonates both parties to gain access to the data that the two parties are sending to each other. It involves an active form of eavesdropping. A man-in-themiddle attack allows an adversary to intercept, send and receive data meant for someone else, without both parties knowing. This attack is a form of session hijacking and is often used in wireless communications.

In a MitM attack an adversary needs to impersonate both the sender and receiver. On behalf of both parties, it needs to perform send- and receive activities so that it can proxy, or relay, traffic between both parties. The main countermeasures for this kind of attack is the use of encryption for the data that is being send, and signing of messages so that the receiver is sure of the sender’s identity.

A MitM attack can be performed on any component of a LoRaWAN implementation where an adversary can get access to network communication. The easiest component for this attack, is the wireless network communication. All communication between end-devices and the Network Server will always pass the wireless network. If a MitM attack between the Network Server and the gateways, or between the Network Server and Application Servers, is required, then in most cases access to wired networks is required. Most of the traffic that can be sniffed in a LoRaWAN implementation is encrypted. Additional activities are required to get access to the real transmitted data (if possible at all). In the LoRaWAN specification, network frame counters are defined. Encryption and frame counters are successful counter-measures against MitM attacks.

The attack is designed to compromise the encryption method of LoRaWAN. By sniffing the wireless traffic between the gateway and the end device, the attacker can use the corresponding relationship between 2 messages with the same counter value to decrypt the ciphertext. After the attack, the attacker can compromise the confidentiality of the system, and obtain sensor data transmitted in the system. If LoRaWAN is used to transmit secret data, this attack can cause serious privacy issues.

In order to performthe attack, the attacker should have the capabilities of: • having a LoRaWAN wireless sniffer device to sniff wireless packets. • having basic knowledge of end devices such as message type and message format. • having a database to store and compare LoRaWAN traffic. In order to increase the accuracy of the decryption results, it is better if the attacker also has the ability to reset the end devices.

The attack can be operated in following steps: • The attacker captures and stores LoRaWAN wireless packets, and logs basic information. • After resetting, continue to collect packets. Compare packets before and after resetting. Pair packets with same counter value. • Coding with method crib dragging, see the result. the figure shows an example of conducting an eavesdropping attack in a LoRaWAN network. A malicious gateway with appropriate frequency can receive messages from end device. Pairing the messages before and after resetting with same counter value, we can use crib ragging to derive the plaintext. In different cases, the implementation of crib dragging can be different. For example, if the plaintexts are sentences in English, it is easy to guess. If the plaintexts are numbers, we need to find the regular patterns behind the numbers first.

In order to control Data integrity we should visualise them in different steps using MongoDB to know if the totality of the data are sent

=> we enter the IP address 34.254.184.237

and the file ppk

Open another terminal
=> Monitor Iotagentlora database

monitor Orion database (orion-test)

.LoRa: https://www.lora-alliance.org
.LoRa Semtech: http://www.semtech.com/wireless-rf/internet-of-things/
.LoRaWAN Tutorial: http://www.instructables.com/id/Use-Lora-Shield-and-RPi-to-Build-a-LoRaWAN-Gateway/
.Raspbian OS: https://www.raspberrypi.org/downloads/raspbian/
.Single Channel Package Forwarder: https://github.com/tftelkamp/single_chan_pkt_fwd/
.Duty Cycle of LoRa: https://www.thethingsnetwork.org/wiki/LoRaWAN/Duty-Cycle
.RFM95 assembly with lora gateway: https://learn.adafruit.com/adafruit-rfm69hcw-and-rfm96-rfm95-rfm98-lora-packet-padio-breakouts/assembly
.See also http://cpham.perso.univ-pau.fr/LORA/RPIgateway.html