Man-in-the-Middle Proof-of-Concept via Krontiris' Ephemeral Diffie-Hellman Over COSE (EDHOC) in C
Daniel Hennig, Joaquin Garcia-Alfaro
TL;DR
The paper investigates MitM vulnerabilities in EDHOC-based key exchange for constrained devices and evaluates lawful interception paradigms in B5G contexts using a metasurface-assisted interception framework. It presents a C-based PoC built on Krontiris' EDHOC integrated with the CoopeRIS simulation environment to demonstrate MSitM-enabled interception and weak authentication scenarios. It analyzes LI approaches like the LAKE proposal, highlighting practical trade-offs between compatibility, targeted interception, computational overhead, and multi-party trust requirements. The work emphasizes implications for end-to-end confidentiality in IoT and B5G contexts and proposes directions such as physical-layer anomaly detection and anamorphic encryption to mitigate or detect interception risks.
Abstract
This report presents some technical details on the authentication process of a lightweight key exchange protocol, paying attention on how Man-in-the-Middle (MitM) attacks could undermine its security, e.g., under the scope of lawful interception and its risk to facilitate mass surveillance. We focus only on some technical aspects associated to the attack scenario. Perspectives for future work are also discussed. Other specific aspects of the work, mainly focusing on the security implications of malicious metasurfaces against B5G networks, are excluded from the scope of this report.