J Supercomput DOI 10.1007/s11227-016-1684-0 Secure IoT framework and 2D architecture for End-To-End security Jongseok Choi 1 · Youngjin In 1 · Changjun Park 1 · Seonhee Seok 1 · Hwajeong Seo 1 · Howon Kim 1 © Springer Science+Business Media New York 2016 Abstract In this paper, we proposed an secure IoT framework to ensure an End-To- End security from an IoT application to IoT devices. The proposed IoT framework consists of the IoT application, an IoT broker and the IoT devices. The IoT devices can be deployed along a board line or a boundary of the area of IoT broker. The IoT broker manages their own devices and aggregates their sensing data. The IoT application provides users with IoT services. To use the IoT services, it needs to access to sensing data. Especially, the case of real-time healthcare services should consider intermediate security issues because medical information of patients is one of very sensitive privacy information. However, most of IoT protocols such as CoAP and MQTT have no concern about the End-To-End security, they only depended on the security of DTLS. Therefore, we proposed a new IoT framework to satisfy the End- To-End security feature under the CoAP communication. The proposed framework encrypts sensitive data by a symmetric encryption and an attribute-based encryption B Howon Kim howonkim@pusan.ac.kr Jongseok Choi js.choi.85@gmail.com Youngjin In cubya0104@gmail.com Changjun Park pcj006@gmail.com Seonhee Seok seokseonhee@gmail.com Hwajeong Seo hwajeong84@gmail.com 1 Pusan National University, 6-Eng.Bldg., Jangjeon 2(i)-dong, Geumjeong-gu, Busan 609-735, Republic of Korea 123