In [14]:
#Part I: IoT Device Data Encryption Simulation
import os
import random
import hashlib

#Generate random temperature and humidity sensor readings
def generate_sensor_data():
    # Generate realistic sensor values
    temperature = round(random.uniform(20.0, 35.0), 2)  # 20-35 degrees Celsius
    humidity = round(random.uniform(30.0, 80.0), 2)     # 30-80% humidity
    return temperature, humidity

#Lightweight encryption using XOR operation with key derivation
def lightweight_encrypt(data, key):
    # Derive a consistent key from the password using SHA-256
    key_hash = hashlib.sha256(key.encode()).digest()

    # Perform XOR encryption - lightweight and efficient for IoT devices
    encrypted_bytes = []
    for i, char in enumerate(data):
        key_byte = key_hash[i % len(key_hash)]
        encrypted_byte = ord(char) ^ key_byte
        encrypted_bytes.append(encrypted_byte)

    # Convert encrypted bytes to hexadecimal string
    hex_string = ''.join([f'{byte:02x}' for byte in encrypted_bytes])
    return hex_string

#Lightweight decryption using XOR operation
def lightweight_decrypt(hex_data, key):
    # Derive the same key from password
    key_hash = hashlib.sha256(key.encode()).digest()

    # Convert hex string back to bytes
    encrypted_bytes = [int(hex_data[i:i+2], 16) for i in range(0, len(hex_data), 2)]

    # Perform XOR decryption (XOR is symmetric - same operation for encryption and decryption)
    decrypted_chars = []
    for i, byte in enumerate(encrypted_bytes):
        key_byte = key_hash[i % len(key_hash)]
        decrypted_char = chr(byte ^ key_byte)
        decrypted_chars.append(decrypted_char)

    return ''.join(decrypted_chars)

#Main function for IoT data encryption simulation
def main():

    #Generate random temperature and humidity sensor readings

    temperature, humidity = generate_sensor_data()
    sensor_data = f"Temp:{temperature},Humidity:{humidity}"

    print(f"Original Sensor Data: {sensor_data}")
    print()


    # Pre-shared key (in real IoT, this would be securely stored)
    encryption_key = "IoT_Security_Key_2024"
    encrypted_hex = lightweight_encrypt(sensor_data, encryption_key)

    print(f"Encrypted Data (hex): {encrypted_hex}")
    print()

    #Simulate transmission to server and decrypt on receiver side
    decrypted_data = lightweight_decrypt(encrypted_hex, encryption_key)

    print(f"Decrypted Data: {decrypted_data}")
    print()

    #Display before and after encryption data and verify integrity
    #print("Step 4: Display before and after encryption data")

    # Verify data integrity
    if sensor_data == decrypted_data:
        print("SUCCESS: Encrypted and decrypted sensor data match!")
        print()
        #print("Demonstration of secure data transmission between IoT device and base station")
    else:
        print("ERROR: Data corruption detected during transmission!")


# Run the program
if __name__ == "__main__":
    main()

Original Sensor Data: Temp:30.24,Humidity:53.34

Encrypted Data (hex): 31592fe3255aa1cf41ba52ad61342449cd173a4e457aee92ac

Decrypted Data: Temp:30.24,Humidity:53.34

SUCCESS: Encrypted and decrypted sensor data match!



In [17]:
#Part II: IoT Device Lifecycle Simulation (Conceptual)
import datetime
import time
import random

#IoT Device Security Lifecycle Simulation Class
class IoTDeviceLifecycle:

    #Initialize IoT device with security parameters
    def __init__(self, device_id):
        self.device_id = device_id
        self.keys_injected = False
        self.is_commissioned = True
        self.firmware_version = "v1.0.0"

    #Log security events with timestamps for each lifecycle stage
    def log_event(self, stage, message):
        timestamp = datetime.datetime.now().strftime("%Y-%m-%d %H:%M:%S")
        print(f"[{timestamp}] [Stage {stage}] {message}")
        time.sleep(1)  # Simulate time between stages

    #Threat Modeling - Identify and analyze potential security threats
    def stage1_threat_modeling(self):
        self.log_event(1, "Threat model created...")

    #Secure Boot Initialization - Verify firmware integrity at boot time
    def stage2_secure_boot(self):
        self.log_event(2, "Secure boot verified...")

    #Secure Key Injection - Inject cryptographic keys during manufacturing
    def stage3_key_injection(self):

        # Simulate mock key values for demonstration
        device_key = f"KEY_{random.randint(1000, 9999)}"
        auth_key = f"AUTH_{random.randint(1000, 9999)}"

        self.log_event(3, "Keys injected securely...")
        self.keys_injected = True

    #OTA Firmware Update Check - Verify over-the-air updates
    def stage4_ota_update(self):
        self.log_event(4, "OTA update verified...")

    #Secure Decommissioning - Securely wipe keys and data when device is retired
    def stage5_decommissioning(self):
        if self.keys_injected:
            self.keys_injected = False

        self.is_commissioned = False
        self.log_event(5, "Device decommissioned, secrets wiped.")

    #Execute the complete five-stage security lifecycle simulation
    def run_complete_lifecycle(self):

        print("Create Python script to simulate the five security lifecycle stages")
        print()

        # Execute all five security lifecycle stages in sequence
        #Threat modeling
        print("Threat modeling")
        self.stage1_threat_modeling()
        print()

        #Secure boot initialization
        print("Secure boot initialization")
        self.stage2_secure_boot()
        print()

        #Secure key injection (mock values)
        print("Secure key injection (mock values)")
        self.stage3_key_injection()
        print()

        #OTA firmware update check
        print("OTA firmware update check")
        self.stage4_ota_update()
        print()

        #Secure decommissioning (key deletion)
        print("Secure decommissioning (key deletion)")
        self.stage5_decommissioning()
        print()

        #print()
        print("IoT Device Lifecycle Simulation Completed Successfully")

#Main function to run the IoT device lifecycle simulation
def main():
    # Create IoT device instance and run complete lifecycle simulation
    iot_device = IoTDeviceLifecycle("IoT_Sensor_001")
    iot_device.run_complete_lifecycle()

# Run the program
if __name__ == "__main__":
    main()

Create Python script to simulate the five security lifecycle stages

Threat modeling
[2025-11-28 12:55:13] [Stage 1] Threat model created...

Secure boot initialization
[2025-11-28 12:55:14] [Stage 2] Secure boot verified...

Secure key injection (mock values)
[2025-11-28 12:55:15] [Stage 3] Keys injected securely...

OTA firmware update check
[2025-11-28 12:55:16] [Stage 4] OTA update verified...

Secure decommissioning (key deletion)
[2025-11-28 12:55:17] [Stage 5] Device decommissioned, secrets wiped.

IoT Device Lifecycle Simulation Completed Successfully
