Vraag

Does the developer portal decrypt Lora payload?

  • 13 juli 2018
  • 4 reacties
  • 561 keer bekeken

Hi,

I am wondering whether the developer portal decrypt the lora payload or it is expected to be done at the application server?

Following this https://zakelijkforum.kpn.com/lora-forum-16/lorawan-security-encryption-and-authentication-10957 I think that my application server has to do it since the dev portal doesn't do it, could ou confirme it?

Thanks in advance

4 reacties

Reputatie 6
Badge +6
Hi @JCL,

It is correct that the decryption of the payload should be done at your application server 😁
Hi @JCL,

It is correct that the decryption of the payload should be done at your application server 😁


Then if I used node-red and I understand well, first I have to get the LoraWAN payload from the DevPortal performing a SHA256 Check onto it, thus I will get the LoraWAN payload encrypted with the AppSKey. Secondly, I wil have to decryot that payload with the AppSKey in order to get my real payload.

Is this reasoning correct?

Thanks!
Reputatie 6
Badge +6
Hi @JCL,

I saw that you also placed this question under the topic LoRaWAN Security: Encryption and Authentication . Meanwhile my colleague Lennart Nordin has also given an answer to that. Have you seen this answer?

In the Developer portal documentation it states that:
"Messages are forwarded unencrypted. The developer portal already decrypts the LoRa data using the randomly generated AppSKey. No further decryption is necessary. In the Commercial LoRa Service end-to-end encryption is supported.

All payloads are hexadecimal however, meaning they have to be decoded in some way to be used in applications. The decoding scheme depends solely on what the device manufacturer programmed in your device."

Does this answer your question?
Hi @JCL,

I saw that you also placed this question under the topic LoRaWAN Security: Encryption and Authentication . Meanwhile my colleague Lennart Nordin has also given an answer to that. Have you seen this answer?

In the Developer portal documentation it states that:
"Messages are forwarded unencrypted. The developer portal already decrypts the LoRa data using the randomly generated AppSKey. No further decryption is necessary. In the Commercial LoRa Service end-to-end encryption is supported.

All payloads are hexadecimal however, meaning they have to be decoded in some way to be used in applications. The decoding scheme depends solely on what the device manufacturer programmed in your device."

Does this answer your question?


Thanks @Rick S., I saw the answer and I mentioned to him this

When the forwarded payload hits my backend, the payload that I am getting is this
\"payload_hex\":\"940adfc976bffbf80dfe452c615a0410465d3549651967260c948e03\"
\"value\":\"940adfc976bffbf80dfe452c615a0410465d3549651967260c948e03\"
which seems encrypted to me becuase I don't send that data from my device.

Kind regards

Reageer