Stability-Aware Security–Performance Trade-Off Analysis in Resource-Constrained IoT Systems: A Time-Series and Bootstrap-Based Evaluation of TLS and Hybrid ECC–AES Mechanisms

Del-Valle-Soto, Carolina; Alvarez-Garcia, Maria Fernanda; Briseño Martínez, Ramón Alejandro; Visconti, Paolo; Rodríguez, Jafet

doi:10.3390/digital6020035

Stability-Aware Security–Performance Trade-Off Analysis in Resource-Constrained IoT Systems: A Time-Series and Bootstrap-Based Evaluation of TLS and Hybrid ECC–AES Mechanisms

Journal

Digital

Publisher

MDPI AG

Date Issued

2026-05-02

Author(s)

Alvarez-Garcia, Maria Fernanda

Visconti, Paolo

Type

Article

DOI

10.3390/digital6020035

URL

https://scripta.up.edu.mx/handle/20.500.12552/12907

Abstract

The increasing deployment of resource-constrained Internet of Things (IoT) devices requires security mechanisms that preserve confidentiality without compromising energy efficiency or responsiveness. Although Transport Layer Security (TLS) provides standardized protection for MQTT-based communication, its computational overhead may significantly affect embedded architectures. This study presents a controlled experimental evaluation of three communication configurations implemented on ESP32-based nodes: unencrypted Message Queuing Telemetry Transport (MQTT), MQTT over TLS 1.2, and an application-layer hybrid scheme combining Elliptic Curve Diffie–Hellman key exchange with AES-128 encryption. Second-level measurements of instantaneous current, accumulated energy, end-to-end latency, and memory footprint were collected across repeated experimental runs. Time-series diagnostics were performed to assess autocorrelation and stationarity, and block bootstrap resampling was applied to ensure dependence-aware statistical inference. The results indicate that TLS introduces the highest cumulative energy growth and latency dispersion, while the hybrid ECC–AES configuration demonstrates intermediate behavior with reduced overhead relative to TLS. Pareto frontier analysis shows that TLS is dominated in the joint energy–latency space, whereas the hybrid scheme represents a non-dominated compromise between security and efficiency. These findings provide a stability-aware and statistically robust framework for evaluating security–performance trade-offs in embedded IoT systems.

Subjects

Internet of Things (I...

MQTT security

TLS

elliptic curve crypto...

AES encryption

energy efficiency

time-series analysis

block bootstrap infer...

Pareto optimization

embedded systems

License

Acceso Abierto.

URL License

https://creativecommons.org/licenses/by/4.0/

How to cite

Del-Valle-Soto, C., Alvarez-Garcia, M. F., Briseño, R. A., Rodriguez, J., & Visconti, P. (2026). Stability-Aware Security–Performance Trade-Off Analysis in Resource-Constrained IoT Systems: A Time-Series and Bootstrap-Based Evaluation of TLS and Hybrid ECC–AES Mechanisms. Digital, 6(2), 35. https://doi.org/10.3390/digital6020035

Table of contents

1. Introduction -- 2. Related Work -- 3. Materials and Methods -- 4. Results -- 5. Discussion -- 6. Conclusions.