Computer Science Detecting Malicious Beacon Nodes for Secure Location Discovery in Wireless Sensor Networks Presented by Akshay Lal.

Slides:

Advertisements

Similar presentations

Chris Karlof and David Wagner

Advertisements

Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,

Secure Location Verification with Hidden and Mobile Base Stations -TMC Apr, 2008 Srdjan Capkun, Kasper Bonne Rasmussen, Mario Cagalj, Mani Srivastava.

HIERARCHY REFERENCING TIME SYNCHRONIZATION PROTOCOL Prepared by : Sunny Kr. Lohani, Roll – 16 Sem – 7, Dept. of Comp. Sc. & Engg.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7.3 Secure and Resilient Location Discovery in Wireless.

Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.

Sec-TEEN: Secure Threshold sensitive Energy Efficient sensor Network protocol Ibrahim Alkhori, Tamer Abukhalil & Abdel-shakour A. Abuznied Department of.

KAIS T Message-In-a-Bottle: User-Friendly and Secure Key Deployment for Sensor Nodes Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig(CMU), Sensys

© 2007 Levente Buttyán and Jean-Pierre Hubaux Security and Cooperation in Wireless Networks Chapter 4: Naming and addressing.

Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)

Source-Location Privacy Protection in Wireless Sensor Network Presented by: Yufei Xu Xin Wu Da Teng.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7. Wireless Sensor Network Security.

Distributed Detection Of Node Replication Attacks In Sensor Networks Presenter: Kirtesh Patil Acknowledgement: Slides on Paper originally provided by Bryan.

Edith C. H. Ngai1, Jiangchuan Liu2, and Michael R. Lyu1

Murat Demirbas Youngwhan Song University at Buffalo, SUNY

Secure Data Communication in Mobile Ad Hoc Networks Authors: Panagiotis Papadimitratos and Zygmunt J Haas Presented by Sarah Casey Authors: Panagiotis.

1 Cross-Layer Scheduling for Power Efficiency in Wireless Sensor Networks Mihail L. Sichitiu Department of Electrical and Computer Engineering North Carolina.

Secure Routing in Sensor Networks: Attacks and Countermeasures First IEEE International Workshop on Sensor Network Protocols and Applications 5/11/2003.

Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.

Adaptive Security for Wireless Sensor Networks Master Thesis – June 2006.

Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.

INSENS: Intrusion-Tolerant Routing For Wireless Sensor Networks By: Jing Deng, Richard Han, Shivakant Mishra Presented by: Daryl Lonnon.

An Authentication Service Against Dishonest Users in Mobile Ad Hoc Networks Edith Ngai, Michael R. Lyu, and Roland T. Chin IEEE Aerospace Conference, Big.

Key Distribution in Sensor Networks (work in progress report) Adrian Perrig UC Berkeley.

© 2007 Levente Buttyán and Jean-Pierre Hubaux Security and Cooperation in Wireless Networks Chapter 6: Securing neighbor discovery.

The Sybil Attack in Sensor Networks: Analysis & Defenses James Newsome, Elaine Shi, Dawn Song, Adrian Perrig Presenter: Yi Xian.

Dynamic Clustering for Acoustic Target Tracking in Wireless Sensor Network Wei-Peng Chen, Jennifer C. Hou, Lui Sha Presented by Ray Lam Oct 23, 2004.

LEAP: Efficient Security Mechanisms for Large-Scale Distributed Sensor Networks By: Sencun Zhu, Sanjeev Setia, and Sushil Jajodia Presented By: Daryl Lonnon.

Secure Localization: Location Verification and detection of Malicious nodes in WSN Advisor: Dr. Tricia Chigan Presenter: Solomon Ayalew 3/16/20121.

Secure Localization Algorithms for Wireless Sensor Networks proposed by A. Boukerche, H. Oliveira, E. Nakamura, and A. Loureiro (2008) Maria Berenice Carrasco.

MOBILE AD-HOC NETWORK(MANET) SECURITY VAMSI KRISHNA KANURI NAGA SWETHA DASARI RESHMA ARAVAPALLI.

Authors: Sheng-Po Kuo, Yu-Chee Tseng, Fang-Jing Wu, and Chun-Yu Lin

Dynamic Clustering for Acoustic Target Tracking in Wireless Sensor Network Wei-Peng Chen, Jennifer C. Hou, Lui Sha.

Stochastic sleep scheduling (SSS) for large scale wireless sensor networks Yaxiong Zhao Jie Wu Computer and Information Sciences Temple University.

An efficient secure distributed anonymous routing protocol for mobile and wireless ad hoc networks Authors: A. Boukerche, K. El-Khatib, L. Xu, L. Korba.

1 A Location-ID Sensitive Key Establishment Scheme in Static Wireless Sensor Networks Proceedings of the international conference on mobile technology,applications,and.

Using Directional Antennas to Prevent Wormhole Attacks Lingxuan HuDavid Evans Department of Computer Science University of Virginia.

Trust- and Clustering-Based Authentication Service in Mobile Ad Hoc Networks Presented by Edith Ngai 28 October 2003.

ENERGY-EFFICIENT FORWARDING STRATEGIES FOR GEOGRAPHIC ROUTING in LOSSY WIRELESS SENSOR NETWORKS Presented by Prasad D. Karnik.

The Sybil Attack in Sensor Networks: Analysis & Defenses

Detection of Denial-of-Message Attacks on Sensor Network Broadcasts Jonathan M.McCune Elaine Shi Adrian Perrig and Michael K.Reiter.

Secure Routing in Wireless Sensor Networks: Attacks and Countermeasures Chris Karlof and David Wagner (modified by Sarjana Singh)

Rushing Attacks and Defense in Wireless Ad Hoc Network Routing Protocols ► Acts as denial of service by disrupting the flow of data between a source and.

Secure and Energy-Efficient Disjoint Multi-Path Routing for WSNs Presented by Zhongming Zheng.

Attacks in Sensor Networks Team Members: Subramanian Madhanagopal Sivasankaran Rahul Poondy Mukundan.

Differential Ad Hoc Positioning Systems Presented By: Ramesh Tumati Feb 18, 2004.

11/25/2015 Wireless Sensor Networks COE 499 Localization Tarek Sheltami KFUPM CCSE COE 1.

Computer Science 1 TinySeRSync: Secure and Resilient Time Synchronization in Wireless Sensor Networks Speaker: Sangwon Hyun Acknowledgement: Slides were.

Computer Science 1 Using Directional Antennas to Prevent Wormhole Attacks Presented by: Juan Du Nov 16, 2005.

By Naeem Amjad 1.  Challenges  Introduction  Motivation  First Order Radio Model  Proposed Scheme  Simulations And Results  Conclusion 2.

Tufts Wireless Laboratory School Of Engineering Tufts University Paper Review “An Energy Efficient Multipath Routing Protocol for Wireless Sensor Networks”,

Shambhu Upadhyaya 1 Sensor Networks – Hop- by-Hop Authentication Shambhu Upadhyaya Wireless Network Security CSE 566 (Lecture 22)

Computer Science Using Directional Antennas to Prevent Wormhole Attacks Stephen Thomas Acknowledgement: Portions of this presentation have been donated.

NDSS 2004Hu and Evans, UVa1 Using Directional Antennas to Prevent Wormhole Attacks Lingxuan Hu and David Evans [lingxuan, Department.

1 An Interleaved Hop-by-Hop Authentication Scheme for Filtering of Injected False Data in Sensor Networks Sencun Zhu, Sanjeev Setia, Sushil Jajodia, Peng.

1 Routing security against Threat models CSCI 5931 Wireless & Sensor Networks CSCI 5931 Wireless & Sensor Networks Darshan Chipade.

A Key Management Scheme for Distributed Sensor Networks Laurent Eschaenauer and Virgil D. Gligor.

Ad Hoc On-Demand Distance Vector Routing (AODV) ietf

Jinfang Jiang, Guangjie Han, Lei Shu, Han-Chieh Chao, Shojiro Nishio

International Conference Security in Pervasive Computing(SPC’06) MMC Lab. 임동혁.

On Mobile Sink Node for Target Tracking in Wireless Sensor Networks Thanh Hai Trinh and Hee Yong Youn Pervasive Computing and Communications Workshops(PerComW'07)

Secure positioning in Wireless Networks Srdjan Capkun, Jean-Pierre Hubaux IEEE Journal on Selected area in Communication Jeon, Seung.

Wireless Access and Networking Technology (WANT) Lab. An Efficient Data Aggregation Approach for Large Scale Wireless Sensor Networks Globecom 2010 Lutful.

KAIS T Location-Aided Flooding: An Energy-Efficient Data Dissemination Protocol for Wireless Sensor Networks Harshavardhan Sabbineni and Krishnendu Chakrabarty.

Max do Val Machado Raquel A. F. Mini Antonio A. F. Loureiro DCC/UFMG DCC/PUC Minas DCC/UFMG IEEE ICC 2009 proceedings Advisor ： Han-Chieh Chao Student.

Computer Science Least Privilege and Privilege Deprivation: Towards Tolerating Mobile Sink Compromises in Wireless Sensor Network Presented by Jennifer.

Packet Leashes: Defense Against Wormhole Attacks

Presented by Prashant Duhoon

ITIS 6010/8010 Wireless Network Security

Presentation transcript:

Computer Science Detecting Malicious Beacon Nodes for Secure Location Discovery in Wireless Sensor Networks Presented by Akshay Lal

Computer Science Roadmap Official terminology. THE sensor network. What’s the problem ? A practical solution. Detection of malicious beacon nodes. Special considerations. Revocation of malicious beacon nodes. Performance review. Conclusion.

Computer Science Official Terminology Beacon node: Convey information about location. Non-beacon nodes: The rest of the network. Beacon signals: Signal sent out by beacon nodes. Detecting beacon node: Node performing detection on a received signal. Target beacon node: Node being detected. Detecting Id: Id used by a detecting beacon node to make a target beacon node believe that a non-beacon node wants to communicate.

Computer Science THE Sensor Network Network constituting spatially distributed devices using sensors to monitor conditions (temperature, sounds, vibrations, etc.) at different locations. These sensors are: low-cost, low-power, multi-functional and communicate within a short range. Location of the sensor is the critical part of the network – located using geographical routing (GPSR), or some form of “location discovery”.

Computer Science THE Sensor Network (contd.) Naïve methodology for location discovery: Step I: Receive beacon signal from beacon nodes. Calculate multiple location reference (distance, signal strength, time of arrival, etc.) from various beacon nodes. Step II: Determine ones own location using the locations of the beacon nodes, with minimum error. Very straight forward approach – but what if a malicious node sends an incorrect beacon signal ?

Computer Science And Now The Problem A malicious beacon node can provide incorrect location reference. Non-beacon nodes determine location incorrectly

Computer Science The Problem (contd.) Location verification techniques have been proposed which can verify relative distances between beacon nodes and non-beacon nodes. None can ensure correct location discovery in a hostile environment (with malicious beacon nodes). None can remove the impact of a compromised beacon node.

Computer Science A Practical Solution Detect malicious beacon nodes Location of a beacon nodes are known - (x,y). Location derived from the beacon signal received (using any measurement scheme such as distance) – (x’,y’). If (x, y) ≠ (x’, y’) – malicious node caught. Using this data filter out replayed beacon signals Worm hole attacks - tunnel signal packets from one part of the network to another, and replay the signal packet. Locally replayed beacon signal – beacon signal received from a neighbor node is replayed by the malicious node. Revoke the malicious beacon nodes.

Computer Science Detection of Malicious Beacon Nodes Assumptions: Communicating nodes share a unique pair-wise key. A beacon node cannot distinguish between communications with a non-beacon node or another beacon node. Communication is always bi-directional. Beacon signals are unicasted to non-beacon nodes and all packets are authenticated using the pair wise shared key.

Computer Science Detection of Malicious Beacon Nodes (contd.) Beacon nodes use detecting IDs to perform detection on a signals it hears from another beacon node. Detecting NodeTarget Node Request message Reply beacon signal containing its location - (x’,y’) Detecting node - estimates distance between itself and target node. - calculates distance between itself (x, y) and (x’, y’). If difference between the two values > maximum distance error : received signal is malicious hence, target node is malicious

Computer Science Special Considerations – Thwarting Worm Hole Attack Assumptions : Worm hole detector installed on every node in the network. Able to state whether two communicating nodes are neighbors or not with certain accuracy. Methodology followed: If signal detected to be malicious a check is made for whether it is because of a worm hole attack. Detecting node calculates distance between itself and the location received from the target. If calculate distance larger than radio communication range – the worm hole detector determines that a worm hole exists – beacon signal is a replayed signal and is ignored. Drawback is that the worm hole detectors cannot ALWAYS guarantee that it can detect a worm hole.

Computer Science Special Considerations – Thwarting Locally Replayed Beacon Signals Methodology followed: The replay of a beacon signal always induce extra delay. This can be detected by using the Round Trip Time between two nodes. Detecting Node Target Node 1 t 1 1 t 2 Request 1 t 4 1 t 3 Reply Detecting node calculates RTT = (t 4 - t 1 ) – (t 3 - t 2 ) t 1 : time to finish sending first byte of request t 2 : time to finish receiving first byte of request t 3 : time to finish sending first byte of reply t 4 : time to finish receiving first byte of reply

Computer Science Special Considerations – Thwarting Locally Replayed Beacon Signals (contd.) RTT is not affected by the MAC protocol or any processing delay hence, the distribution of RTT is within a narrow range X min = maximum value for X such that F(x) = 0 X max = minimum value for X such that F(x) = 1 X max X min Transmission time per clock pulse = 384 clock cycles X min = 1,951 X max = 7,506 Detection is possible for any replayed signal if delay introduced is longer than transmission time for 14.5 bits

Computer Science The Algorithm Thus Far Detecting NodeTarget Node Request message Reply beacon signal containing its location - (x’,y’) - if difference between distances > maximum distance error Then signal is malicious – Check for worm hole attack. - if Target node passes worm hole detector Check for locally replayed beacon signal. Calculate RTT based on response time from Target if RTT ≤ X max Then: Beacon signal is considered not locally replayed. elseif RTT > X max Then: Beacon signal is considered locally replayed.

Computer Science Revocation of Malicious Beacon Nodes Assumption : The base station has a method to revoke malicious beacon nodes. Each node shares a unique key with the beacon node. Methodology followed : All alerts constitute the IDs of both the detecting and target node. Base stations constitutes a table with an entry for each beacon node. Associated with them is an alert counter and a report counter. Alert Counter – records suspiciousness of a beacon node. Report Counter – records number of alerts reported by a node and accepted by the base station. For every received alert the Report Counter for the detecting node is increased. Beacon nodes with a high Alert Degree are considered malicious. A threshold is set for the maximum allowable alerts against a node after which the beacon node is revoked.

Computer Science Revocation of Malicious Beacon Nodes – A Subtle Issue to Consider Two thresholds exist : Γ – maximum limit for alerts against a beacon node. Ѓ – maximum limit for reports sent by a beacon node. Reason for two thresholds : Malicious beacon node tires to revoke a non-malicious beacon node. This will cause the value of Γ to increase upto threshold - Γ. Beacon node will revoke the beacon node but will still accept alerts from that node until report count reaches threshold - Ѓ. Also the number of reports sent by any beacon node cannot exceed Ѓ, hence a malicious node cannot revoke ALL the non-malicious beacon nodes before getting revoked itself.

Computer Science Performance Review – Notations for Node Detection P d : Detection rate of the worm hole detector. P r : Detection rate of a malicious node by a detecting node. P n : Fraction of nodes that receive the malicious beacon signal. P w : Fraction of the nodes that are convinced of a worm hole. P l : Fraction of the nodes that are convinced the signal is locally replayed. P : The probability that a node receives a signal from a malicious node which is not removed by the replay detector. m: Number of Id’s for a detecting node.

Computer Science Performance Review – Node Detection Detection Mechanism Analysis : Computational and storage overhead is mainly due to key establishment protocols and cryptographic operations. The probability of a beacon node reporting an alert for a non-malicious beacon node is 1-P d, if a worm hole exits and 0 is no worm hole exists. Probability that a non-malicious detecting node will send an alert for a malicious beacon node, considering the detecting node has m detecting Ids is: 1 – ( 1- ( 1 – P n ) ( 1 – P w ) ( 1 – P l ) ) m Probability that a node receives a beacon from a malicious node which is not caught by the replay detector is: P = ( 1 – P n ) ( 1 – P w ) ( 1 – P l ). Relationship between P r and P: P r = 1 – ( 1 – P ) m Conclusion I: Cannot increase P without simultaneously increasing P r.

Computer Science Performance Review – Notations for Node Revocation N: Total number of sensor nodes. N a : Total number of malicious beacon nodes. N b : Total number of beacon nodes. N c : Total number of nodes that send requests to a malicious beacon nodes. N w : Number of pairs affected by a worm hole attack. N`: Average number of affected nodes. P`: Probability of accepting a signal from a revoked node. P d : Detection rate. P r : Probability of reporting an error. P a : Probability of the base station having an alert against a malicious node. P 1 P 2 : Probability that the report counter of a non-malicious node increases by 1 / 2 when reporting a malicious node.

Computer Science Performance Review – Notations for Node Revocation Node Revocation Analysis : A beacon nodes only reports about other within its communication range hence the storage and communication overhead is very limited. The detection rate or probability that a malicious beacon node will be revoked is: –Where Conclusion II: Detection rate increase as a node continues to behave maliciously. Conclusion III: As Γ increases detection rate decreases. Conclusion IV: And as m increases detection rate Increases. m = 1 ґ = 4

Computer Science Performance Review – Notations for Node Revocation (contd.) Effect of an increase in N c on the detection rate. Relation between P` and N`. Conclusion V: As the number of requesting nodes to a malicious node increase, detection rate increases due to the increase in number of alerts sent. Conclusion VI: As Γ increases N` and P` increase. As m increases N` and P` decrease.

Computer Science Performance Review – Notations for Node Revocation (contd.) Effect on N` when P is chosen so that P` is maximized The average number of non-malicious nodes revoked by the base station is at most: The reference used to define Γ and Ѓ: Conclusion VII: Initially N` increases fast but after a point it decreases due to the increase in the number of request serviced. Conclusion VIII: N` decreases when threshold Γ decreases. Conclusion IX: The threshold for Ѓ and Γ can be obtained by the above analysis, which should satisfy the condition on low N f or by chosing Ѓ and Γ that yield a minimum N f, given P d, N w and N a.

Computer Science Performance Review – Implementation on TinyOs Simulation results obtained from Nido (TinyOS simulator) conform to the theoretical values; some having a small difference but in general the results are close to what was expected. Receiver Operating Characteristic curves (ROC-curves) Conclusion X: Most of the beacon nodes are detected with small false positives however, as the network continues to get compromised, the performance degrades accordingly. Γ and Ѓ were varied and P is configured such that N` is maximized.

Computer Science And in Conclusion … Many protocols exist today, that help in location discovery such as AHLos, coarse-grained localization schemes etc. None work properly in hostile environments wherein malicious nodes jeopardize the location discovery. SERLOC (SEcure Range-independent LOCalization for wireless sensor networks) is a secure range free localization technique, but it cannot detect and remove malicious beacon nodes. In this paper localization is protected by detecting compromised beacon nodes. Methods adopted are very simple yet effective, and efficiency is guaranteed within the constraints of a sensor’s battery life and limited memory. Future work can be aimed at more efficient ways of reducing the false alert rate and methods to revoke malicious nodes without using the base station.