KAIS T A lightweight secure protocol for wireless sensor networks 윤주범 2007.12. 4 ELSEVIER Mar. 2006.

Slides:



Advertisements
Similar presentations
Public Key Cryptography Nick Feamster CS 6262 Spring 2009.
Advertisements

Conventional Encryption: Algorithms
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
Digital Signatures and Hash Functions. Digital Signatures.
1 Introduction CSE 5351: Introduction to cryptography Reading assignment: Chapter 1 of Katz & Lindell.
Efficient aggregation of encrypted data in Wireless Sensor Network Author: Einar Mykletun, Gene Tsudik Presented by Yi Cheng Lin Date: March 13, 2007.
Efficiently Authenticating Code Images in Dynamically Reprogrammed Wireless Sensor Networks PerSec 2006 Speaker: Prof. Rick Han Coauthors Jing Deng and.
Security Issues In Sensor Networks By Priya Palanivelu.
Wired Equivalent Privacy (WEP)
ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.
How cryptography is used to secure web services Josh Benaloh Cryptographer Microsoft Research.
SPINS: Security Protocols for Sensor Networks Adrian Perrig, Robert Szewczyk, Victor Wen, David Culler, J.D. Tygar Research Topics in Security in the context.
TinySec: Link Layer Security Chris Karlof, Naveen Sastry, David Wagner University of California, Berkeley Presenter: Todd Fielder.
Overview of Cryptography and Its Applications Dr. Monther Aldwairi New York Institute of Technology- Amman Campus INCS741: Cryptography.
Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.
LEAP: Efficient Security Mechanisms for Large-Scale Distributed Sensor Networks By: Sencun Zhu, Sanjeev Setia, and Sushil Jajodia Presented By: Daryl Lonnon.
Lecture 4 Cryptographic Tools (cont) modified from slides of Lawrie Brown.
CRYPTOGRAPHIC DATA INTEGRITY ALGORITHMS
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.
Security Considerations for Wireless Sensor Networks Prabal Dutta (614) Security Considerations for Wireless Sensor Networks.
© Neeraj Suri EU-NSF ICT March 2006 DEWSNet Dependable Embedded Wired/Wireless Networks MUET Jamshoro Computer Security: Principles and Practice Slides.
1 Introduction to Security and Cryptology Enterprise Systems DT211 Denis Manley.
CWNA Guide to Wireless LANs, Second Edition Chapter Eight Wireless LAN Security and Vulnerabilities.
Cryptography and Network Security (CS435)
I-4 security.
Message Authentication Requirements Disclosure Release of message contents to any person or process not possessing the appropriate cryptographic key Traffic.
1 TinySec: A Link Layer Security Architecture for Wireless Sensor Networks Hai Yan Computer Science & Engineering University of Connecticut.
SENSOR NETWORK SECURITY Group Members Pardeep Kumar Md. Iftekhar Salam Ahmed Galib Reza 1 Presented by: Iftekhar Salam 1.
Network Security Lecture 17 Presented by: Dr. Munam Ali Shah.
Providing Transparent Security Services to Sensor Networks Hamed Soroush, Mastooreh Salajegheh and Tassos Dimitriou IEEE ICC 2007 Reporter :呂天龍 1.
Information Security Lab. Dept. of Computer Engineering 182/203 PART I Symmetric Ciphers CHAPTER 7 Confidentiality Using Symmetric Encryption 7.1 Placement.
Midterm Review Cryptography & Network Security
Chapter 20 Symmetric Encryption and Message Confidentiality.
CS526: Information Security Prof. Sam Wagstaff September 16, 2003 Cryptography Basics.
4 th lecture.  Message to be encrypted: HELLO  Key: XMCKL H E L L O message 7 (H) 4 (E) 11 (L) 11 (L) 14 (O) message + 23 (X) 12 (M) 2 (C) 10 (K) 11.
Cryptography Wei Wu. Internet Threat Model Client Network Not trusted!!
Chapter 21 Public-Key Cryptography and Message Authentication.
1 Public-Key Cryptography and Message Authentication.
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 2 – Cryptographic.
Network Security David Lazăr.
TinySec: A Link Layer Security Architecture for Wireless Sensor Networks Chris Karlof :: Naveen Sastry :: David Wagner Presented by Roh, Yohan October.
Chapter 7 – Confidentiality Using Symmetric Encryption.
Chapter 7 Confidentiality Using Symmetric Encryption.
TinySec : Link Layer Security Architecture for Wireless Sensor Networks Chris Karlof :: Naveen Sastry :: David Wagner Presented by Anil Karamchandani 10/01/2007.
Attacks on PRNGs - By Nupura Neurgaonkar CS-265 (Prof. Mark Stamp)
Chapter 3 – Public Key Cryptography and RSA (A). Private-Key Cryptography traditional private/secret/single-key cryptography uses one key shared by both.
Symmetric Encryption Lesson Introduction ●Block cipher primitives ●DES ●AES ●Encrypting large message ●Message integrity.
Fall 2006CS 395: Computer Security1 Confidentiality Using Symmetric Encryption.
Weichao Wang, Bharat Bhargava Youngjoo, Shin
Aggregation and Secure Aggregation. Learning Objectives Understand why we need aggregation in WSNs Understand aggregation protocols in WSNs Understand.
Network Security Celia Li Computer Science and Engineering York University.
Wired Equivalent Privacy (WEP) Chris Overcash. Contents What is WEP? What is WEP? How is it implemented? How is it implemented? Why is it insecure? Why.
International Conference Security in Pervasive Computing(SPC’06) MMC Lab. 임동혁.
Security Review Q&A Session May 1. Outline  Class 1 Security Overview  Class 2 Security Introduction  Class 3 Advanced Security Constructions  Class.
IT 221: Introduction to Information Security Principles Lecture 5: Message Authentications, Hash Functions and Hash/Mac Algorithms For Educational Purposes.
Aggregation and Secure Aggregation. [Aggre_1] Section 12 Why do we need Aggregation? Sensor networks – Event-based Systems Example Query: –What is the.
Chapter 7 – Confidentiality Using Symmetric Encryption.
Message Authentication Codes CSCI 5857: Encoding and Encryption.
Draft-dvir-roll-security-authentication-01 and draft-dvir-roll-security-key-agreement Amit Dvir Laboratory of Cryptography and System Security (CrySyS)
Secure Instant Messenger in Android Name: Shamik Roy Chowdhury.
Department of Computer Science Chapter 5 Introduction to Cryptography Semester 1.
หัวข้อบรรยาย Stream cipher RC4 WEP (in)security LFSR CSS (in)security.
A Secure Routing Protocol with Intrusion Detection for Clustering Wireless Sensor Networks International Forum on Information Technology and Applications.
Security Of Wireless Sensor Networks
Security of Wireless Sensor Networks
Aggregation.
Security Attacks, Mechanisms, and Services
Presentation transcript:

KAIS T A lightweight secure protocol for wireless sensor networks 윤주범 ELSEVIER Mar. 2006

Contents Introduction Security goals Assumption LCG-based security protocols Performance analysis Conclusions and future work 2 A lightweight secure protocol for wireless sensor networks

Introduction (1/2) Linear Congruential Generator (LCG) One of the oldest and best-known pseudorandom number generator algorithms Easy to understand, easily implemented and fast Asymmetric cryptography Not suitable in wireless sensor networks Require expensive computations and long messages Symmetric cryptography can be used in WSN RC5, MD5, SHA1, … The performance depends on the encryption primitives. 3 A lightweight secure protocol for wireless sensor networks

Introduction (2/2) In this paper We propose a more lightweight block cipher that is suitable for WSN Propose a lightweight block cipher based on LCG Our proposed block cipher is more lightweight than RC5 Related work All sequences generated by the LCG are predictable (by Knuth). To use LCGs is dangerous, unless the sequence can be isolated from another generator. (Ritter[9]) 4 A lightweight secure protocol for wireless sensor networks

Security goals Confidentiality Achieved through encryption Integrity Detect tampering Authenticity Come from the intended sender 5 A lightweight secure protocol for wireless sensor networks

Assumption Existence of a key management scheme Network-wide shared key among the nodes Compromise of any single node Locally shared by a node and its neighbors Only decrypt the messages from nodes in its own group Setting up pairwise keys on the fly How to set up pairwise keys on the fly is a non-trivial task Assumption There exists a key management subsystem The assumption is reasonable Based on the key pre-distribution protocol, each sensor node could share a secret key with other nodes 6 A lightweight secure protocol for wireless sensor networks

LCG-based security protocols (1/4) Why selecting LCG Simplest, most efficient, well-studied PRNG To protect the random sequences Enough amount of sequences is not known to the attacker Linear congruential generators Generate random numbers for keys X n+1 = a X n + b mod m, n = 0, 1, 2, …, (1) Parameters of LCG X 0, a, b, m 7 A lightweight secure protocol for wireless sensor networks

LCG-based security protocols (2/4) Predictability of LCGs How many numbers are needed to infer the entire sequence?  Implement Plumstead’s inference algorithm[7] against LCG Plumstead’s algorithm 8 A lightweight secure protocol for wireless sensor networks

LCG-based security protocols (3/4) Analysis of Plumstead’s algorithm O(log 2 m) in worst case Empirical results of Plumstead’s algorithm  Prevent the adversary from retrieving five or more 9 A lightweight secure protocol for wireless sensor networks

LCG-based security protocols (4/4) Key selection Goal Hide all random numbers Chosen-plaintext attack cannot be conducted a, b, m – open X 0 – only shared secret Our system relies on the LCG’s statistical randomness For efficiency 2 63 < a < 2 64 and < m < A lightweight secure protocol for wireless sensor networks

Basic hop by hop message transmission (1/3) Our secure data transmission scheme Secure data aggregation - example 11 A lightweight secure protocol for wireless sensor networks

Basic hop by hop message transmission (2/3) Message encryption Goal of encryption Prevent recovering all the random numbers 16 bytes in size P + X1 mod 256 Permutation Decryption X1 -> C1,C2 -> p1,p2 12 A lightweight secure protocol for wireless sensor networks

Basic hop by hop message transmission(3/3) Security analysis Confidentiality Not feasible to exhaustively search Use a half of each byte in Bi  collision  difficult to recover Bi Authenticity and Integrity Cipher Block Chaining - MAC 4-byte MAC (brute forcing take about 20 months in 19.2 kbs channel) 13 A lightweight secure protocol for wireless sensor networks

Performance analysis (1/2) Number of basic operations aX n + b mod m  (2 63 < a < 2 64 and < m < ) Result 14 A lightweight secure protocol for wireless sensor networks Ideal case Don’t consider random number generation 8-bit Atmega

Performance analysis (2/2) 15 A lightweight secure protocol for wireless sensor networks

Conclusions Lightweight block cipher Security Random noise Random permutation Secure protocol for WSNs More efficient than RC5 Future work Implement our mechanisms on MICA2 sensor nodes Integrate our protocol with other existing WSN applications 16 A lightweight secure protocol for wireless sensor networks

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.