Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Considerations for Wireless Sensor Networks Prabal Dutta (614) 975-3658 Security Considerations for Wireless Sensor Networks.

Published byMaud Leonard Modified over 9 years ago

Similar presentations

Presentation on theme: "Security Considerations for Wireless Sensor Networks Prabal Dutta (614) 975-3658 Security Considerations for Wireless Sensor Networks."— Presentation transcript:

1 Security Considerations for Wireless Sensor Networks Prabal Dutta dutta.4@osu.edu (614) 975-3658 Security Considerations for Wireless Sensor Networks

2 Security Considerations for Wireless Sensor Networks Overview  Motivation  Basic Concepts  Confidentiality  Authentication & Non-repudiation  Integrity  Freshness  Challenges  Key Distribution Strategies  Constraints  Others  Take Away

3 Security Considerations for Wireless Sensor Networks Motivation  This Presentation  Introduction to security concepts for 1451.5 survey  In General  Wireless Sensor/Actuator Networks may be collecting sensitive data and controlling important assets that must be protected  Wireless is a broadcast medium so inherently insecure and subject to eavesdropping  Vulnerable to active attacks like message spoofing or message replays  Obscurity IS NOT security  MUST have security for a complete solution

4 Security Considerations for Wireless Sensor Networks Confidentiality  Allows communicating parties to keep secrets  Protects against eavesdropping  Implemented through encryption using ciphers  Private (“Shared”) Key (Symmetric Cipher)  Fast, small, efficient, but has a key distribution problem  Public Key (Asymmetric Cipher)  Solves key distribution, but computationally very expensive  But encryption is not enough – if the same message encrypts to the same cipher text – then replay attacks are possible (“freshness”)

5 Security Considerations for Wireless Sensor Networks Authentication & Non-repudiation  Related concepts that allow a message recipient to verify the authenticity of the message source  Allow a party to prove its identity  Protects against forgery or masquerade  If a priori knowledge of peer (and a shared secret) exists, then use of knowledge of shared secrets is sufficient  Otherwise, requires use of a digital signature from a trusted source (like a notary public)  Digital Signatures implemented using a member of the public key cryptography suite (e.g. DSA) - but computationally expensive

6 Security Considerations for Wireless Sensor Networks Integrity  Ensures that:  Messages are not accidentally corrupted by an imperfect communications channel  Message are not intentionally corrupted by an attacker during transmission  Typically implemented through cryptographic hashes that are similar to a CRC.  Hashes are considerably more complex than a CRC function, and therefore practically impossible to reverse engineer.  Common hashes include MD5 and SHA

7 Security Considerations for Wireless Sensor Networks Freshness  Ensures that:  Messages are current  Messages are ordered  Messages are not duplicates (replays) of a previously transmitted message  Weak freshness provides partial message ordering but no delay information  Strong freshness provides complete ordering and delay estimation  Implemented through sequence numbers, timestamps, etc.

8 Security Considerations for Wireless Sensor Networks Key Distribution Strategies  Shared Global Key (pre-deployment)  Frequently used  Compromised node compromises entire network  Shared Pair-wise Keys (pre-deployment)  Requires n(n-1)/2 ~ n^2 keys  Compromised node compromises entire network  New node requires n + 1 new keys n + 1 updates  Ad Hoc Pair-wise Keys (post-deployment)  Computationally expensive (D-H KE: 2.24 J in 5.75 sec on 206MHz SA [Hodjat] -> 1850 reps on CR2450 battery)  Vulnerable to DoS Attacks  Base Station Key Distribution Center (pre & post)  Pair-wise keys between nodes and BS (Kerberos-like)  Ad hoc pair-wise keys between nodes with BS help

9 Security Considerations for Wireless Sensor Networks Constraints  Limited source of energy  Limited computational resources  MHz  FLOPS  Code size  RAM size  Limited communications bandwidth  Asymmetric ciphers (e.g. RSA) and key exchange protocols (e.g. Diffie-Hellman) are computationally expensive

10 Security Considerations for Wireless Sensor Networks Other Challenges  Cipher Selection  Must be small, fast, and readily available  Global Clock Synchronization  Required for certain functions like freshness  Authenticated Broadcast [TESLA, TIK]  One node simultaneously broadcasts authenticated message to several other nodes  Also requires clock synchronization  Static vs. Mobile Nodes  Mobility adds another dimension of complexity to key distribution

11 Security Considerations for Wireless Sensor Networks Take Away  Many constraints & tradeoffs and nothing comes for free  Energy is biggest constraint  Key exchange is a major challenge  No “one-size-fits-all” solution  Active area of academic research  Berkeley, UCLA, Network Associates, others

Download ppt "Security Considerations for Wireless Sensor Networks Prabal Dutta (614) 975-3658 Security Considerations for Wireless Sensor Networks."

Similar presentations

Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).

Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).
By Md Emran Mazumder Ottawa University Student no: 6282845.

By Md Emran Mazumder Ottawa University Student no:
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
Last Class: The Problem BobAlice Eve Private Message Eavesdropping.

Last Class: The Problem BobAlice Eve Private Message Eavesdropping.
CS470, A.SelcukCryptographic Authentication1 Cryptographic Authentication Protocols CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukCryptographic Authentication1 Cryptographic Authentication Protocols CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
A Survey of Secure Wireless Ad Hoc Routing

A Survey of Secure Wireless Ad Hoc Routing
Sri Lanka Institute of Information Technology

Sri Lanka Institute of Information Technology
Cryptographic Security CS5204 – Operating Systems1.

Cryptographic Security CS5204 – Operating Systems1.
Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)

Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)
1 Digital Signatures & Authentication Protocols. 2 Digital Signatures have looked at message authentication –but does not address issues of lack of trust.

1 Digital Signatures & Authentication Protocols. 2 Digital Signatures have looked at message authentication –but does not address issues of lack of trust.
Authentication in Mobile Ad-hoc Network (MANET) Student Ståle Jonny Berget Superviser Chik How Tan.

Authentication in Mobile Ad-hoc Network (MANET) Student Ståle Jonny Berget Superviser Chik How Tan.
TinySec: A Link Layer Security Architecture for Wireless Sensor Networks C. Karlof, N. Sastry, D. Wagner SPINS: Security Protocol for Sensor Networks A.

TinySec: A Link Layer Security Architecture for Wireless Sensor Networks C. Karlof, N. Sastry, D. Wagner SPINS: Security Protocol for Sensor Networks A.
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.

Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.
Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.

Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.
Feb 25, 2003Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.

Feb 25, 2003Mårten Trolin1 Previous lecture More on hash functions Digital signatures Message Authentication Codes Padding.
Security Issues In Sensor Networks By Priya Palanivelu.

Security Issues In Sensor Networks By Priya Palanivelu.

Similar presentations

Ads by Google