Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Security for distributed wireless sensor nodes Ingrid Verbauwhede Department of Electrical Engineering University of California Los Angeles

Published byMiles Griffin Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Security for distributed wireless sensor nodes Ingrid Verbauwhede Department of Electrical Engineering University of California Los Angeles"— Presentation transcript:

1

2 1 Security for distributed wireless sensor nodes Ingrid Verbauwhede Department of Electrical Engineering University of California Los Angeles ingrid@ee.ucla.edu

3 2 Outline Motivation Security attacks What is different, special to sensor networks Links to other security problems Topics of research

4 3 Motivation security problems & cryptographic techniques to protect them. Privacy for individual sensors: depends tank passes in a battlefield: not really needed individual hart beats of patients: not much information at home: sensor tells me that the jacuzzi is ready: not much information Authentication for individual sensors: for sure don’t want the enemy to inject false alarms on tank locations don’t want to adjust the insulin level of the wrong patient don’t need to know that my neighbor’s jacuzzi is ready

5 4 Sensor specific attacks ? AttacksolutionSensor specific False messages Replay messages authenticationno Distributed Denial of service Security checks in nodes (challenge response) no Jamming/interference Signal hiding Spread Spectrum Radio (with non-linear codes) no Pattern or traffic analysis Random activity, noise sources no Almost every attack to a sensor node has an equivalent in a regular network, or in radio communication. Main difference = energy drainage instead of performance drop

6 5 Research approach Adapt security level to information content! Combine with distributed computing Assume a hierarchical structure

7 6 Hierarchy of nodes Super node Intermediate nodes Leaf nodes: > 10K, 100K Hierarchy established dynamically, depending application or circumstances

8 7 Assumptions Distributed network of heterogeneous nodes (different types of sensors, different levels of processing capabilities) nodes establish at hoc connections Assume the existence of a hierarchy of nodes, with hierarchy is dynamically established hierarchy might change depending on application, power budget the higher up in the hierarchy, the more energy is available and the higher the security level if an intermediate node is compromised, the tree below it will be.

9 8 Hierarchy of security Information content: Extremely low Short messages Small set of possibilities Yes/no or Red/green/blue Energy availability Extremely low Security requirement Trust Level: unlimited Top highest Low processing: feature extraction motion detection None to low Assume zero, Build up Low Distributed optimization Medium

10 9 Cryptographic techniques Between Levels: Challenge response system (i.e. communication initiated by the higher level) to avoid denial-of-service (energy drainage) Communication versus computation! A B C A: challenge (includes time factor, randomness) B: response C: verify response Response could contain requested information since possible answers are from limited set. Requires one-way hash function or encryption in leaf nodes. Requires two radio transmissions per leaf node!

11 10 Cryptographic techniques (cont.) At intermediate levels: Set up “conference key”, Combine with distributed computations & optimizations Example: Burmester-Desmedt conference key protocol: exponentiation zi broadcast zi exponentiation, Xi = f( zi-1, zi+1) broadcast Xi exponentiation, compute K = f(zi, Xi) Energy Computations, Energy Radio, Energy Security

12 11 Inference Control in database It is yellow It does not make noise It turns its head towards the sun Sensor data (similar to a “mystery box”) Individual sensors: not much information content Data fusion: information extraction If the good guys can, so can the “bad” guys. Inference control in data bases (1980’s): allow statistical data extraction protect privacy of individuals e.g. medical or employee data bases add noise or restrict access

13 12 Conclusions: Individual tasks similar/related to existing problems Combination of these tasks unique to sensor networks Current activities: Power security trade-off Measure of security for energy budget co-processors for low power encryption Cryptographic techniques with minimal communication overhead

14 13 Numbers RSA on StrongARM: 16 mJ, 65 ms (encrypt, verify, decrypt, sign) [NAI labs] Low power encryption hardware: Quadratic Residue generator [Goodman, 98] 134mW at 2.5V, 1Mb/s, factor 1000 better than StrongArm Advanced InfoSec Machine [Motorola] < 100 mW (at 1.5 MHz)

Download ppt "1 Security for distributed wireless sensor nodes Ingrid Verbauwhede Department of Electrical Engineering University of California Los Angeles"

Similar presentations

Chris Karlof and David Wagner

Chris Karlof and David Wagner
Security in Sensor Networks By : Rohin Sethi Aranika Mahajan Twisha Patel.

Security in Sensor Networks By : Rohin Sethi Aranika Mahajan Twisha Patel.
Jason Li Jeremy Fowers. Background Information Wireless sensor network characteristics General sensor network security mechanisms DoS attacks and defenses.

Jason Li Jeremy Fowers. Background Information Wireless sensor network characteristics General sensor network security mechanisms DoS attacks and defenses.
Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,

Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,
Secure Location Verification with Hidden and Mobile Base Stations -TMC Apr, 2008 Srdjan Capkun, Kasper Bonne Rasmussen, Mario Cagalj, Mani Srivastava.

Secure Location Verification with Hidden and Mobile Base Stations -TMC Apr, 2008 Srdjan Capkun, Kasper Bonne Rasmussen, Mario Cagalj, Mani Srivastava.
Denial of Service in Sensor Networks Anthony D. Wood and John A. Stankovic.

Denial of Service in Sensor Networks Anthony D. Wood and John A. Stankovic.
Denial of Service in Sensor Networks Szymon Olesiak.

Denial of Service in Sensor Networks Szymon Olesiak.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
SecureMR: A Service Integrity Assurance Framework for MapReduce Wei Wei, Juan Du, Ting Yu, Xiaohui Gu North Carolina State University, United States Annual.

SecureMR: A Service Integrity Assurance Framework for MapReduce Wei Wei, Juan Du, Ting Yu, Xiaohui Gu North Carolina State University, United States Annual.
A Survey of Secure Wireless Ad Hoc Routing

A Survey of Secure Wireless Ad Hoc Routing
URSA: Providing Ubiquitous and Robust Security Support for MANET

URSA: Providing Ubiquitous and Robust Security Support for MANET
Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Anand Patwardhan Jim.

Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Anand Patwardhan Jim.
1-1 CMPE 259 Sensor Networks Katia Obraczka Winter 2005 Security.

1-1 CMPE 259 Sensor Networks Katia Obraczka Winter 2005 Security.
Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.

Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.
Secure communication in cellular and ad hoc environments Bharat Bhargava Department of Computer Sciences, Purdue University This is supported.

Secure communication in cellular and ad hoc environments Bharat Bhargava Department of Computer Sciences, Purdue University This is supported.
Security Issues In Sensor Networks By Priya Palanivelu.

Security Issues In Sensor Networks By Priya Palanivelu.
Spring 2002CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2002CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.

Wireless Security In wireless networks. Security and Assurance - Goals Integrity Modified only in acceptable ways Modified only by authorized people Modified.
SUMP: A Secure Unicast Messaging Protocol for Wireless Ad Hoc Sensor Networks Jeff Janies, Chin-Tser Huang, Nathan L. Johnson.

SUMP: A Secure Unicast Messaging Protocol for Wireless Ad Hoc Sensor Networks Jeff Janies, Chin-Tser Huang, Nathan L. Johnson.

Similar presentations

Ads by Google