Presentation is loading. Please wait.

Presentation is loading. Please wait.

To ensure secure and dependable monitoring of rail cars transporting hazardous materials, providing resiliency against both random and malicious threats.

Published byRosaline Carol Jackson Modified over 9 years ago

Similar presentations

Presentation on theme: "To ensure secure and dependable monitoring of rail cars transporting hazardous materials, providing resiliency against both random and malicious threats."— Presentation transcript:

1 To ensure secure and dependable monitoring of rail cars transporting hazardous materials, providing resiliency against both random and malicious threats Phases of the experimentation: 1 – Provide SPD functionalities to off-the-shelf smart-sensors (i.e. WSN motes) measuring environmental parameters like temperature, vibrations, etc. and test them in the laboratory 2 – Develop a monitoring application detecting abnormal operating conditions and test the overall system in a real-environment for SPD functionalities like node authentication, checksum, cryptography, etc. also by simulating SPD threats Description of the architecture and SPD-functionalities of the rail car monitoring system O b j e c t i v e The proposed cryptosystem In order to enforce security requirements at the transport level of our reference sensor network, we exploited the WM-ECC library (*) to: - implement a mechanism for key exchanging between the master and the motes based on the ECDH protocol in order to establish a shared secret key for channel encryption - achieve broadcast authentication of query messages sent by the master to the motes - achieve end-to-end encryption, integrity and freshness of query response messages sent by motes to the base station by exploiting the Skipjack cipher (*) H.Wang, B. Sheng, C.C. Tan and Qun Li, WM-ECC: an Elliptic Curve Cryptography Suite on Sensor Motes, Technical report, Oct. 30, 2007 P e r f o r m a n c e A n a l y s i sSPD F u n c t i o n a l i t i e s A r c h i t e c t u r e o f t h e T e s t b e d Time overhead The cryptographic operations performed at the master and mote sides for encrypting/decrypting and digitally signing packets, produce a fixed latency (about 4 seconds) in returning the first results to the wrapper for each executed query this can certainly be acceptable in all monitoring applications where real-time requirements are not very strict. pSHIELD 2nd Review Meeting, Kjeller/Oslo (Norway) We did not consider the delays related to communications over the TCP/IP network as they depend on how the application is distributed to monitor a particular environment Enhancement of the WM-ECC Library with the implementation of the ECDH protocol (*) key_agree function Key agreement among nodes: ECDH Message signature: ECDSA An example scenario: secure query and response A monitoring system can be structured into 2 main layers: sensor network layer Physical level: is responsible of the processing of the locally generated data at the node level Transport level: controls the communication between the nodes of the network application layer Integration level: is responsible of the integration of data belonging to different sensor networks User level: executes the user distributed applications The monitoring architecture allows to manage heterogeneous networks by means of a unified interface. We adopted it to design an heterogeneous sensor network infrastructure where the heterogeneity is not only in the technology aspects but also in the different security requirements. The proposed architecture allows to cope with new security features by means of ad-hoc wrappers matching the underlying security mechanisms and protocols. MASTERMOTE

Download ppt "To ensure secure and dependable monitoring of rail cars transporting hazardous materials, providing resiliency against both random and malicious threats."

Similar presentations

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.

Cryptography and Network Security 2 nd Edition by William Stallings Note: Lecture slides by Lawrie Brown and Henric Johnson, Modified by Andrew Yang.
TLS. 14.1 Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.

TLS Introduction 14.2 TLS Record Protocol 14.3 TLS Handshake Protocol 14.4 Summary.
Internet Security Protocols

Internet Security Protocols
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.

Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.
Customized Network Security Protocols Cristina Nita-Rotaru and Jeffrey Seibert SPONSORED BY DOUBLE-TAKE SOFTWARE (Jan. 2009 - July 2009) Department of.

Customized Network Security Protocols Cristina Nita-Rotaru and Jeffrey Seibert SPONSORED BY DOUBLE-TAKE SOFTWARE (Jan July 2009) Department of.
KAIS T Message-In-a-Bottle: User-Friendly and Secure Key Deployment for Sensor Nodes Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig(CMU), Sensys07 2007.

KAIS T Message-In-a-Bottle: User-Friendly and Secure Key Deployment for Sensor Nodes Cynthia Kuo, Mark Luk, Rohit Negi, Adrian Perrig(CMU), Sensys
Information System Security AABFS-Jordan Summer 2006 IP Security Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi.

Information System Security AABFS-Jordan Summer 2006 IP Security Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi.
Chapter 13 IPsec. IPsec (IP Security)  A collection of protocols used to create VPNs  A network layer security protocol providing cryptographic security.

Chapter 13 IPsec. IPsec (IP Security)  A collection of protocols used to create VPNs  A network layer security protocol providing cryptographic security.
Henric Johnson1 Ola Flygt Växjö University, Sweden +46 470 70 86 49 IP Security.

Henric Johnson1 Ola Flygt Växjö University, Sweden IP Security.
Using Auxiliary Sensors for Pair-Wise Key Establishment in WSN Source: Lecture Notes in Computer Science (2010) Authors: Qi Dong and Donggang Liu Presenter:

Using Auxiliary Sensors for Pair-Wise Key Establishment in WSN Source: Lecture Notes in Computer Science (2010) Authors: Qi Dong and Donggang Liu Presenter:
TinySec: Security for TinyOS Chris Karlof Naveen Sastry David Wagner January 15, 2003

TinySec: Security for TinyOS Chris Karlof Naveen Sastry David Wagner January 15, 2003
1 Intrusion Tolerance for NEST Bruno Dutertre, Steven Cheung SRI International NEST 2 Kickoff Meeting November 4, 2002.

1 Intrusion Tolerance for NEST Bruno Dutertre, Steven Cheung SRI International NEST 2 Kickoff Meeting November 4, 2002.
TinySec: A Link Layer Security Architecture for Wireless Sensor Networks C. Karlof, N. Sastry, D. Wagner SPINS: Security Protocol for Sensor Networks A.

TinySec: A Link Layer Security Architecture for Wireless Sensor Networks C. Karlof, N. Sastry, D. Wagner SPINS: Security Protocol for Sensor Networks A.
1 Security in Wireless Sensor Networks Group Meeting Fall 2004 Presented by Edith Ngai.

1 Security in Wireless Sensor Networks Group Meeting Fall 2004 Presented by Edith Ngai.
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.

CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.

Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.
SPEDA 2010 – August, 23-25, 2010, Atlanta, GA, USA A. De Benedictis, A. Gaglione, N. Mazzocca Securing a Re-Taskable Sensing System Seclab Group –

SPEDA 2010 – August, 23-25, 2010, Atlanta, GA, USA A. De Benedictis, A. Gaglione, N. Mazzocca Securing a Re-Taskable Sensing System Seclab Group –
Lect. 11: Public Key Cryptography. 2 Contents 1.Introduction to PKC 2.Hard problems  IFP  DLP 3.Public Key Encryptions  RSA  ElGamal 4.Digital Signatures.

Lect. 11: Public Key Cryptography. 2 Contents 1.Introduction to PKC 2.Hard problems  IFP  DLP 3.Public Key Encryptions  RSA  ElGamal 4.Digital Signatures.

Similar presentations

Ads by Google