Presentation is loading. Please wait.

Presentation is loading. Please wait.

Overview of Testbed Area PAWNS Testbed Secure Sensor Middleware Integrating Policy and Group Key Management Himanshu Khurana Senior Security Engineer,

Published byGyles Mills Modified over 9 years ago

Similar presentations

Presentation on theme: "Overview of Testbed Area PAWNS Testbed Secure Sensor Middleware Integrating Policy and Group Key Management Himanshu Khurana Senior Security Engineer,"— Presentation transcript:

1 Overview of Testbed Area PAWNS Testbed Secure Sensor Middleware Integrating Policy and Group Key Management Himanshu Khurana Senior Security Engineer, NCSA

2 Testbed Area Goal: provide a testbed for integration, evaluation, and demonstration of technologies developed by NCASSR Long-term Vision: a testbed integrated with NCASSR organizations’ and external testbeds for scalability testing and transfer of technology NCSA’s globus alliance and production environment efforts DHS/NSF Deter Testbed NRL Protean Lab Step-by-step approach Provide a means for testing individual NCASSR technologies Enhance collaboration between NCASSR and other organization projects to develop integrated technologies

3 Y2 Testbed Projects Five projects managed by three organizations SABRE – PI: Ouderkirk (PNNL) Multilevel – PI: Irvine ( NPS) CyberCIEGE – PI: Irvine (NPS) PKI Testbed – PI: Basney (NCSA) PAWNS – PI: Khurana (NCSA) PAWNS: A testbed for Programming Applications for a Wireless Network of (motes-based) Sensors Team Members: Himanshu Khurana, Peter Bajcsy, Rakesh Bobba, David Scherba Goal: Integrate, evaluate and demonstrate Hazard Awareness using sensors (PI: Bajcsy) Security services for sensor networks (PI: Khurana)

4 PAWNS/Hazard Awareness/Secure Sensor Middleware Technology Components Hazard Awareness and Response Deploy Point Sensors (“smart” motes) Using Robot Control Calibrate Spectral Cameras and Point Sensors Proactive Camera Control Using Point Sensors Hazard Analysis and Human Alert Hazard Confirmation and Elimination Using Robot Control Security and Reliability over multi-hop sensor networks Encrypt data between sensors and base station Key Management using Smart Dust, Public-Key and Random Graph techniques Tinysec link-layer encryption with Skipjack Reliability transfer of messages Link-level retransmission, erasure codes

5 Experimental Setup and Hazard Simulation * * Slide provided by Peter Bajcsy

6 Proactive Camera Control and Hazard Alert and Elimination * Proactive Camera Control Logic: If light = on then visible camera = on If light = off then thermal IR camera = on Based on image analysis re- direct human attention to hazardous situation * Slide provided by Peter Bajcsy

7 Integrating Policy and Group Key Mgmt Research Area: Secure Group Communication (SGC) GCSs enable collaborative applications such as C&C and conferencing Need for scalable security and multicast services Problems Scalable Group Key Management approaches require Group Controllers to bear significant trust liabilities Lack of tools to evaluate efficacy of key mgmt techniques Policy and key mgmt are both necessary to enable SGC but have not been integrated Goals/Approach Develop new key mgmt solutions that minimize trust liability in group controllers Implement SGC framework based on IETF MSEC WG Security Architecture specification Evaluate key mgmt solution in framework Framework integrates policy and key mgmt Team Members Himanshu Khurana, Luke St. Clair, Neelay Shah

8 Minimizing Trust Liability in GC Previous scalable key mgmt schemes use a trusted GC GC organizes long-term member (symmetric) keys in a tree to enable O(log n) scalability If GC is compromised, adversary gets access to data and key encryption keys and makes recovery costly Our solution (TASK) using proxy cryptography so that GC does not have access to data and key encrypting keys GC organizes shares of member (asymmetric) keys in a tree, uses shares to transform messages between members, enables O(log n) scalability If GC is compromised, adversary only gets shares which can be refreshed easily for quick and cheap recovery Publication Himanshu Khurana, Rafael Bonilla, Adam Slagell, Raja Afandi, Hyung- Seok Hahm, and Jim Basney. Scalable Group Key Management with Partially Trusted Controllers. To appear in the International Conference on Networking, Reunion Island, April 2005

9 SGC Framework Implementation Key Mgmt: Task, LKH Auth: Openssl, IKE Policy Spec: Antigone M1M2Mn M1M2 Key Mgmt Auth Policy Spec. Domain A Domain B GC Policy Server GC Policy Server … Reliable Multicast Layer: NORM, Spread

10 Testbed Area Funding (Y2) SABRE (Simulated Anomalous Behavior & REcognition)Ouderkirk PNNL/ Battelle$350,000 PAWNS (Programming & testing Applications on Wireless Network of Sensors)KhuranaNCSA$175,000 Multilevel Testbed Encryption Experiments/Trusted Channel ImplementationIrvineNPS$80,000 PKI TestbedBasneyNCSA$255,000 CyberCIEGE Extended ScenariosIrvineNPS$200,000 Thrust Total Budget: $1,060,000

Download ppt "Overview of Testbed Area PAWNS Testbed Secure Sensor Middleware Integrating Policy and Group Key Management Himanshu Khurana Senior Security Engineer,"

Similar presentations

A Survey of Key Management for Secure Group Communications Celia Li.

A Survey of Key Management for Secure Group Communications Celia Li.
Trust relationships in sensor networks Ruben Torres October 2004.

Trust relationships in sensor networks Ruben Torres October 2004.
Decentralized Reactive Clustering in Sensor Networks Yingyue Xu April 26, 2015.

Decentralized Reactive Clustering in Sensor Networks Yingyue Xu April 26, 2015.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
A Distributed Security Framework for Heterogeneous Wireless Sensor Networks Presented by Drew Wichmann Paper by Himali Saxena, Chunyu Ai, Marco Valero,

A Distributed Security Framework for Heterogeneous Wireless Sensor Networks Presented by Drew Wichmann Paper by Himali Saxena, Chunyu Ai, Marco Valero,
11/07/2003IETF-58 MSEC and AAA page 1 George Gross, IdentAware ™ Security IETF-58, Minneapolis, MN November 10 th 2003 Multicast.

11/07/2003IETF-58 MSEC and AAA page 1 George Gross, IdentAware ™ Security IETF-58, Minneapolis, MN November 10 th 2003 Multicast.
MOTOROLA and the Stylized M Logo are registered in the US Patent and Trademark Office. All other product or service names are the property of their respective.

MOTOROLA and the Stylized M Logo are registered in the US Patent and Trademark Office. All other product or service names are the property of their respective.
Decision Support Tools CBR & Modeling Jeff Allan University of Sheffield.

Decision Support Tools CBR & Modeling Jeff Allan University of Sheffield.
1/13/05NCASSR PNNL Visit1 Security Tools Area Overview, Credential Management Services, and the PKI Testbed Jim Basney Senior Research Scientist

1/13/05NCASSR PNNL Visit1 Security Tools Area Overview, Credential Management Services, and the PKI Testbed Jim Basney Senior Research Scientist
Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.

Network Isolation Using Group Policy and IPSec Paula Kiernan Senior Consultant Ward Solutions.
TinySec: Security for TinyOS Chris Karlof Naveen Sastry David Wagner January 15, 2003

TinySec: Security for TinyOS Chris Karlof Naveen Sastry David Wagner January 15, 2003
1 Intrusion Tolerance for NEST Bruno Dutertre, Steven Cheung SRI International NEST 2 Kickoff Meeting November 4, 2002.

1 Intrusion Tolerance for NEST Bruno Dutertre, Steven Cheung SRI International NEST 2 Kickoff Meeting November 4, 2002.
Kerberos and PKI Cooperation Daniel Kouřil, Luděk Matyska, Michal Procházka Masaryk University AFS & Kerberos Best Practices Workshop 2006.

Kerberos and PKI Cooperation Daniel Kouřil, Luděk Matyska, Michal Procházka Masaryk University AFS & Kerberos Best Practices Workshop 2006.
National Center for Supercomputing Applications PKI and CKM ® Scaling Study NCASSR Kick-off Meeting June 11-12, 2003 Jim Basney

National Center for Supercomputing Applications PKI and CKM ® Scaling Study NCASSR Kick-off Meeting June 11-12, 2003 Jim Basney
Leveraging IP for Sensor Network Deployment Simon Duquennoy, Niklas Wirstrom, Nicolas Tsiftes, Adam Dunkels Swedish Institute of Computer Science Presenter.

Leveraging IP for Sensor Network Deployment Simon Duquennoy, Niklas Wirstrom, Nicolas Tsiftes, Adam Dunkels Swedish Institute of Computer Science Presenter.
Secure Multicast Xun Kang. Content Why need secure Multicast? Secure Group Communications Using Key Graphs Batch Update of Key Trees Reliable Group Rekeying.

Secure Multicast Xun Kang. Content Why need secure Multicast? Secure Group Communications Using Key Graphs Batch Update of Key Trees Reliable Group Rekeying.
College ICT Committee An Overview of DARS Stewart Watson 29 th April 2008 Copy for distribution.

College ICT Committee An Overview of DARS Stewart Watson 29 th April 2008 Copy for distribution.
Security in Wireless Sensor Networks Perrig, Stankovic, Wagner Jason Buckingham CSCI 7143: Secure Sensor Networks August 31, 2004.

Security in Wireless Sensor Networks Perrig, Stankovic, Wagner Jason Buckingham CSCI 7143: Secure Sensor Networks August 31, 2004.
WIRELESS SENSOR NETWORK SECURITY USING GROUP KEY MANAGEMENT SCHEME Presented By: Mohammed Saleh CS 599a Fall06.

WIRELESS SENSOR NETWORK SECURITY USING GROUP KEY MANAGEMENT SCHEME Presented By: Mohammed Saleh CS 599a Fall06.
Mobile and Pervasive Computing Overview Material taken from: “Fundamental Challenges in Mobile Computing” and “Pervasive Computing: Vision and Challenges”

Mobile and Pervasive Computing Overview Material taken from: “Fundamental Challenges in Mobile Computing” and “Pervasive Computing: Vision and Challenges”

Similar presentations

Ads by Google