An interleaved hop-by-hop authentication scheme for filtering of injected false data in sensor networks (2004) [41 citations — 5 self]

Download:

by Sencun Zhu, Sanjeev Setia, Sushil Jajodia

in IEEE Symposium on Security and Privacy

http://mason.gmu.edu/~szhu1/ilhap.pdf

Add To MetaCart

Popular Tags

No tags have been applied to this document.

BibTeX | Add To MetaCart

@INPROCEEDINGS{Zhu04aninterleaved,
    author = {Sencun Zhu and Sanjeev Setia and Sushil Jajodia},
    title = {An interleaved hop-by-hop authentication scheme for filtering of injected false data in sensor networks},
    booktitle = {in IEEE Symposium on Security and Privacy},
    year = {2004},
    pages = {259--271}
}

Abstract:

Sensor networks are often deployed in unattended environments, thus leaving these networks vulnerable to false data injection attacks in which an adversary injects false data into the network with the goal of deceiving the base station or depleting the resources of the relaying nodes. Standard authentication mechanisms cannot prevent this attack if the adversary has compromised one or a small number of sensor nodes. In this paper, we present an interleaved hop-by-hop authentication scheme that guarantees that the base station will detect any injected false data packets when no more than a certain number t nodes are compromised. Further, our scheme provides an upper bound B for the number of hops that a false data packet could be forwarded before it is detected and dropped, given that there are up to t colluding compromised nodes. We show that in the worst case B is O(t 2). We also propose a variant of this scheme which guarantees B = 0 and works for a small t. Through performance analysis, we show that our scheme is efficient with respect to the security it provides, and it also allows a tradeoff between security and performance. 1.

Citations

880	System Architecture Directions for Networked Sensors – Hill, Szewczyk, et al. - 2000
480	How to construct random functions – Goldreich, Goldwasser, et al. - 1986
320	SPINS: Security protocols for sensor networks – Perrig, Szewczyk, et al. - 2001
236	A key-management scheme for distributed sensor networks – Eschenauer, Gligor - 2002
233	Random key predistribution schemes for sensor networks – Chan, Perrig, et al. - 2003
216	Password authentication with insecure communication – Lamport - 1981
163	A pairwise key pre-distribution scheme for wireless sensor networks – Du, Deng, et al.
160	GHT: a geographic hash table for data-centric storage – Ratnasamy, Karp, et al. - 2002
157	Establishing pairwise keys in distributed sensor networks – Liu, Ning
118	LEAP: Efficient Security Mechanisms for Large-Scale Distributed Sensor Networks – Zhu, Setia, et al. - 2003
106	An optimal class of symmetric key generation systems – Blom - 1987
99	XOR MACs: New methods for message authentication using nite pseudorandom functions – Bellare, Guerin, et al. - 1995
96	PerfectlySecure Key Distribution for Dynamic Conferences – Blundo, Santis, et al. - 1998
77	SIA: Secure information aggregation in sensor networks – Przydatek, Song, et al. - 2003
70	Secure pebblenets – Basagni, Herrin, et al. - 2001
52	Establishing Pairwise Keys For Secure Communication in Ad Hoc Networks: A Probabilistic Approach – Zhu, Xu, et al.
40	Secure Aggregation for Wireless Networks – Hu, Evans
36	Location-based pairwise key establishments of static sensor networks – Liu, Ning - 2003
27	Secure Routing in Sensor Networks: Attacks and Countermeasures – Karlof, Wagner - 2003
16	Statistical en-route detection and filtering of injected false data in sensor networks – Ye, Luo, et al. - 2004
7	Integrity Preservation for Communication in Sensor Networks – Vogt - 2004

View or Download | Add to My Collection | Correct Errors