securing communication in wsn trough use of cryptography
play

Securing communication in WSN trough use of cryptography Ace - PowerPoint PPT Presentation

Dec 04, 2022 •21 likes •201 views

Faculty of Electrical Engineering - Skopje Securing communication in WSN trough use of cryptography Ace Dimitrievski Biljana Stojkoska Kire Trivodaliev Danco Davcev NATO-ARW, Suceava, September 4-8, 2006 {ace, biljana.stojkoska,

  1. Faculty of Electrical Engineering - Skopje Securing communication in WSN trough use of cryptography Ace Dimitrievski Biljana Stojkoska Kire Trivodaliev Danco Davcev NATO-ARW, Suceava, September 4-8, 2006 {ace, biljana.stojkoska, kire.trivodaliev, etfdav}@etf.ukim.edu.mk

  2. 1. Introduction • What is Wireless Sensor Network (WSN)? WSN consists of hundreds or thousands of low-power nodes, that are able to sense real phenomena and communicate with each other. The data collected by the nodes is transferred to central device called Sink where sensor information are accumulated and processed. • Why do we need security in WSN? WSNs are becoming increasingly popular for military and industry use. Because of this we cannot accept “security through obscurity” thus we need concrete protection against intruders. • Security issues Several factors make WSN susceptible to security threats. Those factors include the use of wireless medium, limited processor, memory and power resources, physical exposure of the nodes to the adversary, and the ad-hock infrastructure. We identify several possible scenarios of attacking the WSN and we use adaptive holistic approach to investigate the use of cryptography to provide level of security against the identified attacks. NATO-ARW, Suceava, September 4-8, 2006

  3. 2. Security threats in WSN • Most attacks on WSN are based on the “man in the middle” scenario. Node • Types of attack • Sniffing • Data integrity • Energy drain • Black hole • Hello flood • Wormhole Adversary Sink NATO-ARW, Suceava, September 4-8, 2006

  4. 2.1. Security threats in WSN – Sniffing attack • Sniffing attacks are done when a note is placed in the proximity of the sensor grid and Sink data is captured by it. The collected data is transferred to the intruder by some means. • The attack is based on the inherit vulnerability Node of the wireless networks of having unsecured and shared medium. Adversary • The goal of this attack is to gather valuable data from the sensors. Often this attack is related to military or industrial espionage. Intruder’s data processing center NATO-ARW, Suceava, September 4-8, 2006

  5. 2.2. Security threats in WSN – Data integrity attacks • Data integrity attacks compromise the data traveling among the nodes in WSN by changing the data contained within the packets. Sink • The attack is possible because of the protocols used in WSN for data exchange and route discovery. The attacker node must have processing, memory and power capabilities far Node greater than the sensor nodes. • The goals of this attack can be: Adversary • To falsify sensor data and by doing so compromise the victim’s research • To falsify routing data in order to disrupt the sensor network’s normal operation, possibly making it useless. This is considered DoS attack. • To use known vulnerabilities in the network stack in order to hack the node’s software. NATO-ARW, Suceava, September 4-8, 2006

  6. 2.3. Security threats in WSN – Energy drain attacks • Energy drain attack is conducted when an adversary node radiates large amount of traffic and requires other nodes to respond. Sink • The power scarcity of the WSN nodes and the fact that radio transmissions plays a huge part in energy spending makes this attack possible. Node However the attack is possible only if the intruder’s node has enough energy to transmit packets at a constant rate. The routing Adversary algorithms can compensate for this attack so it is necessary for the attacker to has greater transmission range to be able to compromise a large section or the entire network. • The goals of this attack can be: • To destroy the capabilities of the WSN • To split the network grid and consequently take control of part of the sensor network by inserting a new Sink NATO-ARW, Suceava, September 4-8, 2006 node.

  7. 2.4. Security threats in WSN – Black hole attack • The black hole attack consists of positioning a node in range of the sink and attract the entire traffic to be routed thrugh it by advertising itself Sink as the shortest route. • The routing protocols that are responsible for the survival of the network as long as possible Adversary Node present the possibility for this attack. The attacker is faced with the issues of greater radio coverage and data throughput and consequently the issue of energy resources. •The goals of this attack can be: • To provide a better ground for lunching other attacks like data integrity or sniffing. • To block the traffic to the sink NATO-ARW, Suceava, September 4-8, 2006

  8. 2.5. Security threats in WSN – Hello Flood Attack • In hello flood attack HELLO packets are used to establish the attacker as a neighbor to the sensors located in wire area thus fooling them Sink to send the data destined for the base station through it. • This attack is similar in nature to some of the Node previously described attacks and it also requires large energy spending and long range radio coverage by the adversary. Adversary •The goals of this attack can be: • To be an alternative to the black hole attack • To control the data flow in the WSN • To be combined with some of the other attacks NATO-ARW, Suceava, September 4-8, 2006

  9. 2.6. Security threats in WSN – Worm hole Attack • Wormhole attack is a layer 1 attack. It is done by the intruder node acting as a repeater between two or more nodes. In doing so the Sink attacker creates a virtual wormhole so the victim nodes discover each other as neighbors. • This is by far the hardest attack to protect Node against since it is committed on level 1 of the network stack and only the data channel is Wormhole transceiver affected. Our research has not yet came up with cost effective solution for this attack using cryptography. Complex routing protocols could present a solution. This issue is interesting research challenge. •The goals of this attack can be: • To undermine cryptography protection • To confuse the sensor’s protocols and disrupt normal functioning NATO-ARW, Suceava, September 4-8, 2006

  10. 3. Application of cryptography in WSN • Identify cryptographic goals • Confidentiality • Data integrity • Authentication • Non-repudiation (little interest to WSN) • Identify protection schemes • Identify constraints • Identify cost • Adaptive holistic approach NATO-ARW, Suceava, September 4-8, 2006

  11. 3.1.1. Application of cryptography in WSN - Confidentiality • Confidentiality is a service used to keep the content of information from all but those authorized to have it. • Confidentiality is used to handle the sniffing attacks. The packets could be captured by the Adversary adversary but it won’t be intelligible for to be used in any way. • Confidentiality can be achieved by using cryptography. Either symmetric or asymmetric key can be used to protect the data from exposure to the adversary. Intruder’s data processing center NATO-ARW, Suceava, September 4-8, 2006

  12. 3.1.2. Application of cryptography in WSN – Data integrity • Data integrity is a service that prevents or identifies unauthorized alteration of data. • By providing data integrity we are able to solve the Data integrity attacks. Original message • Data integrity is achieved by means of signing the data content. If the adversary changes the message then the receiving node can identify Adversary the modification and disregard the message. M m o d e s i f s i a e g d e NATO-ARW, Suceava, September 4-8, 2006

  13. 3.1.3. Application of cryptography in WSN - Authentication • Authentication is a service that provides that the parties involved in communication are authorized and to confirm their identity. • This cryptographic goal can be used to prevent data integrity, energy drain, black hole and hello flood attacks. Adversary • Authentication is accomplished by providing cryptographic means of identifying each node. • Data integrity attacks can be handled using authentication. When a node is not successfully identifies the intruder’s node the node does not become a part of the network so data from that node is disregarded. • Energy drain and black hole attacks depend on the nodes talking to the adversary. This can be prohibited by preventing the nodes from sending messages to unauthorized nodes. • In the hello flood attacks the enemy nodes are not able to advertise themselves as neighbors because they are also required to authenticated. NATO-ARW, Suceava, September 4-8, 2006

  14. 3.2. Application of cryptography in WSN - Constrains • Memory constrains The are two types of memory constrains in WSN for implementing cryptography. First is limited RAM memory and the second is limited code memory. • Processor constrains Cryptography is processor demanding activity. Especially public key cryptography is processor demanding since to achieve good security longer keys are required. • Energy constrains Nodes are battery powered and thus for them to achieve longer live and functioning must save energy. Most of the energy is spend by the radio transmission. NATO-ARW, Suceava, September 4-8, 2006

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography & http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
IoT Security Image: xkcd How is securing IoT different from securing any other system? IoT

IoT Security Image: xkcd How is securing IoT different from securing any other system? IoT

IoT Security Image: xkcd How is securing IoT different from securing any other system? IoT is a system of systems, with A great deal of heterogeneity (sensing, computation, communication, energy) New types of devices appearing all

1.35k views • 65 slides
Parabolic Solar Trough Section: Red A Use for Parabolic Solar Trough n Energy from sun is 1000

Parabolic Solar Trough Section: Red A Use for Parabolic Solar Trough n Energy from sun is 1000

Parabolic Solar Trough Section: Red A Use for Parabolic Solar Trough n Energy from sun is 1000 w/m 2 n Parabola focuses energy on a point n Typical temperatures: 250 400C Current Designs n Built on welded metal frame n Large

408 views • 8 slides
Cryptography MELISSA CHASE, MSR Modern Cryptography the scientific study of techniques for

Cryptography MELISSA CHASE, MSR Modern Cryptography the scientific study of techniques for

Cryptography MELISSA CHASE, MSR Modern Cryptography the scientific study of techniques for securing digital information, transactions, and distributed computations Katz and Lindell 07 Authentication Verifiable elections

351 views • 20 slides
A High-Level Overview of Cryptography Daniel Bosk School of Computer Science and Communication,

A High-Level Overview of Cryptography Daniel Bosk School of Computer Science and Communication,

Introduction Shared-key cryptography Public-key cryptography More counter-intuitive things References A High-Level Overview of Cryptography Daniel Bosk School of Computer Science and Communication, KTH Royal Institute of Technology,

1.58k views • 145 slides
Supporting Informal Interaction in a Hospital trough Impromptu Social Networking Jess Favela /

Supporting Informal Interaction in a Hospital trough Impromptu Social Networking Jess Favela /

Supporting Informal Interaction in a Hospital trough Impromptu Social Networking Jess Favela / Sergio Ochoa CICESE, Mxico / Universidad de Chile Informal Communication in Hospitals Hospital Work Intense local mobility Task

591 views • 19 slides
Securing Internet Communication: TLS, contd Network security CS 161: Computer Security Prof.

Securing Internet Communication: TLS, contd Network security CS 161: Computer Security Prof.

Securing Internet Communication: TLS, contd Network security CS 161: Computer Security Prof. Raluca Ada Popa Feb 27, 2018 Some slides credit David Wagner Announcements Midterm grades released Regrades: Read the follow-ups on the

1.75k views • 156 slides
Securing Practical Quantum Cryptography with Optical Power Limiters Gong Zhang 1,* , Ignatius

Securing Practical Quantum Cryptography with Optical Power Limiters Gong Zhang 1,* , Ignatius

Securing Practical Quantum Cryptography with Optical Power Limiters Gong Zhang 1,* , Ignatius William Primaatmaja 2 , Jing Yan Haw 1 , Xiao Gong 1 , Chao Wang 1, , and Charles C.-W. Lim 1,2, * zhanggong@nus.edu.sg wang.chao@nus.edu.sg

856 views • 21 slides
Securing Internet Communication CS 161: Computer Security Prof. Vern Paxson TAs: Devdatta

Securing Internet Communication CS 161: Computer Security Prof. Vern Paxson TAs: Devdatta

Securing Internet Communication CS 161: Computer Security Prof. Vern Paxson TAs: Devdatta Akhawe, Mobin Javed & Matthias Vallentin http://inst.eecs.berkeley.edu/~cs161/ March 31, 2011 Todays Lecture Applying crypto technology in

695 views • 51 slides
Quick Intro to Computer Security What is computer security? Securing communication

Quick Intro to Computer Security What is computer security? Securing communication

Carnegie Mellon Quick Intro to Computer Security What is computer security? Securing communication Cryptographic tools Access control User authentication Computer security and usability Thanks to Mike Reiter for the

412 views • 38 slides
SECURING DONATIONS SECURING DONATIONS nonprofit.212mediastudios.com | 574.269.0720 |

SECURING DONATIONS SECURING DONATIONS nonprofit.212mediastudios.com | 574.269.0720 |

NON-PROFIT PRESENTATION TIPS FOR NON-PROFIT PRESENTATION TIPS FOR SECURING DONATIONS SECURING DONATIONS nonprofit.212mediastudios.com | 574.269.0720 | info@212mediastudios.com Having an efgective communication strategy is the fjrst step for your

116 views • 9 slides
Securing Internet Communication: TLS CS 161: Computer Security Prof. Haojin Materials adopted

Securing Internet Communication: TLS CS 161: Computer Security Prof. Haojin Materials adopted

Securing Internet Communication: TLS CS 161: Computer Security Prof. Haojin Materials adopted from Prof. David Wagner 2018 Todays Lecture Applying crypto technology in practice Two simple abstractions cover 80% of the use cases

623 views • 49 slides
Securing Internet Communication: TLS CS 161: Computer Security Prof. Vern Paxson TAs: Paul

Securing Internet Communication: TLS CS 161: Computer Security Prof. Vern Paxson TAs: Paul

Securing Internet Communication: TLS CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen, Apoorva Dornadula, David Fifield, Mia Gil Epner, David Hahn, Warren He, Grant Ho, Frank Li, Nathan Malkin, Mitar Milutinovic, Rishabh Poddar,

873 views • 56 slides
Securing Internet Communication: TLS & DNSSEC CS 161: Computer Security Prof. Vern Paxson

Securing Internet Communication: TLS & DNSSEC CS 161: Computer Security Prof. Vern Paxson

Securing Internet Communication: TLS & DNSSEC CS 161: Computer Security Prof. Vern Paxson TAs: Paul Bramsen, Apoorva Dornadula, David Fifield, Mia Gil Epner, David Hahn, Warren He, Grant Ho, Frank Li, Nathan Malkin, Mitar Milutinovic,

1.51k views • 92 slides
Cryptography: Public Key Cryptography; Mathematical Preliminaries Greg Plaxton Theory in

Cryptography: Public Key Cryptography; Mathematical Preliminaries Greg Plaxton Theory in

Cryptography: Public Key Cryptography; Mathematical Preliminaries Greg Plaxton Theory in Programming Practice, Spring 2005 Department of Computer Science University of Texas at Austin Secure Communication Earlier we discussed the problems

202 views • 18 slides
Securing Home Networks Securing Home Networks protocols protocols A SWN04 A SWN04 K.

Securing Home Networks Securing Home Networks protocols protocols A SWN04 A SWN04 K.

Securing Home Networks Securing Home Networks protocols protocols A SWN04 A SWN04 K. MASMOUDI, K. MASMOUDI, H. AFIFI H. AFIFI Boston, 08/2004 6 th PCRD Integrated Project Goal : provide secure communication

450 views • 22 slides
Pr rtr rtt

Pr rtr rtt

Pr rtr rtt t r rt

265 views • 25 slides
Should Elliptic Curve Cryptography Really be Deprecated? Connor Adsit cda8519@rit.edu May 13,

Should Elliptic Curve Cryptography Really be Deprecated? Connor Adsit cda8519@rit.edu May 13,

Should Elliptic Curve Cryptography Really be Deprecated? Connor Adsit cda8519@rit.edu May 13, 2016 Objectives Suite B Cryptography The controversial NSA statement A brief history of ECC (and the NSAs involvement) Why would

351 views • 17 slides
Compression Systems and Blockchain Dr. Mohammed Abutaha PhD. Information Security 1 Outline

Compression Systems and Blockchain Dr. Mohammed Abutaha PhD. Information Security 1 Outline

Chaos-based Crypto Compression Systems and Blockchain Dr. Mohammed Abutaha PhD. Information Security 1 Outline Introduction Chaos based stream cipher Selective encryption on HEVC Chaos crypto and blockchain Demo 2

353 views • 17 slides
Breaking the WW2 German Enigma Historical APT Perspective Richard Brisson Email:

Breaking the WW2 German Enigma Historical APT Perspective Richard Brisson Email:

Breaking the WW2 German Enigma Historical APT Perspective Richard Brisson Email: richardbrisson@sympatico.ca 6/27/2019 1 Overview Enigma Background Getting In! Staying In! Getting Back In! The

730 views • 35 slides
PRISMACLOUD Privacy and Security Maintaining Services in the Cloud Thomas Loruenser AIT Austrian

PRISMACLOUD Privacy and Security Maintaining Services in the Cloud Thomas Loruenser AIT Austrian

PRISMACLOUD Privacy and Security Maintaining Services in the Cloud Thomas Loruenser AIT Austrian Institute of Technology GmbH FOC2015 Vienna / 17.06.2015 Challenges for Future ICT Systems Cloud computing will be at the heart of future ICT

426 views • 17 slides
Safiqul Islam INF -9090 Project Presentation University of Oslo 2 Outline

Safiqul Islam INF -9090 Project Presentation University of Oslo 2 Outline

Encrypted Tunnel Through Virtual Network Interface Safiqul Islam INF -9090 Project Presentation University of Oslo 2 Outline Introduction Background Virtual Private Network Virtual Network Interface Link Local

229 views • 22 slides
Secure Coprocessor What is Secure coprocessor: Robust. (A system that is not easily or is

Secure Coprocessor What is Secure coprocessor: Robust. (A system that is not easily or is

Secure Coprocessor What is Secure coprocessor: Robust. (A system that is not easily or is not wholly affected by a bug in one aspect of it. ) General-purpose computational environments. Secure temper responsive physical package.

366 views • 14 slides
PROJECT RHAPSODY Credential Vault for Personal and Enterprise Use 1 WHAT IS RHAPSODY? A

PROJECT RHAPSODY Credential Vault for Personal and Enterprise Use 1 WHAT IS RHAPSODY? A

RSA LABS PROJECT RHAPSODY Credential Vault for Personal and Enterprise Use 1 WHAT IS RHAPSODY? A credential management service that allows individuals and employees to securely and seamlessly access any app from any device. 2 RHAPSODY

239 views • 9 slides

More recommend