• Home

  • Documents

  • Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith...
20
Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Tags:

Embed Size (px)

Citation preview

Page 1: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor

Networks

Shajith RaviSchool of EECS - OSU

CS519 - Advanced Network Security

Page 2: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Source Papers

• A Randomized, Efficient, and Distributed Protocol for the Detection of Node Replication Attacks in Wireless Sensor Networks

Mauro Conti, Roberto Di Pietro, Luigi V. Mancini and Alessandro Mei

• Hash-Based Sequential Aggregate and Forward Secure Signature for Unattended Wireless Sensor Networks

Attila Altay Yavuz , Peng Ning

Page 3: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Objective

• RED claims to have best routing protocol; energy, memory and computationally efficient

• RED is based on a general PKC system e.g. ECDSA, RSA.

• HaSAFSS claims to be faster than standard PKCs, with just 3 hash operations for a signature generation/verification system.

• Objective : Integrate HaSAFSS into RED

Page 4: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Wireless Sensor Network (WSN)

• What are WSNs?• Unattended?• Applications• Drawbacks• Existing Protocols

Page 5: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security
Page 6: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Node Replication Attack: an attacker captures a node, clone it and distributes the cloned nodes in the network area. • Cloned nodes could be used by the attacker to

subvert the data aggregation or the decision making if based on some voting mechanism.

Page 7: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

RED Protocol

• ID-based PKC• Time synchronized • Two Steps :– Random Value – Detection Phase

Page 8: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Pseudocode

Page 9: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Seed

Random value is the seed. Broadcasted using centralized or distributed mechanism.

Page 10: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Detection Phase

• Each node broadcasts its claim (ID and location). • Each node that hears a claim sends (with probability p) this

claim to a set of g ≥ 1 pseudo-randomly selected network locations. – The pseudo random function takes as an input: ID, rand, g. – Every node in the path (from claiming node to the witness

destination) forwards the message to its neighbor nearest to the destination.

Page 11: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Part 1

Page 12: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Verification to Revocation

Page 13: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

HaSAFSS

• Four algorithms:– Key Generation– Forward-secure and aggregate signature

generation– Time Trapdoor Release– Signature Verfication

Page 14: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Key Generation

Page 15: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Time Trapdoor Release

• Synchronous mode– the TTP can release the time trapdoor keys based on a pre-determined

data delivery schedule periodically, without requiring an interaction with the receivers.

• Asynchronous mode– the TTP releases the time trapdoor key if and only if it is requested by

a sufficient number of valid receivers.

Page 16: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Signature Generation

Page 17: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Signature Verification

Page 18: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Part 2 - Verification(Sym HaSAFSS)

Page 19: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Future Work

• Find a way to integrate Sym-HaSAFSS in order to replace a crypto system eg:ECDSA in RED

• Compare and Contrast performance analysis of original algorithm and modified algorithm

Page 20: Integrating HaSAFSS into R.E.D for Node Replication Detection in Wireless Sensor Networks Shajith Ravi School of EECS - OSU CS519 - Advanced Network Security

Thank You !

Questions?


Digital Booklet - R.E.D. (Deluxe Edition)

Digital Booklet - R.E.D. (Deluxe Edition)

Documents
BRAVO 4 ALU R.E.D. KITE HAND PUMP

BRAVO 4 ALU R.E.D. KITE HAND PUMP

Documents
CS519: Lecture 7 zUniprocessor and Multiprocessor Scheduling

CS519: Lecture 7 zUniprocessor and Multiprocessor Scheduling

Documents
R.E.D. CONSULTANTS MANUAL

R.E.D. CONSULTANTS MANUAL

Documents
CS519: Computer Networks - Cornell University€¦ · network is performing: Load Power Delay = “optimal ... zReset cwnd to ssthresh (resume congestion avoidance) CS519 Fast Recovery

CS519: Computer Networks - Cornell University€¦ · network is performing: Load Power Delay = “optimal ... zReset cwnd to ssthresh (resume congestion avoidance) CS519 Fast Recovery

Documents
CS519 - Visual Software Evolution Reconstruction

CS519 - Visual Software Evolution Reconstruction

Software
Navigating OSU

Navigating OSU

Education
R.E.D. version 1.0 User’s Manual and Tutorialupjv.q4md-forcefieldtools.org/RED/RED-I.pdf · Manual & Tutorial-I- Why R.E.D. & X R.E.D.? The Derivation of RESP ... Although "perl"

R.E.D. version 1.0 User’s Manual and Tutorialupjv.q4md-forcefieldtools.org/RED/RED-I.pdf · Manual & Tutorial-I- Why R.E.D. & X R.E.D.? The Derivation of RESP ... Although "perl"

Documents
CS519: Computer Networks · CS519 Address realms and NAT |Certain blocks of IP addresses have been designated “private addresses” zRFC 1918 z10/8, 172.16/12, and 192.168/16 |These

CS519: Computer Networks · CS519 Address realms and NAT |Certain blocks of IP addresses have been designated “private addresses” zRFC 1918 z10/8, 172.16/12, and 192.168/16 |These

Documents
CS519: Computer Networks - Cornell University Router BGP/MPLS Secure Non-secure CS519 What is a VPN? |Making a shared network look like a private network |Why do this? zPrivate networks

CS519: Computer Networks - Cornell University Router BGP/MPLS Secure Non-secure CS519 What is a VPN? |Making a shared network look like a private network |Why do this? zPrivate networks

Documents
CS519: Deep Learning 1. Introduction - Oregon State …classes.engr.oregonstate.edu/eecs/winter2016/cs519-006/Slides/1B... · CS519: Deep Learning 1. Introduction Winter 2016 Fuxin

CS519: Deep Learning 1. Introduction - Oregon State …classes.engr.oregonstate.edu/eecs/winter2016/cs519-006/Slides/1B... · CS519: Deep Learning 1. Introduction Winter 2016 Fuxin

Documents
Osu 1308287500

Osu 1308287500

Documents
R.E.D. Tema 15/16 Métodos de implantación de vegetación TEMA 15-16 … teoria/Tema... · 2015-03-11 · R.E.D. Tema 15/16 Métodos de implantación de vegetación 25 Tepes 03/04/2006

R.E.D. Tema 15/16 Métodos de implantación de vegetación TEMA 15-16 … teoria/Tema... · 2015-03-11 · R.E.D. Tema 15/16 Métodos de implantación de vegetación 25 Tepes 03/04/2006

Documents
CS519: Computer Datagram (IP) Networks

CS519: Computer Datagram (IP) Networks

Documents
R.E.D. August 2014

R.E.D. August 2014

Entertainment & Humor
Manual OSU

Manual OSU

Documents
CS519 Fall 2003 zDistributed File Systems zLecturer: Ricardo Bianchini

CS519 Fall 2003 zDistributed File Systems zLecturer: Ricardo Bianchini

Documents
CS519: Computer Networks

CS519: Computer Networks

Documents
The R.E.D. Tools: Advances in RESP and ESP charge derivation … · 2010-06-23 · The R.E.D. Tools: Advances in RESP and ESP charge derivation and force field library building June

The R.E.D. Tools: Advances in RESP and ESP charge derivation … · 2010-06-23 · The R.E.D. Tools: Advances in RESP and ESP charge derivation and force field library building June

Documents
Digital Booklet - R.E.D

Digital Booklet - R.E.D

Documents
Cornerstone Automation Systems et. al. v. R.E.D. Stamp et. al

Cornerstone Automation Systems et. al. v. R.E.D. Stamp et. al

Documents
Nuwara Osu

Nuwara Osu

Health & Medicine
CS519: Deep Learning 1. Introduction

CS519: Deep Learning 1. Introduction

Documents
R.E.D. User's Manual and tutorial

R.E.D. User's Manual and tutorial

Documents
Digital Booklet - The R.E.D. Album

Digital Booklet - The R.E.D. Album

Documents
CS519: Computer Networks - Cornell University · CS519 Alternative approaches |In the mid-90’s, there was a concerted effort to make Internet QoS more router-centric, reservation-based,

CS519: Computer Networks - Cornell University · CS519 Alternative approaches |In the mid-90’s, there was a concerted effort to make Internet QoS more router-centric, reservation-based,

Documents
grea The OSU Extension OSU Extension’s FARM OFFICE Farm

grea The OSU Extension OSU Extension’s FARM OFFICE Farm

Documents
CS519: Computer Networks - Cornell University Computer Networks Lecture 1: Jan 26, 2004 Intro to Computer Networking CS519 Lets start at the beginning… |What is a network for? zTo

CS519: Computer Networks - Cornell University Computer Networks Lecture 1: Jan 26, 2004 Intro to Computer Networking CS519 Lets start at the beginning… |What is a network for? zTo

Documents
R.e.d corporate presentation2012

R.e.d corporate presentation2012

Real Estate
CS519: Computer Networks - Cornell University€¦ · CS519 History of VPNs |Originally a telephone network concept zSeparated offices could have a phone system that looked like one

CS519: Computer Networks - Cornell University€¦ · CS519 History of VPNs |Originally a telephone network concept zSeparated offices could have a phone system that looked like one

Documents