ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Efficient security primitives derived from a secure aggregation algorithm
Full text PdfPdf (940 KB)
Source
Conference on Computer and Communications Security archive
Proceedings of the 15th ACM conference on Computer and communications security table of contents
Alexandria, Virginia, USA
SESSION: Applied cryptography 2 table of contents
Pages 521-534  
Year of Publication: 2008
ISBN:978-1-59593-810-7
Authors
Haowen Chan  Carnegie Mellon University, Pittsburgh, PA, USA
Adrian Perrig  Carnegie Mellon University, Pittsburgh, PA, USA
Sponsors
ACM: Association for Computing Machinery
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 30,   Downloads (12 Months): 334,   Citation Count: 0
Additional Information:

abstract   references   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1455770.1455836
What is a DOI?

ABSTRACT

By functionally decomposing a specific algorithm (the hierarchical secure aggregation algorithm of Chan et al. [3] and Frikken et al. [7]), we uncover a useful general functionality which we use to generate various efficient network security primitives, including: a signature scheme ensuring authenticity, integrity and non-repudiation for arbitrary node-to-node communications; an efficient broadcast authentication algorithm not requiring time synchronization; a scheme for managing public keys in a sensor network without requiring any asymmetric cryptographic operations to verify the validity of public keys, and without requiring nodes to maintain node revocation lists. Each of these applications uses the same basic data aggregation primitive and thus have O(log n) congestion performance and require only that symmetric secret keys are shared between each node and the base station. We thus observe the fact that the optimizations developed in the application area of secure aggregation can feed back into creating more optimized versions of highly general, basic security functions.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Haowen Chan , Virgil D. Gligor , Adrian Perrig , Gautam Muralidharan, On the Distribution and Revocation of Cryptographic Keys in Sensor Networks, IEEE Transactions on Dependable and Secure Computing, v.2 n.3, p.233-247, July 2005  [doi>10.1109/TDSC.2005.37]
 
2
Haowen Chan , Adrian Perrig , Dawn Song, Random Key Predistribution Schemes for Sensor Networks, Proceedings of the 2003 IEEE Symposium on Security and Privacy, p.197, May 11-14, 2003
3
Haowen Chan , Adrian Perrig , Dawn Song, Secure hierarchical in-network aggregation in sensor networks, Proceedings of the 13th ACM conference on Computer and communications security, October 30-November 03, 2006, Alexandria, Virginia, USA  [doi>10.1145/1180405.1180440]
4
Qi Dong , Donggang Liu , Peng Ning, Pre-authentication filters: providing dos resistance for signature-based broadcast authentication in sensor networks, Proceedings of the first ACM conference on Wireless network security, March 31-April 02, 2008, Alexandria, VA, USA  [doi>10.1145/1352533.1352536]
 
5
W. Du, J. Deng, Y. Han, and P. K. Varshney. A witness-based approach for data fusion assurance in wireless sensor networks. In Proceedings of the IEEE Global Telecommunications Conference, 2003.
6
Wenliang Du , Ronghua Wang , Peng Ning, An efficient scheme for authenticating public keys in sensor networks, Proceedings of the 6th ACM international symposium on Mobile ad hoc networking and computing, May 25-27, 2005, Urbana-Champaign, IL, USA  [doi>10.1145/1062689.1062698]
7
Keith B. Frikken , Joseph A. Dougherty, IV, An efficient integrity-preserving scheme for hierarchical sensor aggregation, Proceedings of the first ACM conference on Wireless network security, March 31-April 02, 2008, Alexandria, VA, USA  [doi>10.1145/1352533.1352546]
 
8
G. Gaubatz, J. Kaps, and B. Sunar. Public keys cryptography in sensor networks -- revisited. In Proceedings of European Workshop on Security in Ad-Hoc and Sensor Networks (ESAS), 2004.
 
9
Vipul Gupta , Matthew Millard , Stephen Fung , Yu Zhu , Nils Gura , Hans Eberle , Sheueling Chang Shantz, Sizzle: A Standards-Based End-to-End Security Architecture for the Embedded Internet (Best Paper), Proceedings of the Third IEEE International Conference on Pervasive Computing and Communications, p.247-256, March 08-12, 2005  [doi>10.1109/PERCOM.2005.41]
 
10
L. Hu and D. Evans. Secure aggregation for wireless networks. In Workshop on Security and Assurance in Ad hoc Networks, 2003.
 
11
P. Jadia and A. Mathuria. Efficient secure aggregation in sensor networks. In Proceedings of the 11th International Conference on High Performance Computing, 2004.
 
12
An Liu , Peng Ning, TinyECC: A Configurable Library for Elliptic Curve Cryptography in Wireless Sensor Networks, Proceedings of the 7th international conference on Information processing in sensor networks, p.245-256, April 22-24, 2008  [doi>10.1109/IPSN.2008.47]
13
Donggang Liu , Peng Ning, Multilevel μTESLA: Broadcast authentication for distributed sensor networks, ACM Transactions on Embedded Computing Systems (TECS), v.3 n.4, p.800-836, November 2004  [doi>10.1145/1027794.1027800]
 
14
Donggang Liu , Peng Ning , Sencun Zhu , Sushil Jajodia, Practical Broadcast Authentication in Sensor Networks, Proceedings of the The Second Annual International Conference on Mobile and Ubiquitous Systems: Networking and Services, p.118-132, July 17-21, 2005  [doi>10.1109/MOBIQUITOUS.2005.49]
15
Mark Luk , Adrian Perrig , Bram Whillock, Seven cardinal properties of sensor network broadcast authentication, Proceedings of the fourth ACM workshop on Security of ad hoc and sensor networks, October 30-30, 2006, Alexandria, Virginia, USA  [doi>10.1145/1180345.1180364]
16
Samuel Madden , Michael J. Franklin , Joseph M. Hellerstein , Wei Hong, TAG: a Tiny AGgregation service for ad-hoc sensor networks, ACM SIGOPS Operating Systems Review, v.36 n.SI, Winter 2002  [doi>10.1145/844128.844142]
 
17
A. Mahimkar and T. Rappaport. SecureDAV: A secure data aggregation and verification protocol for sensor networks. In Proceedings of the IEEE Global Telecommunications Conference, 2004.
 
18
D. Malan, M. Welsh, and M. Smith. A public-key infrastructure for key distribution in TinyOS based on elliptic curve cryptography. In Proceedings of IEEE Conference on Sensor and Ad hoc Communications and Networks (SECON), Oct. 2004.
 
19
M. Manulis and J. Schwenk. Provably secure framework for information aggregation in sensor networks. In Proceedings of the International Conference on Computational Science and Its Applications (ICCSA), Aug. 2007.
 
20
Ralph C. Merkle, A Digital Signature Based on a Conventional Encryption Function, A Conference on the Theory and Applications of Cryptographic Techniques on Advances in Cryptology, p.369-378, August 16-20, 1987
21
Peng Ning , An Liu , Wenliang Du, Mitigating DoS attacks against broadcast authentication in wireless sensor networks, ACM Transactions on Sensor Networks (TOSN), v.4 n.1, p.1-35, January 2008  [doi>10.1145/1325651.1325652]
 
22
Adrian Perrig , Robert Szewczyk , J. D. Tygar , Victor Wen , David E. Culler, SPINS: security protocols for sensor networks, Wireless Networks, v.8 n.5, p.521-534, September 2002  [doi>10.1023/A:1016598314198]
23
Bartosz Przydatek , Dawn Song , Adrian Perrig, SIA: secure information aggregation in sensor networks, Proceedings of the 1st international conference on Embedded networked sensor systems, November 05-07, 2003, Los Angeles, California, USA  [doi>10.1145/958491.958521]
24
David Wagner, Resilient aggregation in sensor networks, Proceedings of the 2nd ACM workshop on Security of ad hoc and sensor networks, October 25-25, 2004, Washington DC, USA  [doi>10.1145/1029102.1029116]
25
Yi Yang , Xinran Wang , Sencun Zhu , Guohong Cao, SDAP: a secure hop-by-Hop data aggregation protocol for sensor networks, Proceedings of the 7th ACM international symposium on Mobile ad hoc networking and computing, May 22-25, 2006, Florence, Italy  [doi>10.1145/1132905.1132944]
 
26
S. Zhu, S. Setia, S. Jajodia, and P. Ning. An interleaved hop-by-hop authentication scheme for filtering false data in sensor networks. In Proceedings of IEEE Symposium on Security and Privacy, pages 259--271, May 2004.

INDEX TERMS

Primary Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.0 General
          Subjects: Security and protection (e.g., firewalls)


General Terms:
Algorithms, Security


Keywords:
authentication, broadcast, data aggregation, integrity, public key management, sensor networks, signatures

Collaborative Colleagues:
Haowen Chan: colleagues
Adrian Perrig: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player