|
 ABSTRACT
As sensor networks edge closer towards wide-spread deployment, security issues become a central concern. So far, much research has focused on making sensor networks feasible and useful, and has not concentrated on security.
We present a suite of security building blocks optimized for resource-constrained environments and wireless communication. SPINS has two secure building blocks: SNEP and &mgr;TESLA SNEP provides the following important baseline security primitives: Data confidentiality, two-party data authentication, and data freshness. A particularly hard problem is to provide efficient broadcast authentication, which is an important mechanism for sensor networks. &mgr;TESLA is a new protocol which provides authenticated broadcast for severely resource-constrained environments. We implemented the above protocols, and show that they are practical even on minimal hardware: the performance of the protocol suite easily matches the data rate of our network. Additionally, we demonstrate that the suite can be used for building higher level protocols.
REFERENCES
Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.
| |
1
|
Secure Microcontrollers for SmartCards. http: //www.atmel.com/atmel/acrobat/1065s.pdf.
|
 |
2
|
|
| |
3
|
David W. Carman, Peter S. Kruus, and Brian J. Matt. Constraints and approaches for distributed sensor network security. NAI Labs Technical Report #00-010, September 2000.
|
| |
4
|
Steven E. Czerwinski , Ben Y. Zhao , Todd D. Hodes , Anthony D. Joseph , Randy H. Katz, An architecture for a secure service discovery service, Proceedings of the 5th annual ACM/IEEE international conference on Mobile computing and networking, p.24-35, August 15-19, 1999, Seattle, Washington, United States
[doi> 10.1145/313451.313462]
|
| |
5
|
D. Johnson and D.A. Maltz and J. Broch. The dynamic source routing protocol for mobile ad hoc networks (internet-draft). In Mobile Ad-hoc Network (MANET) Working Group, IETF, October 1999.
|
| |
6
|
Joan Daemen and Vincent Rijmen. AES proposal: Rijndael, March 1999.
|
| |
7
|
iButton: A Java-Powered Cryptographic iButton. http: //www.ibutton.com/ibuttons/java.html.
|
| |
8
|
W. Diffie and M. E. Hellman. New directions in cryptography. IEEE Trans. Inform. Theory, IT-22:644-654, November 1976.
|
| |
9
|
Whitfield Diffie and Martin E. Hellman. Privacy and authentication: An introduction to cryptography. Proceedings of the IEEE, 67(3):397-427, March 1979.
|
| |
10
|
|
| |
11
|
|
| |
12
|
Shafi Goldwasser and Silvio Micali. Probabilistic encryption. Journal of Computer Security, 28:270-299, 1984.
|
| |
13
|
Z.J. Haas and M. Perlman. The zone routing protocol (ZRP) for ad hoc networks (Internet-Draft). 1998.
|
| |
14
|
Neil M. Haller. The S/KEY one-time password system. In ISOC, 1994.
|
| |
15
|
D. Harkins and D. Carrel. The internet key exchange (IKE). Request for Comments 2409, Information Sciences Institute, University of Southern California, November 1998.
|
| |
16
|
Jason Hill , Robert Szewczyk , Alec Woo , Seth Hollar , David Culler , Kristofer Pister, System architecture directions for networked sensors, Proceedings of the ninth international conference on Architectural support for programming languages and operating systems, p.93-104, November 2000, Cambridge, Massachusetts, United States
|
| |
17
|
D.B. Johnson and D.A. Maltz. Dynamic source routing in ad-hoc wireless networks. In Mobile Computing, 1996.
|
| |
18
|
|
| |
19
|
J. Kohl and C. Neuman. RFC 1510: The Kerberos Network Authentication Service (V5), September 1993. Status: PROPOSED STANDARD.
|
| |
20
|
L. Lamport. Constructing digital signatures from a one-way function. Technical Report CSL-98, SRI International, October 1979.
|
| |
21
|
H. Lipmaa, P. Rogaway, and D. Wagner. Counter mode encryption. http://csrc.nist.gov/encryption/modes/.
|
| |
22
|
|
| |
23
|
S. P. Miller, C. Neuman, J. I. Schiller, and J. H. Saltzer. Kerberos authentication and authorization system. In Project Athena Technical Plan, page section E.2.1, 1987.
|
| |
24
|
N. Modadugu, D. Boneh, and M. Kim. Generating RSA keys on a handheld using an untrusted server. In RSA 2000, 2000.
|
| |
25
|
NIST. Advanced encryption standard (AES) development effort. http://csrc.nist.gov/encryption/aes/, October 2000.
|
| |
26
|
|
| |
27
|
|
| |
28
|
|
| |
29
|
|
| |
30
|
Adrian Perrig, Ran Canetti, Dawn Song, and J. D. Tygar. Efficient and secure source authentication for multicast. In Network and Distributed System Security Symposium, NDSS '01, February 2001.
|
| |
31
|
|
| |
32
|
K. S. J. Pister, J. M. Kahn, and B. E. Boser. Smart dust: Wireless networks of millimeter-scale sensor nodes, 1999.
|
| |
33
|
R. L. Rivest. The RC5 encryption algorithm. Proc. 1st Workshop on Fast Software Encryption, pages 86-96, 1995.
|
| |
34
|
Ronald L. Rivest. The MD5 message-digest algorithm. Internet Request for Comments, April 1992. RFC 1321.
|
| |
35
|
|
| |
36
|
|
| |
37
|
Sergio Marti , T. J. Giuli , Kevin Lai , Mary Baker, Mitigating routing misbehavior in mobile ad hoc networks, Proceedings of the 6th annual international conference on Mobile computing and networking, p.255-265, August 06-11, 2000, Boston, Massachusetts, United States
[doi> 10.1145/345910.345955]
|
| |
38
|
Bruce Schneier. Applied Cryptography (Second Edition). John Wiley & Sons, 1996.
|
| |
39
|
|
| |
40
|
|
| |
41
|
U. S. National Institute of Standards and Technology (NIST). DES model of operation. Federal Information Processing Standards Publication 81 (FIPS PUB 81).
|
| |
42
|
U. S. National Institute of Standards and Technology (NIST). Data Encryption Standard (DES). Draft Federal Information Processing Standards Publication 46-3 (FIPS PUB 46-3), January 1999.
|
| |
43
|
David Wheeler and Roger Needham. TEA, a tiny encryption algorithm. http://www.ftp.cl.cam.ac.uk/ftp/ papers/djw-rmn/djw-rmn-tea.html, November 1994.
|
| |
44
|
|
| |
45
|
L. Zhou and Z.J. Hass. Securing ad hoc networks. 13(6), November/December 1999.
|
CITED BY 186
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Naouel Ben Salem , Levente Buttyán , Jean-Pierre Hubaux , Markus Jakobsson, A charging and rewarding scheme for packet forwarding in multi-hop cellular networks, Proceedings of the 4th ACM international symposium on Mobile ad hoc networking & computing, June 01-03, 2003, Annapolis, Maryland, USA
|
|
|
|
|
|
Prasanth Ganesan , Ramnath Venugopalan , Pushkin Peddabachagari , Alexander Dean , Frank Mueller , Mihail Sichitiu, Analyzing and modeling encryption overhead for sensor network nodes, Proceedings of the 2nd ACM international conference on Wireless sensor networks and applications, September 19-19, 2003, San Diego, CA, USA
|
|
|
|
|
|
|
|
|
|
|
|
Fan Ye , Haiyun Luo , Songwu Lu , Lixia Zhang, Poster abstract: statistical en-route filtering in large scale sensor networks, Proceedings of the 1st international conference on Embedded networked sensor systems, November 05-07, 2003, Los Angeles, California, USA
|
|
|
Ramnath Venugopalan , Prasanth Ganesan , Pushkin Peddabachagari , Alexander Dean , Frank Mueller , Mihail Sichitiu, Encryption overhead in embedded systems and sensor network nodes: modeling and analysis, Proceedings of the 2003 international conference on Compilers, architecture and synthesis for embedded systems, October 30-November 01, 2003, San Jose, California, USA
|
|
|
Philip Levis , Nelson Lee , Matt Welsh , David Culler, TOSSIM: accurate and scalable simulation of entire tinyOS applications, Proceedings of the 1st international conference on Embedded networked sensor systems, November 05-07, 2003, Los Angeles, California, USA
|
|
|
|
|
|
|
|
|
K. Jones , A. Wadaa , S. Olariu , L. Wilson , M. Eltoweissy, Towards a new paradigm for securing wireless sensor networks, Proceedings of the 2003 workshop on New security paradigms, August 18-21, 2003, Ascona, Switzerland
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Bo-Cheng Charles Lai , David D. Hwang , Sungha Pete Kim , Ingrid Verbauwhede, Reducing radio energy consumption of key management protocols for wireless sensor networks, Proceedings of the 2004 international symposium on Low power electronics and design, August 09-11, 2004, Newport Beach, California, USA
|
|
|
Robert S. Gray , David Kotz , Calvin Newport , Nikita Dubrovsky , Aaron Fiske , Jason Liu , Christopher Masone , Susan McGrath , Yougu Yuan, Outdoor experimental comparison of four ad hoc routing algorithms, Proceedings of the 7th ACM international symposium on Modeling, analysis and simulation of wireless and mobile systems, October 04-06, 2004, Venice, Italy
|
|
|
|
|
|
|
|
|
|
|
|
Ronald Watro , Derrick Kong , Sue-fen Cuti , Charles Gardiner , Charles Lynn , Peter Kruus, TinyPK: securing sensor networks with public key technology, Proceedings of the 2nd ACM workshop on Security of ad hoc and sensor networks, October 25-25, 2004, Washington DC, USA
|
|
|
Sapon Tanachaiwiwat , Pinalkumar Dave , Rohan Bhindwale , Ahmed Helmy, Poster abstract secure locations: routing on trust and isolating compromised sensors in location-aware sensor networks, Proceedings of the 1st international conference on Embedded networked sensor systems, November 05-07, 2003, Los Angeles, California, USA
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Wensheng Zhang , Hui Song , Sencun Zhu , Guohong Cao, Least privilege and privilege deprivation: towards tolerating mobile sink compromises in wireless sensor networks, Proceedings of the 6th ACM international symposium on Mobile ad hoc networking and computing, May 25-27, 2005, Urbana-Champaign, IL, USA
|
|
|
Hao Yang , Fan Ye , Yuan Yuan , Songwu Lu , William Arbaugh, Toward resilient security in wireless sensor networks, Proceedings of the 6th ACM international symposium on Mobile ad hoc networking and computing, May 25-27, 2005, Urbana-Champaign, IL, USA
|
|
|
|
|
|
|
|
|
Wenliang Du , Jing Deng , Yunghsiang S. Han , Pramod K. Varshney , Jonathan Katz , Aram Khalili, A pairwise key predistribution scheme for wireless sensor networks, ACM Transactions on Information and System Security (TISSEC), v.8 n.2, p.228-258, May 2005
|
|
|
|
|
|
|
|
|
Wensheng Zhang , Hui Song , Sencun Zhu , Guohong Cao, Least privilege and privilege deprivation: towards tolerating mobile sink compromises in wireless sensor networks, Proceedings of the 6th ACM international symposium on Mobile ad hoc networking and computing, May 25-27, 2005, Urbana-Champaign, IL, USA
|
|
|
|
|
|
|
|
|
|
|
|
Jiejun Kong , Zhengrong Ji , Weichao Wang , Mario Gerla , Rajive Bagrodia , Bharat Bhargava, Low-cost attacks against packet delivery, localization and time synchronization services in under-water sensor networks, Proceedings of the 4th ACM workshop on Wireless security, September 02-02, 2005, Cologne, Germany
|
|
|
|
|
|
Athanassios Boulis , Chih-Chieh Han , Mani B. Srivastava, Design and implementation of a framework for efficient and programmable sensor networks, Proceedings of the 1st international conference on Mobile systems, applications and services, p.187-200, May 05-08, 2003, San Francisco, California
|
|
|
Arno Wacker , Mirko Knoll , Timo Heiber , Kurt Rothermel, A new approach for establishing pairwise keys for securing wireless sensor networks, Proceedings of the 3rd international conference on Embedded networked sensor systems, November 02-04, 2005, San Diego, California, USA
|
|
|
|
|
|
Nidal Aboudagga , Mohamed Tamer Refaei , Mohamed Eltoweissy , Luiz A. DaSilva , Jean-Jacques Quisquater, Authentication protocols for ad hoc networks: taxonomy and research issues, Proceedings of the 1st ACM international workshop on Quality of service & security in wireless and mobile networks, October 13-13, 2005, Montreal, Quebec, Canada
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Arvind Seshadri , Mark Luk , Adrian Perrig , Leendert van Doorn , Pradeep Khosla, SCUBA: Secure Code Update By Attestation in sensor networks, Proceedings of the 5th ACM workshop on Wireless security, September 29-29, 2006, Los Angeles, California
|
|
|
Majid Sarrafzadeh , Foad Dabiri , Roozbeh Jafari , Tammara Massey , Ani Nahapetan, Low power light-weight embedded systems, Proceedings of the 2006 international symposium on Low power electronics and design, October 04-06, 2006, Tegernsee, Bavaria, Germany
|
|
|
|
|
|
Anthony D. Wood , Lei Fang , John A. Stankovic , Tian He, SIGF: a family of configurable, secure routing protocols for wireless sensor networks, Proceedings of the fourth ACM workshop on Security of ad hoc and sensor networks, October 30-30, 2006, Alexandria, Virginia, USA
|
|
|
M. Goyeneche , J. Villadangos , J. J. Astrain , M. Prieto , A. Córdoba, A distributed data gathering algorithm for wireless sensor networks with uniform architecture, Proceedings of the 3rd ACM international workshop on Performance evaluation of wireless ad hoc, sensor and ubiquitous networks, October 06-06, 2006, Terromolinos, Spain
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Eric Sabbah , Adnan Majeed , Kyoung-Don Kang , Ke Liu , Nael Abu-Ghazaleh, An application-driven perspective on wireless sensor network security, Proceedings of the 2nd ACM international workshop on Quality of service & security for wireless and mobile networks, October 02-02, 2006, Terromolinos, Spain
|
|
|
|
|
|
|
|
|
|
|
|
Adam Dunkels , Niclas Finne , Joakim Eriksson , Thiemo Voigt, Run-time dynamic linking for reprogramming wireless sensor networks, Proceedings of the 4th international conference on Embedded networked sensor systems, October 31-November 03, 2006, Boulder, Colorado, USA
|
|
|
|
|
|
Prabal K. Dutta , Jonathan W. Hui , David C. Chu , David E. Culler, Securing the deluge Network programming system, Proceedings of the fifth international conference on Information processing in sensor networks, April 19-21, 2006, Nashville, Tennessee, USA
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Marco Gruteser , Graham Schelle , Ashish Jain , Rick Han , Dirk Grunwald, Privacy-aware location sensor networks, Proceedings of the 9th conference on Hot Topics in Operating Systems, p.28-28, May 18-21, 2003, Lihue, Hawaii
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Paolo Baronti , Prashant Pillai , Vince W. C. Chook , Stefano Chessa , Alberto Gotta , Y. Fun Hu, Wireless sensor networks: A survey on the state of the art and the 802.15.4 and ZigBee standards, Computer Communications, v.30 n.7, p.1655-1695, May, 2007
|
|
|
|
|
|
|
|
|
Mark Luk , Ghita Mezzour , Adrian Perrig , Virgil Gligor, MiniSec: a secure sensor network communication architecture, Proceedings of the 6th international conference on Information processing in sensor networks, April 25-27, 2007, Cambridge, Massachusetts, USA
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Jing Dong , Kurt E. Ackermann , Brett Bavar , Cristina Nita-Rotaru, Mitigating attacks against virtual coordinate based routing in wireless sensor networks, Proceedings of the first ACM conference on Wireless network security, March 31-April 02, 2008, Alexandria, VA, USA
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Dennis K. Nilsson , Tanya Roosta , Ulf Lindqvist , Alfonso Valdes, Key management and secure software updates in wireless process control environments, Proceedings of the first ACM conference on Wireless network security, March 31-April 02, 2008, Alexandria, VA, USA
|
|
|
|
|
|
Hailun Tan , Sanjay Jha , Diet Ostry , John Zic , Vijay Sivaraman, Secure multi-hop network programming with multiple one-way key chains, Proceedings of the first ACM conference on Wireless network security, March 31-April 02, 2008, Alexandria, VA, USA
|
|
|
Yixin Jiang , Chuang Lin , Minghui Shi , Xuemin (Sherman) Shen , Xiaowen Chu, A DoS and fault-tolerant authentication protocol for group communications in ad hoc networks, Computer Communications, v.30 n.11-12, p.2428-2441, September, 2007
|
|
|
Yang Xiao , Venkata Krishna Rayi , Bo Sun , Xiaojiang Du , Fei Hu , Michael Galloway, A survey of key management schemes in wireless sensor networks, Computer Communications, v.30 n.11-12, p.2314-2341, September, 2007
|
|
|
|
|
|
Chiu C. Tan , Haodong Wang , Sheng Zhong , Qun Li, Body sensor network security: an identity-based cryptography approach, Proceedings of the first ACM conference on Wireless network security, March 31-April 02, 2008, Alexandria, VA, USA
|
|
|
|
|
|
|
|
|
Wensheng Zhang , Minh Tran , Sencun Zhu , Guohong Cao, A random perturbation-based scheme for pairwise key establishment in sensor networks, Proceedings of the 8th ACM international symposium on Mobile ad hoc networking and computing, September 09-14, 2007, Montreal, Quebec, Canada
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Llanos Tobarra , Diego Cazorla , Fernando Cuartero , J. Jose Pardo, Modelling secure wireless sensor networks routing protocols with timed automata, Proceedings of the 3nd ACM workshop on Performance monitoring and measurement of heterogeneous wireless and wired networks, p.51-58, October 31-31, 2008, Vancouver, British Columbia, Canada
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Daniel-Ioan Curiac , Constantin Volosencu , Dan Pescaru , Lucian Jurca , Alexa Doboli, A view upon redundancy in wireless sensor networks, Proceedings of the 8th WSEAS international conference on Signal processing, robotics and automation, p.341-346, February 21-23, 2009, Cambridge, UK
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Adobe Acrobat
QuickTime
Windows Media Player
Real Player
Pdf
C.2