Presentation is loading. Please wait.

Presentation is loading. Please wait.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7.3 Secure and Resilient Location Discovery in Wireless.

Published byRosemary Lush Modified over 9 years ago

Similar presentations

Presentation on theme: "Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7.3 Secure and Resilient Location Discovery in Wireless."— Presentation transcript:

1 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7.3 Secure and Resilient Location Discovery in Wireless Sensor Networks

2 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security2 Regular node Beacon node Background -- Localization Data usually combined with locations –Fire alarm, target tracking Traditional GPS –Expensive; does not work indoors GPS-less localization techniques –AHLoS, APS-AoA, DV-Hop, Centroid, APIT, etc.

3 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security3 Attacks against Localization Impersonate beacon nodes: Wrong measurement or wrong location Compromise beacon nodes: Wrong measurement or wrong location Replay beacon signals: Wrong measurement Challenges in defending these attacks –Resource constraints on sensor nodes –Lack of physical protection –Local collaboration v.s. global threat –Difficulty of authenticating beacon signals

4 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security4 Range-Based Localization A few beacon nodes with known locations. Two phases: –Phase 1: Estimating distance (RSSI, TDoA, or ToA) –Phase 2: Solving equations by using MMSE A B C A, B, C: beacon nodes

5 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security5 Impact of Malicious Attacks Obtained through simulation MMSE with 1 malicious beacon signal + 9 benign beacon signals A single malicious signal  arbitrarily large location error

6 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security6 Attack-Resistant Location Discovery Goal –Resilient location estimation when there are malicious location references Our approaches –Attack-resistant MMSE: identify “inconsistency” among malicious and benign beacon signals –Voting-based scheme: have each location reference vote on the location of the non-beacon node.

7 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security7 Assumptions Use a key management protocol that provides a unique pair-wise key between any two nodes. –E.g., TinyKeyMan This implies –Each sensor node is uniquely identified –Beacon packets can be authenticated The content, not the signal

8 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security8 Assumptions (Cont’d) Each sensor node uses at most one beacon signal from each beacon node –Represented as a location reference  x i, y i,  i  –Location of the beacon node and the measured distance. Attacker model –A malicious beacon node can provide arbitrary location references

9 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security9 Attack-Resistant MMSE Observation: there is “inconsistency” between benign and malicious location references Intuition: identify the most inconsistent location references before final estimation Consistency metric (  2 ): mean square error of distance measurement

10 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security10 Attack-Resistant MMSE (Cont’d) Ideally, get the largest consistent set of location references –MMSE can achieve more accurate result with more benign location references What we have: check consistency, given a set of location references and a pre-defined threshold τ –If  2 >  2  inconsistent; otherwise, consistent Two remaining questions –How to determine the largest consistent set –How to set an appropriate threshold

11 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security11 Determining the Largest Consistent Set A simple solution –Try every combination of location references –Expensive: 10 location references, and 5 of them in the largest consistent set  at least 387 MMSE operations Greedy algorithm –Multiple rounds –Remove the most inconsistent location reference in each round –Not guaranteed to find the largest consistent set

12 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security12 Greedy Algorithm Consistent? A set of m location references and a predefined threshold τ Find consistent set and output result Yes No Consistency Test subsets with i-1 items Consistency Test The one with the smallest MSE i=mi=m i=i-1 i>3? No Fail to find consistent set Yes 10 location references, and 5 of them in the largest consistent set  50 MMSE operations on average

13 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security13 Investigate the distribution of MSE  2 when there is no malicious attack If the measurement errors are independent, we have where μ i and σ i are the mean and variance of e i 2, and Threshold τ

14 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security14 Theoretical Results v.s. Simulation Results The threshold should not be too small or too large.

15 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security15 Voting-Based Scheme Partition the target field into grid with M small squares (cells) Each location reference votes on the possible locations of node Identify the cell (or cells) with the largest vote

16 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security16 No overlap between the cell and the ring iif –The maximum distance from A to a point in the cell d max (A) < max(0,δ-ε), or –The minimum distance from A to a point in the cell d min (A) > δ+ε Overlap Test

17 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security17 Granularity M Fine granularity (large M) results in high accuracy but high computation and storage cost, Coarse granularity (small M) results in low accuracy but low computation and storage cost

18 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security18 Iterative Refinement Idea –Repeat the basic voting algorithm on the result of the last voting round Stop conditions –Achieve the required accuracy (size of cells) –Size of the cell cannot be reduced anymore We use the second stop condition in our experiments

19 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security19 Simulation Evaluation Evaluate the ability of the proposed methods to tolerate malicious attacks Three attack scenarios –One malicious location reference (9 + 1) –Multiple non-colluding malicious location references (9 + 3) –Multiple colluding malicious location references (9 + 3) Configuration: –30m X 30m target field –Radio signal range 22m –Distance error evenly distributed in (  4, 4)

20 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security20 Evaluation of Attack-Resistant MMSE

21 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security21 Evaluation of Voting-Based Scheme

22 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security22 Comparison Due to the non-optimal solution given by greedy algorithm.

23 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security23 Implementation Target at MICA2 motes running TinyOS ROMRAM MMSE2,034286 AR-MMSE3,226396 Voting-Based4,488174 Code Size (byte)

24 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security24 Execution Time 1 malicious location reference

25 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security25 Field Experiment Use RSSI to measure distance

26 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security26 1 Malicious Beacon

27 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security27 3 Non-Colluding Malicious Beacons

28 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security28 3 Colluding Malicious Beacons

29 Computer Science Dr. Peng NingCSC 774 Adv. Net. Security29 Conclusion We have been investigating various techniques to secure localization in sensor networks –Prevention –Toleration –Detection and response Future work –Light-weighted secure and resilient solutions –Secure and resilient localization for dynamic sensor networks

Download ppt "Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7.3 Secure and Resilient Location Discovery in Wireless."

Similar presentations

Chris Karlof and David Wagner

Chris Karlof and David Wagner
Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 6. Security in Mobile Ad-Hoc Networks.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 6. Security in Mobile Ad-Hoc Networks.
Dynamic Location Discovery in Ad-Hoc Networks

Dynamic Location Discovery in Ad-Hoc Networks
A 2 -MAC: An Adaptive, Anycast MAC Protocol for Wireless Sensor Networks Hwee-Xian TAN and Mun Choon CHAN Department of Computer Science, School of Computing.

A 2 -MAC: An Adaptive, Anycast MAC Protocol for Wireless Sensor Networks Hwee-Xian TAN and Mun Choon CHAN Department of Computer Science, School of Computing.
HIERARCHY REFERENCING TIME SYNCHRONIZATION PROTOCOL Prepared by : Sunny Kr. Lohani, Roll – 16 Sem – 7, Dept. of Comp. Sc. & Engg.

HIERARCHY REFERENCING TIME SYNCHRONIZATION PROTOCOL Prepared by : Sunny Kr. Lohani, Roll – 16 Sem – 7, Dept. of Comp. Sc. & Engg.
Decentralized Reactive Clustering in Sensor Networks Yingyue Xu April 26, 2015.

Decentralized Reactive Clustering in Sensor Networks Yingyue Xu April 26, 2015.
A Distributed Security Framework for Heterogeneous Wireless Sensor Networks Presented by Drew Wichmann Paper by Himali Saxena, Chunyu Ai, Marco Valero,

A Distributed Security Framework for Heterogeneous Wireless Sensor Networks Presented by Drew Wichmann Paper by Himali Saxena, Chunyu Ai, Marco Valero,
Computer Networks Group Universität Paderborn Ad hoc and Sensor Networks Chapter 9: Localization & positioning Holger Karl.

Computer Networks Group Universität Paderborn Ad hoc and Sensor Networks Chapter 9: Localization & positioning Holger Karl.
Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 5 Group Key Management.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 5 Group Key Management.
Range-Free Sensor Localization Simulations with ROCRSSI-based Algorithm Matt Magpayo

Range-Free Sensor Localization Simulations with ROCRSSI-based Algorithm Matt Magpayo
Range-Based and Range-Free Localization Schemes for Sensor Networks

Range-Based and Range-Free Localization Schemes for Sensor Networks
Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Preparation for In-class Presentations.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Preparation for In-class Presentations.
Robust Range-Independent Localization for Wireless Sensor Networks Radha Poovendran Joint work with Loukas Lazos Network Security Lab University of Washington.

Robust Range-Independent Localization for Wireless Sensor Networks Radha Poovendran Joint work with Loukas Lazos Network Security Lab University of Washington.
Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)

Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)
Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7. Wireless Sensor Network Security.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7. Wireless Sensor Network Security.
An Approach to Evaluate Data Trustworthiness Based on Data Provenance Department of Computer Science Purdue University.

An Approach to Evaluate Data Trustworthiness Based on Data Provenance Department of Computer Science Purdue University.
“Localization in Underwater Sensor Networks” Presented by: Ola Ibrahim EL naggar 788.11J presentation.

“Localization in Underwater Sensor Networks” Presented by: Ola Ibrahim EL naggar J presentation.
A High-Accuracy, Low-Cost Localization System for Wireless Sensor Networks Radu Stoleru, Tian He, John A. Stankovic, David Luebke University of Virginia.

A High-Accuracy, Low-Cost Localization System for Wireless Sensor Networks Radu Stoleru, Tian He, John A. Stankovic, David Luebke University of Virginia.
A Beacon-Less Location Discovery Scheme for Wireless Sensor Networks Lei Fang (Syracuse) Wenliang (Kevin) Du (Syracuse) Peng Ning (North Carolina State)

A Beacon-Less Location Discovery Scheme for Wireless Sensor Networks Lei Fang (Syracuse) Wenliang (Kevin) Du (Syracuse) Peng Ning (North Carolina State)
An Authentication Service Against Dishonest Users in Mobile Ad Hoc Networks Edith Ngai, Michael R. Lyu, and Roland T. Chin IEEE Aerospace Conference, Big.

An Authentication Service Against Dishonest Users in Mobile Ad Hoc Networks Edith Ngai, Michael R. Lyu, and Roland T. Chin IEEE Aerospace Conference, Big.

Similar presentations

Ads by Google