Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Diversifying Sensors to Improve Network Resilience Wenliang (Kevin) Du Electrical Engineering & Computer Science Syracuse University.

Published byClifford Allison Modified over 7 years ago

Similar presentations

Presentation on theme: "1 Diversifying Sensors to Improve Network Resilience Wenliang (Kevin) Du Electrical Engineering & Computer Science Syracuse University."— Presentation transcript:

1 1 Diversifying Sensors to Improve Network Resilience Wenliang (Kevin) Du Electrical Engineering & Computer Science Syracuse University

2 Diversifying Sensors2 Hiding Secrets Secrets are essential for sensor networks Pre-distributed keys Pair-wise keys Private keys Other secrets Fundamental Challenge: hiding secrets is difficult

3 Diversifying Sensors3 Existing Approaches Physical security is difficult to achieve Hardware approaches are expensive Software approaches Code obfuscation: extensively studied in traditional systems Bad news: adversaries eventually win

4 Diversifying Sensors4 Rethinking of Software Approaches Observation: fault tolerance of sensor networks Should be able to tolerate a small # of bad sensors Ideal Goals Hiding secrets in sensor nodes Make it difficult to derive secrets from each sensor Make it N times difficult to derive secrets from N sensors

5 5 Threat Model: Physical Compromise Memory Dumping Static Analysis Dynamic Analysis Reverse Engineering

6 6 Proposed Approach Data Obfuscation (Secret Hiding) Memory dump: difficult to find secrets Adversaries must understand the program Code Obfuscation Make it difficult to understand one program Code Diversification (Randomization) Make adversary’s effort non-repeatable

7 7 Data/Code Obfuscation Existing Techniques Code flattening Self-modification code White-box encryption algorithms Various techniques against reverse engineering Challenges Achieving obfuscation with limited Memory Computation can’t be too expensive Tradeoff needs to be made (optimization) Quantify code complexity

8 8 Diversifying Code Turn the same piece of software into many diversified versions Difference from traditional diversity Diversity for fault tolerance Diversity for attack tolerance (vulnerabilities) Attacks are quite fragile Diversity for code-analysis tolerance Attacks are adaptive and intelligent (human involved)

9 9 Diversifying Code: Challenges Quantify diversity and manageability Manageability prefers uniformity Diversity destroys uniformity Manageability is application dependent Optimal tradeoff Comparative study: already compromised node and newly-captured node Static matching attacks Dynamic matching attacks

10 10 Difference from Protecting Intellectual Right Intellectual Right Success = breaking one copy Sensor Networks Success = breaking more than k copies

11 11 Unique Properties of Sensor Networks Code usually has small size Some applications has static configurations The OS can be obfuscated too Hardware specific code obfuscation

12 12 Preliminary Results: SASN’06

13 13 Complexity: Line of Code

14 14 Cyclomatic Complexity

15 15 Running Time

16 16 Summary Diversified code obfuscation is quite unique for sensor networks Require understanding from both engineering and theory perspectives

Download ppt "1 Diversifying Sensors to Improve Network Resilience Wenliang (Kevin) Du Electrical Engineering & Computer Science Syracuse University."

Similar presentations

Protecting Software Code By Guards - by Hoi Chang and Mikhail J. Atallah “Many software-based mechanisms for protecting program code are too weak[…] or.

Protecting Software Code By Guards - by Hoi Chang and Mikhail J. Atallah “Many software-based mechanisms for protecting program code are too weak[…] or.
Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7.3 Secure and Resilient Location Discovery in Wireless.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 7.3 Secure and Resilient Location Discovery in Wireless.
Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.

Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.
Physical Unclonable Functions and Applications

Physical Unclonable Functions and Applications
Tamper-Tolerant Software: Modeling and Implementation International Workshop on Security (IWSEC 2009) October 28-30, 2009 – Toyama, Japan Mariusz H. Jakubowski.

Tamper-Tolerant Software: Modeling and Implementation International Workshop on Security (IWSEC 2009) October 28-30, 2009 – Toyama, Japan Mariusz H. Jakubowski.
An Efficient Scheme for Authenticating Public Keys in Sensor Networks Wenliang (Kevin) Du (Syracuse) Ronghua Wang (Syracuse) Peng Ning (North Carolina.

An Efficient Scheme for Authenticating Public Keys in Sensor Networks Wenliang (Kevin) Du (Syracuse) Ronghua Wang (Syracuse) Peng Ning (North Carolina.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 20 Slide 1 Critical systems development.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 20 Slide 1 Critical systems development.
Cryptography and Data Security: Long-Term Challenges Burt Kaliski, RSA Security Northeastern University CCIS Mini Symposium on Information Security November.

Cryptography and Data Security: Long-Term Challenges Burt Kaliski, RSA Security Northeastern University CCIS Mini Symposium on Information Security November.
Software Hardening & FIPS 140 Eugen Bacic & Gary Maxwell September 27th, 2005.

Software Hardening & FIPS 140 Eugen Bacic & Gary Maxwell September 27th, 2005.
Securing Wireless Sensor Networks Wenliang (Kevin) Du Department of Electrical Engineering and Computer Science Syracuse University.

Securing Wireless Sensor Networks Wenliang (Kevin) Du Department of Electrical Engineering and Computer Science Syracuse University.
Presented By : Ankita Jaiswal Guided By : Dr. Agrawal sir.

Presented By : Ankita Jaiswal Guided By : Dr. Agrawal sir.
1 Security in Wireless Sensor Networks Group Meeting Fall 2004 Presented by Edith Ngai.

1 Security in Wireless Sensor Networks Group Meeting Fall 2004 Presented by Edith Ngai.
Roberto Di Pietro, Luigi V. Mancini and Alessandro Mei.

Roberto Di Pietro, Luigi V. Mancini and Alessandro Mei.
A 100,000 Ways to Fa Al Geist Computer Science and Mathematics Division Oak Ridge National Laboratory July 9, 2002 Fast-OS Workshop Advanced Scientific.

A 100,000 Ways to Fa Al Geist Computer Science and Mathematics Division Oak Ridge National Laboratory July 9, 2002 Fast-OS Workshop Advanced Scientific.
Introduction to Cryptography and Security Mechanisms: Unit 5 Theoretical v Practical Security Dr Keith Martin McCrea 34901784 443099

Introduction to Cryptography and Security Mechanisms: Unit 5 Theoretical v Practical Security Dr Keith Martin McCrea
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
A Pairwise Key Pre-Distribution Scheme for Wireless Sensor Networks Wenliang (Kevin) Du, Jing Deng, Yunghsiang S. Han and Pramod K. Varshney Department.

A Pairwise Key Pre-Distribution Scheme for Wireless Sensor Networks Wenliang (Kevin) Du, Jing Deng, Yunghsiang S. Han and Pramod K. Varshney Department.
CMSC 414 Computer and Network Security Lecture 3 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 3 Jonathan Katz.
Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.

Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.
Security in Wireless Sensor Networks Perrig, Stankovic, Wagner Jason Buckingham CSCI 7143: Secure Sensor Networks August 31, 2004.

Security in Wireless Sensor Networks Perrig, Stankovic, Wagner Jason Buckingham CSCI 7143: Secure Sensor Networks August 31, 2004.

Similar presentations

Ads by Google