Presentation is loading. Please wait.

Presentation is loading. Please wait.

Key Distribution in DTNs

Published byCory Chapman Modified over 6 years ago

Similar presentations

Presentation on theme: "Key Distribution in DTNs"— Presentation transcript:

1 Key Distribution in DTNs
Using Erasure Codes Ed Birrane

2 Forward error correction code over an erasure channel.
Erasure Coding Forward error correction code over an erasure channel. Forward Error Correction Code Store redundant information in a transmission Reed-Solomon Code Erasure Channel Lossy Communication channel Lost data is considered “erased” data Concept Message M captured in N chunks. Require R < N chunks to re-create message. Computationally infeasible to re-create message with C < R chunks. 2

3 Creating/Using Redundant Chunks
Produce initial set of K chunks in finite field For binary files, choose power of 2 for field size (say, 2^1024) Number of chunks = file size / chunk size Name chunks 0 – (k-1) Generate Lagrange Interpolation Polynomial p(x) Calculate efficient polynomial through K points p(0) = chunk 0, p(i) = chunk i… Use polynomial to generate redundant points Generate p(k) through p(n). Receiver constructs polynomial from any k points With polynomial, can extract p(0) through p(k-1). 3

4 Wikipedia Example Sender encodes two messages: a = 555 and b = 629
Polynomial: f(i) = a + (b - a)(i - 1) f(1) = 555, f(2) = 629, f(3) = 703, f(4) = 777, f(5) = 851 Receiver only receives f(4) and f(5) Can reconstruct polynomial and then extract f(1) and f(2) 4

5 Considerations Efficient Implementation as Reed-Solomon Coding
Use generator polynomial and send coefficients, not values More efficient decoding of values Need large enough chunk size and large # chunks Larger the size, harder to brute-force guess a value when too few chunks received. Need k to be large enough to span paths in the network Chunk values should not repeat Assume original data is compressed or otherwise entropy-encoded to reduce the chance of constructing chunks with the same value. 5

6 Erasure Codes as Key Distribution
Key is binary data May include meta-data as part of key message. To a point, bigger message is better. Construct Key Chunks No apparent need to generate redundant chunks May produce small set of redundancy for reliability, but this is likely handled by other transmission mechanisms Build discrete paths through network Chunks sent from source to destination via discrete paths No intermediate node may hold more than x% of chunks for a key message 6

7 Network Example Eight Chunks Separate Paths
Require all for re-assembly Send through different paths Separate Paths Compromise of any one node or one link does not compromise key. Relies on Nodes to reject messages based on what they have seen so far. Restricted routing settings (limits on storage and forwarding) F(1), F(2), F(3), F(4), F(5), F(6), F(7), F(8) F(7), F(8) F(1), F(2), F(3) F(4), F(5), F(6) F(1), F(2), F(3), F(4), F(5), F(6), F(7), F(8) 7

8 Issues/Mitigations Cut Vertices Cut Vertices Link Node Intelligence
Compromise of a cut vertex, or its links subverts the system Separate transmission over time. Node does not hold all chunks at one time. Cut Vertices Link The vertex collects all data through the segmented network Hop-by-hop confidentiality protects link transmission. Node Intelligence Nodes must actively refuse to collect too many chunks Nodes must maintain some repository of chunks seen Key Distribution protocol counts chunks received by hashing on destination node. Allowed collision count embedded in chunk message. 8

9 Issues/Mitigations Chunk Poisoning
Current system vulnerable to bogus data injection by a compromised node. Exploit redundancy in the erasure coding approach. Calculate key using redundant messages from multiple paths and agree on quorum. Rely on Authentication to avoid injection attacks. Relies on authentication between nodes Key distribution relying on key distribution… Multiple keys exist in the system. Do not rely on key being updated, but other keys can be relied upon. Use for distribution of partial key in combination with identity-based scheme. 9

10 Next Steps Draft key distribution protocol Detailed analysis
Chunk construction, addressing, meta-data Intermediate Node actions Endpoint node actions Detailed analysis Field space, chunk size, redundancy, entropy coding Sample implementation Performance measurement Simulate link and node compromise and effects 10

11 Thank you! Questions? 11

Download ppt "Key Distribution in DTNs"

Similar presentations

Multicasting in Mobile Ad hoc Networks By XIE Jiawei.

Multicasting in Mobile Ad hoc Networks By XIE Jiawei.
Introduction to Information Technologies

Introduction to Information Technologies
Chapter 20 Network Layer: Internet Protocol Stephen Kim 20.1.

Chapter 20 Network Layer: Internet Protocol Stephen Kim 20.1.
Using Redundancy to Cope with Failures in a Delay Tolerant Network Sushant Jain, Michael Demmer, Rabin Patra, Kevin Fall Source: www.cs.utexas.edu/~lili/

Using Redundancy to Cope with Failures in a Delay Tolerant Network Sushant Jain, Michael Demmer, Rabin Patra, Kevin Fall Source:
SUMP: A Secure Unicast Messaging Protocol for Wireless Ad Hoc Sensor Networks Jeff Janies, Chin-Tser Huang, Nathan L. Johnson.

SUMP: A Secure Unicast Messaging Protocol for Wireless Ad Hoc Sensor Networks Jeff Janies, Chin-Tser Huang, Nathan L. Johnson.
TinySec: Link Layer Security Chris Karlof, Naveen Sastry, David Wagner University of California, Berkeley Presenter: Todd Fielder.

TinySec: Link Layer Security Chris Karlof, Naveen Sastry, David Wagner University of California, Berkeley Presenter: Todd Fielder.
Data Exchange Packet switching  Packet switching breaks data in to packets before sending it through a network, then reassembles it at the other end –

Data Exchange Packet switching  Packet switching breaks data in to packets before sending it through a network, then reassembles it at the other end –
Rutvi Shah1 ERROR CORRECTION & ERROR DETECTION Rutvi Shah2 Data can be corrupted during transmission. For reliable communication, errors must be detected.

Rutvi Shah1 ERROR CORRECTION & ERROR DETECTION Rutvi Shah2 Data can be corrupted during transmission. For reliable communication, errors must be detected.
Network Coding vs. Erasure Coding: Reliable Multicast in MANETs Atsushi Fujimura*, Soon Y. Oh, and Mario Gerla *NEC Corporation University of California,

Network Coding vs. Erasure Coding: Reliable Multicast in MANETs Atsushi Fujimura*, Soon Y. Oh, and Mario Gerla *NEC Corporation University of California,
Slicing the Onion: Anonymity Using Unreliable Overlays Sachin Katti Jeffrey Cohen & Dina Katabi.

Slicing the Onion: Anonymity Using Unreliable Overlays Sachin Katti Jeffrey Cohen & Dina Katabi.
Freenet: A Distributed Anonymous Information Storage and Retrieval System Presenter: Chris Grier ECE 598nb Spring 2006.

Freenet: A Distributed Anonymous Information Storage and Retrieval System Presenter: Chris Grier ECE 598nb Spring 2006.
Switching breaks up large collision domains into smaller ones Collision domain is a network segment with two or more devices sharing the same Introduction.

Switching breaks up large collision domains into smaller ones Collision domain is a network segment with two or more devices sharing the same Introduction.
COP 5611 Operating Systems Spring 2010 Dan C. Marinescu Office: HEC 439 B Office hours: M-Wd 2:00-3:00 PM.

COP 5611 Operating Systems Spring 2010 Dan C. Marinescu Office: HEC 439 B Office hours: M-Wd 2:00-3:00 PM.
PROACTIVE SECRET SHARING Or: How to Cope With Perpetual Leakage Herzberg et al. Presented by: Avinash Ravi Kevin Skapinetz.

PROACTIVE SECRET SHARING Or: How to Cope With Perpetual Leakage Herzberg et al. Presented by: Avinash Ravi Kevin Skapinetz.
Protocol Layering Chapter 11.

Protocol Layering Chapter 11.
A Framework for Reliable Routing in Mobile Ad Hoc Networks Zhenqiang Ye Srikanth V. Krishnamurthy Satish K. Tripathi.

A Framework for Reliable Routing in Mobile Ad Hoc Networks Zhenqiang Ye Srikanth V. Krishnamurthy Satish K. Tripathi.
OSI ARCHITECTURE IN OSI, ACTUAL INFORMATION IS OVERHEADED BY PROTOCOL LAYERS IF ALL SEVEN LAYERS ARE OVERHEADED, THEN AS LITTLE AS 15% OF THE TRANSMITTED.

OSI ARCHITECTURE IN OSI, ACTUAL INFORMATION IS OVERHEADED BY PROTOCOL LAYERS IF ALL SEVEN LAYERS ARE OVERHEADED, THEN AS LITTLE AS 15% OF THE TRANSMITTED.
A Key Management Scheme for Distributed Sensor Networks Laurent Eschaenauer and Virgil D. Gligor.

A Key Management Scheme for Distributed Sensor Networks Laurent Eschaenauer and Virgil D. Gligor.
RS – Reed Solomon Error correcting code. Error-correcting codes are clever ways of representing data so that one can recover the original information.

RS – Reed Solomon Error correcting code. Error-correcting codes are clever ways of representing data so that one can recover the original information.
Network Models. 2.1 what is the Protocol? A protocol defines the rules that both the sender and receiver and all intermediate devices need to follow,

Network Models. 2.1 what is the Protocol? A protocol defines the rules that both the sender and receiver and all intermediate devices need to follow,

Similar presentations

Ads by Google