Presentation is loading. Please wait.

Presentation is loading. Please wait.

SUMP: A Secure Unicast Messaging Protocol for Wireless Ad Hoc Sensor Networks Jeff Janies, Chin-Tser Huang, Nathan L. Johnson.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "SUMP: A Secure Unicast Messaging Protocol for Wireless Ad Hoc Sensor Networks Jeff Janies, Chin-Tser Huang, Nathan L. Johnson."— Presentation transcript:

1 SUMP: A Secure Unicast Messaging Protocol for Wireless Ad Hoc Sensor Networks Jeff Janies, Chin-Tser Huang, Nathan L. Johnson

2 Outline Introduction to routing level attacks Goals in the design of SUMP Environmental assumptions SUMP Conclusion

3 Routing Level Attacks black hole attack : a node (either compromised or an adversary masquerading as a legitimate node) convinces neighboring nodes that it is the “logical” next hop for forwarding packets. wormhole attack : convince nodes to use a malicious path through legitimate means.

4 Goals in the design of SUMP: 1) mitigate the threats of routing level attacks 2) limit the amount of knowledge that an adversary gains by compromising a node 3) provide a level-wise grouping of nodes

5 Environmental Assumptions 1) There are no compromised nodes in the network during the initialization of the network. 2) A collision avoidance scheme exists in the initialization phase of the network. 3) The base station cannot be compromised. 4) The base station is not resource constrained. 5) A node’s individual key and ID information are modifiable before deployment. 6) The base station is aware of all nodes in the network prior to deployment. 7) Nodes are fixed in location.

6 SUMP 1 、 initialization : to provide the base station with knowledge of individual node connectivity, density of distribution (with regards to connectivity, not locality), and establishment of paths. 2 、 messaging : the normal mode of operation used for data collection and dissemination.

7 individual view of the network structure The base station’s view of the network is global, and it maintains two primary structures: 1 、 node structure : contains a list of all paths to each node, each node’s distance in hops from the base station (called hop count), ID, and individual key. 2 、 group structure : maintains information about all groups in the network in a linked list of group elements. A sensor node only maintains its own key information and group membership information.

8 Initialization 1 、 path establishment : hop count and paths from the base station to a node are discovered. A node either waits to receive a hello message or forwards hello replies. 2 、 verification : the base station updates nodes that received an incorrect hop count due to discrepancies in the communication range. ○A○A ○B○B

9 path establishment step ( 1/2 ) The base station initiates the path establishment step by issuing a hello message containing a count of 0.

10 path establishment step ( 2/2 ) 1) forwarding of the hello message 2) reply forwarding state

11 verification step 1) appropriate hop count 1) grouping

12 group authentication method 1. the tree is a balanced binary tree. 2. if an element is a leaf of the tree, then its value is the hash of a node’s ID. 3. if an element is not a leaf of the tree, then its value is the result of hashing the concatenation of its two children elements’ values.

13 messaging ( 1/3 ) The base station concatenates the ID of the destination node to the message and encrypts the result with the key it shares with the destination node. Then the authentication values are attached to the beginning of the message. The base station then uses the stored primary path to the node to encrypt the message further. For an intermediate node, the base station encrypts the entire message with the shared key of the intermediary node and concatenates the authentication values of intermediate node with the resulting message.

14 messaging ( 2/3 ) For example, if the path from the base station to a node is {5, 3, 2}, the message produced is:

15 messaging ( 3/3 ) Regardless of the number of actual authentications needed, the message size is assumed to be fixed, and therefore, unneeded or previously processed authentication values are represented by a zero value.

16 Concluding Remarks Security and efficiency are the two emphases in the design of SUMP. Through the use of Merkle hash trees, SUMP provides security for these networks with survivability. it is demonstrated that SUMP is not susceptible to black hole and wormhole attacks.

Download ppt "SUMP: A Secure Unicast Messaging Protocol for Wireless Ad Hoc Sensor Networks Jeff Janies, Chin-Tser Huang, Nathan L. Johnson."

Similar presentations

Security and Sensor Networks By Andrew Malone and Bryan Absher.

Security and Sensor Networks By Andrew Malone and Bryan Absher.
1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.

1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.
Chris Karlof and David Wagner

Chris Karlof and David Wagner
Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 6. Security in Mobile Ad-Hoc Networks.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 6. Security in Mobile Ad-Hoc Networks.
Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,

Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,
Denial of Service in Sensor Networks Anthony D. Wood and John A. Stankovic.

Denial of Service in Sensor Networks Anthony D. Wood and John A. Stankovic.
Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.

Distribution and Revocation of Cryptographic Keys in Sensor Networks Amrinder Singh Dept. of Computer Science Virginia Tech.
MPAC 2004Rae Harbird 1 RUBI Adaptive Resource Discovery for Ubiquitous Computing Rae Harbird Stephen Hailes

MPAC 2004Rae Harbird 1 RUBI Adaptive Resource Discovery for Ubiquitous Computing Rae Harbird Stephen Hailes
MANETs Routing Dr. Raad S. Al-Qassas Department of Computer Science PSUT

MANETs Routing Dr. Raad S. Al-Qassas Department of Computer Science PSUT
Edith C. H. Ngai1, Jiangchuan Liu2, and Michael R. Lyu1

Edith C. H. Ngai1, Jiangchuan Liu2, and Michael R. Lyu1
Using Directional Antennas to Prevent Wormhole Attacks Lingxuan Hu, David Evans Jason Buckingham CSCI 7143: Secure Sensor Networks November 2, 2004.

Using Directional Antennas to Prevent Wormhole Attacks Lingxuan Hu, David Evans Jason Buckingham CSCI 7143: Secure Sensor Networks November 2, 2004.
Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.

Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.
A Key Management Scheme for Wireless Sensor Networks Using Deployment Knowledge Presenter: Todd Fielder.

A Key Management Scheme for Wireless Sensor Networks Using Deployment Knowledge Presenter: Todd Fielder.
Research Trends in MANETs at CIIT, Islamabad Mohammad Mahboob Yasin, PhD COMSATS Institute of Information Technology.

Research Trends in MANETs at CIIT, Islamabad Mohammad Mahboob Yasin, PhD COMSATS Institute of Information Technology.
Packet Leashes: A Defense against Wormhole Attacks in Wireless Networks Yih-Chun Hu (Carnegie Mellon University) Adrian Perrig (Carnegie Mellon University)

Packet Leashes: A Defense against Wormhole Attacks in Wireless Networks Yih-Chun Hu (Carnegie Mellon University) Adrian Perrig (Carnegie Mellon University)
Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.

Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.
1 Somya Kapoor Jorge Chang Amarnath Kolla. 2 Agenda Introduction and Architecture of WSN –Somya Kapoor Security threats on WSN – Jorge Chang & Amarnath.

1 Somya Kapoor Jorge Chang Amarnath Kolla. 2 Agenda Introduction and Architecture of WSN –Somya Kapoor Security threats on WSN – Jorge Chang & Amarnath.
INSENS: Intrusion-Tolerant Routing For Wireless Sensor Networks By: Jing Deng, Richard Han, Shivakant Mishra Presented by: Daryl Lonnon.

INSENS: Intrusion-Tolerant Routing For Wireless Sensor Networks By: Jing Deng, Richard Han, Shivakant Mishra Presented by: Daryl Lonnon.
ITIS 6010/8010 Wireless Network Security Dr. Weichao Wang.

ITIS 6010/8010 Wireless Network Security Dr. Weichao Wang.
Routing Security in Ad Hoc Networks

Routing Security in Ad Hoc Networks

Similar presentations

Ads by Google