分布式传感器网络密钥预分配方案的合谋攻击

Fourth Annual IEEE International Conference on Pervasive Computing and Communications Workshops (PERCOMW'06) Pub Date : 2006-03-13 DOI:10.1109/PERCOMW.2006.3

T. Moore

{"title":"分布式传感器网络密钥预分配方案的合谋攻击","authors":"T. Moore","doi":"10.1109/PERCOMW.2006.3","DOIUrl":null,"url":null,"abstract":"Key predistribution schemes are a favoured solution for establishing secure communication in sensor networks. Often viewed as the safest way to bootstrap trust, the main drawback is seen to be the large storage overhead imposed on resource-constrained devices. In this paper, we argue that predistribution schemes can actually be quite insecure: pre-loading global secrets onto exposed devices strengthens the incentive for attackers to compromise nodes. Furthermore, lack of coordination between nodes arising from localised communication helps attackers hide misbehaviour. We consider one scheme in particular - Chan et al.'s random pairwise key predistribution (2003) - and demonstrate an attack where colluding nodes reuse selected pairwise keys to create many false identities. We find that a small, colluding minority can hijack a majority of node communication channels. Finally, we consider countermeasures, from improved detection to scrapping predistribution altogether","PeriodicalId":250624,"journal":{"name":"Fourth Annual IEEE International Conference on Pervasive Computing and Communications Workshops (PERCOMW'06)","volume":"38 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2006-03-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"39","resultStr":"{\"title\":\"A collusion attack on pairwise key predistribution schemes for distributed sensor networks\",\"authors\":\"T. Moore\",\"doi\":\"10.1109/PERCOMW.2006.3\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Key predistribution schemes are a favoured solution for establishing secure communication in sensor networks. Often viewed as the safest way to bootstrap trust, the main drawback is seen to be the large storage overhead imposed on resource-constrained devices. In this paper, we argue that predistribution schemes can actually be quite insecure: pre-loading global secrets onto exposed devices strengthens the incentive for attackers to compromise nodes. Furthermore, lack of coordination between nodes arising from localised communication helps attackers hide misbehaviour. We consider one scheme in particular - Chan et al.'s random pairwise key predistribution (2003) - and demonstrate an attack where colluding nodes reuse selected pairwise keys to create many false identities. We find that a small, colluding minority can hijack a majority of node communication channels. Finally, we consider countermeasures, from improved detection to scrapping predistribution altogether\",\"PeriodicalId\":250624,\"journal\":{\"name\":\"Fourth Annual IEEE International Conference on Pervasive Computing and Communications Workshops (PERCOMW'06)\",\"volume\":\"38 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2006-03-13\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"39\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Fourth Annual IEEE International Conference on Pervasive Computing and Communications Workshops (PERCOMW'06)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/PERCOMW.2006.3\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Fourth Annual IEEE International Conference on Pervasive Computing and Communications Workshops (PERCOMW'06)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/PERCOMW.2006.3","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 39

摘要

密钥预分配方案是在传感器网络中建立安全通信的首选解决方案。通常被视为引导信任的最安全的方法，其主要缺点是在资源受限的设备上施加了大量的存储开销。在本文中，我们认为预分发方案实际上是非常不安全的:将全局秘密预加载到暴露的设备上增强了攻击者破坏节点的动机。此外，由于局部通信导致节点之间缺乏协调，这有助于攻击者隐藏不当行为。我们特别考虑了一种方案- Chan等人的随机配对密钥预分发(2003)-并演示了一种攻击，其中串通节点重用选定的成对密钥来创建许多虚假身份。我们发现，一个小的，勾结的少数人可以劫持大多数节点通信通道。最后，我们考虑了对策，从改进检测到报废预分配

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

A collusion attack on pairwise key predistribution schemes for distributed sensor networks

Key predistribution schemes are a favoured solution for establishing secure communication in sensor networks. Often viewed as the safest way to bootstrap trust, the main drawback is seen to be the large storage overhead imposed on resource-constrained devices. In this paper, we argue that predistribution schemes can actually be quite insecure: pre-loading global secrets onto exposed devices strengthens the incentive for attackers to compromise nodes. Furthermore, lack of coordination between nodes arising from localised communication helps attackers hide misbehaviour. We consider one scheme in particular - Chan et al.'s random pairwise key predistribution (2003) - and demonstrate an attack where colluding nodes reuse selected pairwise keys to create many false identities. We find that a small, colluding minority can hijack a majority of node communication channels. Finally, we consider countermeasures, from improved detection to scrapping predistribution altogether

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Fourth Annual IEEE International Conference on Pervasive Computing and Communications Workshops (PERCOMW'06)

自引率

0.00%

发文量

期刊最新文献

Hardness and approximation of gathering in static radio networks Replica allocation considering power consumption in mobile ad hoc networks Healthcare aide: towards a virtual assistant for doctors using pervasive middleware On authentication between human and computer A blueprint for pervasive self-care infrastructures