wireless network keys management what is wsn ? steven du id: 3880740. csi 5148

Wireless Network Keys Management

What is WSN ?

Steven Du ID: 3880740. CSI 5148

Communication Security between sensor node

Because of memory and computation constraint in WSN

use symmetric keys for encryption and decryption sensors use common shared key to encrypt and

decrypt common shared keys are pre-distributed or

computed by specific scheme

Key establishment schemes

Definition of key establishment:The algorithm or method for sensors to setup (or exchange) their common shared key for communication data

Main requirements on key establishment schemes:1. Availability : The network service is available without limitation with key

establishment 2. Authenticity: Ability for verifying that the message sent by a node is

authentic.3. Confidentiality : The key establishment technique should protect the

disclosure of data to unauthorized parties.4. Integrity : No falsification of data during transmission.

Key Pre-distribution in Wireless Sensor Networks when Sensors are within Communication Range Sushmita Ruj, Amiya Nayak and Ivan Stojmenovic

WSN symmetric key establishment steps:1. Key pre-distribution: Preload keys into each sensor nodes before WSN

deployment. 2. Shared-key discovery: Setup connection between two sensor nodes in their

communication range by finding common shared key.3. Path-key establishment : establishment of communication path and path key

between two unconnected sensor nodes. Path: linked nodes chain between two nodes without direct connectionPath key: Common shared key used by the linked nodes in path to transfer message

Key sb

Key be

Key bcKey SD

Key ef

Key fg

Key kd

WSN symmetric key establishment steps:1. Key pre-distribution: Preload keys into each sensor nodes before WSN

deployment.

{2, 3, 4, 5, 9}

{5, 7, 4, 9 1}

{3, 8, 1, 0 7}

{6 ,2, 8, 9 0}

{3 7, 9, 2, 4}

{5, 7, 4, 9 1}

{9, 2, 6, 3 1}

{1, 6, 4, 7 8}

Share key ?

WSN symmetric key establishment steps:2. Shared-key discovery: Setup connection between two sensor nodes in their

communication range by finding common shared key.

{2, 3, 4, 5, 9}

{5, 7, 4, 9 1}

{3, 8, 1, 0 7}

{6 ,2, 8, 9 0}

{3 7, 9, 2, 4}

{5, 7, 4, 8, 4}

{9, 2, 6, 3 1}

{1, 6, 4, 7 8}

Share key ?

y ?Share

WSN symmetric key establishment steps:

{2, 3, 4, 5, 9}

{5, 7, 4, 9 1}

{3, 8, 1, 0 7}

{6 ,2, 8, 9 0}

{3 7, 9, 2, 4}

{5, 7, 4, 8, 4}

{9, 2, 6, 3 1}

{1, 6, 4, 7 8}

Yes, 4,9

Yes 4,7

2. Shared-key discovery: Setup connection between two sensor nodes in their communication range by finding common shared key.

Yes 1,7

WSN symmetric key establishment steps:3. Path-key establishment : establishment of communication path and path

key between two unconnected sensor nodes.

{2, 3, 4, 5, 9}

{5, 7, 4, 9 1}

{3, 8, 1, 0 7}

{6 ,2, 8, 9 0}

{3 7, 9, 2, 4}

{5, 7, 4, 8, 4}

{9, 2, 6, 3 1}

{1, 6, 4, 7 8}

4, 5, 9

Key sb

Key be

Key bcKey SD

Key ef

Key fg

Key kd

3. Path-key establishment : establishment of communication path and path key between two unconnected sensor nodes.

WSN symmetric key establishment steps:1. Symmetric key establishment with Polynomial in finite field.

I8 = 9

Id = 9 Id = 15

Id = 3

Id = 9

Id = 11

Id = 13

WSN symmetric key establishment steps:1. Symmetric key establishment with Polynomial in finite field.

I8 = 9

Id = 9 Id = 15

Id = 3

Id = 9

Id = 11

Id = 13

What is

common ke

What is

common ke

I8 = 9

Id = 9 Id = 15

Id = 3

Id = 9

Id = 11

Id = 13

What is

common ke

22 3 yyxx

What is

common ke

1. Symmetric key establishment with Polynomial in finite field.

I8 = 9

Id = 9 Id = 15

Id = 3

Id = 9

Id = 11

Id = 13

What is

common ke

22 3 yxyx 22 3 yyxx

What is

common ke

4921737 222 yyyy

8127939 222 yyyy

1. Symmetric key establishment with Polynomial in finite field.

22 3 yxyx 8127939 222 yyyy 8127939 222 yyyy1. Symmetric key establishment with Polynomial in finite field.

Each node can make security communication with other nodes in its communication range

Triple Key DistributionWhat is triple key distribution?

a common key discovery scheme among 3 sensor nodes

Common triple shared key

Triple Key Distribution

Why triple key distribution? path key establishment verifying the relayed message in path is authentic detect fault/malicious nodes

K{s, c, b}

BS C DKKey SC Key BKKey CB Key KD

secK secK secK secK

K{c, b, k}

K{b, k, d}

Triple Key Distribution

How triple key is distributed? any three full connected nodes share an unique common key any three string connected nodes share an unique common key

Two schemes:A.full connected triple keys distribution

B.String connected triple keys distribution

Triple Key Distribution (full connected triple nodes)

Triple nodes that share an unique triple key: BCS, BCE, ECK, EFK, FGK, DGK

Key sb

Key be

Key bcKey SD

Key ef

Key fg

Key kd

Key EK

Key KG

Key CS

Triple Key Application (full connected triple nodes)

K{s, e, c}

Key SC

Key CG

Key BKKey CB Key KD

Key EB

Key FD

secK secK secK secK

K{c, e, b}

K{b, f, k}

K{k, f, d}

K{c, b, g}

K{b, k, g}

C compare the message relayed by B to the sent message.Are they same? Yes? Done!No? Node B is in trouble, report!

Triple Key Distribution (String connected triple nodes)

Key sb

Key be

Key bcKey SD

Key ef

Key fg

Key kd

Triple nodes that share an unique triple key:SBE BCK CEF EFK FGD KDG EFGSBC BEF CKF ECK FKD CKD KFG

Triple Key Application (String connected triple nodes)

K{s, c, b}

secK secK secK secK

K{c, b, k}

K{b, k, d}

Triple Key Application (String connected triple nodes)

K{s, c, b}

secK secK secK secK

K{c, b, k}

K{b, k, d}

C: does node B correctly transfer my message to node K?

C compare the message relayed by B to the sent message.Are they same? Yes? Done!No? Node B is in trouble, report!

Analysis of triple key scheme

Security analysis:a compromised intermediate node possibly refuses or relay fake data frame. Because of acknowledge mechanism, its behaviour is monitored, found and kicked out of the network.

S Y DKey {?, S, Y}

Key {S, Y, D}

Does node Y relay my message?No node Y stopped work, broadcast to whole WSNYes compare the relayed message. is the relayed message same as I sent?No node Y is compromised, broadcast to kick off Y

Several possible triple key establishment algorithms

Symmetrical polynomial for triple key computation

x, y, z are the ID of each node in the triple nodes

139999997 222222333 zyzxxzxyyzyxxyzzyx

X=10, y=11, z=12 85186

Triple key management in WSN?

a) A wireless sensor network with n nodes

b) The possibility for any two nodes to setup direct link is p

c) Possible average number of triple keys in each node S

full connected triple nodes3*

String connected triple nodes)1(**3

Triple key in cluster based network

WSN network nodes density = DDeployment area = SCommunication radius = rCluster based WSN

Number of cluster headers

)*/(* 2rSCH C is a constant number , describes the WSN nodes deployment overlap level >1 Average nodes number in one cluster

2** rDn

Suppose the possibility of link between any two nodes in same cluster is P, we have:

Triple key in cluster based networkstring connected triple nodes

Average number of triple keys for each node

wireless network keys management what is wsn ? steven du id: 3880740. csi 5148

share key

key discovery

pathkey establishment

key establishment authenticity

key establishment technique

key predistribution

direct connectionpath

symmetric keys

Documents

wsn brochure

energy conservation wsn

localization in wsn

wsn pesach 2013

sit-wsn : sistema de información de tráfico mediante wsn

wsn metering

jammers in wsn

multipath in wsn

wsn seminar

csi 5148 sink mobility in wireless sensor networks andres...

sep in wsn

wsn design

paper gp3 wsn

university of ottawa fall 2011 csi 5148 project wireless ad...

csi—the lifecycle stage. csi—purpose csi—objectives

wsn ppt original

wsn applications

location in wsn

ni wsn 3202

wsn lab ipv6 on wsn