Survey and benchmark of block ciphers for wireless sensor networks

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Survey and benchmark of block ciphers for wireless sensor networks

Full text

Pdf (354 KB)

Source

ACM Transactions on Sensor Networks (TOSN) archive
Volume 2 , Issue 1 (February 2006) table of contents

Pages: 65 - 93

Year of Publication: 2006

ISSN:1550-4859

Authors

Yee Wei Law	University of Twente, The Netherlands
Jeroen Doumen	University of Twente, The Netherlands
Pieter Hartel	University of Twente, The Netherlands

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 39, Downloads (12 Months): 430, Citation Count: 6

Additional Information:

appendices and supplements abstract references cited by index terms collaborative colleagues

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTex EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/1138127.1138130 What is a DOI?

APPENDICES and SUPPLEMENTS

Pdf	Online appendix to designing mediation for context-aware applications. The appendix supports the information on page 65.

ABSTRACT

Cryptographic algorithms play an important role in the security architecture of wireless sensor networks (WSNs). Choosing the most storage- and energy-efficient block cipher is essential, due to the facts that these networks are meant to operate without human intervention for a long period of time with little energy supply, and that available storage is scarce on these sensor nodes. However, to our knowledge, no systematic work has been done in this area so far. We construct an evaluation framework in which we first identify the candidates of block ciphers suitable for WSNs, based on existing literature and authoritative recommendations. For evaluating and assessing these candidates, we not only consider the security properties but also the storage- and energy-efficiency of the candidates. Finally, based on the evaluation results, we select the most suitable ciphers for WSNs, namely Skipjack, MISTY1, and Rijndael, depending on the combination of available memory and required security (energy efficiency being implicit). In terms of operation mode, we recommend Output Feedback Mode for pairwise links but Cipher Block Chaining for group communications.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	3GPP. 1999. Specification of the 3GPP Confidentiality and Integrity Algorithms Document 2: KASUMI Specification. ETSI/SAGE Specification Version: 1.0.
	2	Anderson, R., Biham, E., and Knudsen, L. 1998. Serpent: A Proposal for the Advanced Encryption Standard. http://www.cl.cam.ac.uk/ftp/users/rja14/serpent.pdf.
	3	Kazumaro Aoki , Tetsuya Ichikawa , Masayuki Kanda , Mitsuru Matsui , Shiho Moriai , Junko Nakajima , Toshio Tokita, Camellia: A 128-Bit Block Cipher Suitable for Multiple Platforms - Design and Analysis, Proceedings of the 7th Annual International Workshop on Selected Areas in Cryptography, p.39-56, August 14-15, 2000
	4	Aoki, K., Ichikawa, T., Kanda, M., Matsui, M., Moriai, S., Nakajima, J., and Tokita, T. 2001a. Specification of Camellia---A 128-Bit Block Cipher. Specification Version 2.0, Nippon Telegraph and Telephone Corporation and Mitsubishi Electric Corporation.
	5	Steve Babbage , Laurent Frisch, On MISTY1 Higher Order Differential Cryptanalysis, Proceedings of the Third International Conference on Information Security and Cryptology, p.22-36, December 08-09, 2000
	6	Elad Barkan , Eli Biham, In How Many Ways Can You Write Rijndael?, Proceedings of the 8th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology, p.160-175, December 01-05, 2002
	7	Biham, E., Biryukov, A., and Shamir, A. 1999. Cryptanalysis of Skipjack reduced to 31 rounds using impossible differentials. In Advances in Cryptology---EUROCRYPT'99: International Conference on the Theory and Application of Cryptographic Techniques. LNCS, vol. 1592. Springer-Verlag, 12--23.
	8	Eli Biham , Vladimir Furman, Improved Impossible Differentials on Twofish, Proceedings of the First International Conference on Progress in Cryptology, p.80-92, December 10-13, 2000
	9	Biryukov, A. 1999. Methods of cryptanalysis. Ph.D. thesis, Technion.
	10	Biryukov, A. and Kushilevitz, E. 1998. Improved Cryptanalysis of RC5. In Advances in Cryptology---EUROCRYPT '98, International Conference on the Theory and Application of Cryptographic Techniques. LNCS, vol. 1403. Springer-Verlag, 85--99.
	11	Biryukov, A. and Wagner, D. 2000. Advanced slide attacks. In Advances in Cryptology---EUROCRYPT 2000: International Conference on the Theory and Application of Cryptographic Techniques. LNCS, vol. 1807. Springer-Verlag, 589--606.
	12	Johan Borst , Bart Preneel , Joos Vandewalle, Linear Cryptanalysis of RC5 and RC6, Proceedings of the 6th International Workshop on Fast Software Encryption, p.16-30, March 24-26, 1999
	13	Burwick, C., Coppersmith, D., D'Avignon, E., Gennaro, R., Halevi, S., Jutla, C., Jr., S. M. M., O'Connor, L., Peyravian, M., Safford, D., and Zunic, N. 1999. MARS---a candidate cipher for AES. http://researchweb.watson.ibm.com/security/mars.pdf.
	14	Carman, D., Kruus, P., and Matt, B. 2000. Constraints and approaches for distributed sensor network security. Tech. Rep. #00-010, NAI Labs.
	15	Jung Hee Cheon , MunJu Kim , Kwangjo Kim , Jung-Yeun Lee , SungWoo Kang, Improved Impossible Differential Cryptanalysis of Rijndael and Crypton, Proceedings of the 4th International Conference Seoul on Information Security and Cryptology, p.39-49, December 06-07, 2001
	16	Chien, P. and Wen, V. 1998. CS199---StrongARM Energy Measurement Report. Online slides: http://www.cs.berkeley.edu/~vwen/strongarm/slides/cs199.ppt.
	17	Coppersmith, D. 2002. Re: Impact of Courtois and Pieprzyk results. Forum message at http://aes.nist.gov/aes/.
	18	Nicolas Courtois , Louis Goubin , Willi Meier , Jean-Daniel Tacier, Solving Underdefined Systems of Multivariate Quadratic Equations, Proceedings of the 5th International Workshop on Practice and Theory in Public Key Cryptosystems: Public Key Cryptography, p.211-227, February 12-14, 2002
	19	Courtois, N., Johnson, R., Junod, P., Pornin, T., and Scott, M. 2003. Did Filiol Break AES? Cryptology ePrint Archive: Report 2003/022.
	20	Courtois, N. and Patarin, J. 2003. About the XL Algorithm over GF(2). In Topics in Cryptology---CT-RSA 2003, The Cryptographers' Track at the RSA Conference 2003, M. Joye, Ed. LNCS, vol. 2612. Springer-Verlag, 141--157.
	21	Nicolas Courtois , Josef Pieprzyk, Cryptanalysis of Block Ciphers with Overdefined Systems of Equations, Proceedings of the 8th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology, p.267-287, December 01-05, 2002
	22	Nicolas Courtois , Josef Pieprzyk, Cryptanalysis of Block Ciphers with Overdefined Systems of Equations, Proceedings of the 8th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology, p.267-287, December 01-05, 2002
	23	CRYPTREC. 2001. Analysis of RC6. {Text are in chinese font} (trans.: Evaluation report of cryptographic algorithms and related technologies) no. 1086.
	24	CRYPTREC. 2003. {Text are in chinese font} (trans.: Specification of e-government-recommended ciphers). http://www.ipa.go.jp/security/enc/CRYPTREC/fy15/cryptrec20030425_spec01%.html.
	25	Joan Daemen , Lars R. Knudsen , Vincent Rijmen, The Block Cipher Square, Proceedings of the 4th International Workshop on Fast Software Encryption, p.149-165, January 20-22, 1997
	26	Daemen, J. and Rijmen, V. 1999. AES Proposal: Rijndael.
	27	Dunkelman, O. 2002. Comparing MISTY1 and KASUMI. NESSIE Public Report NES/DOC/TEC/WP5/029/a, Computer Science Department, Technion. Dec.
	28	Niels Ferguson , John Kelsey , Stefan Lucks , Bruce Schneier , Michael Stay , David Wagner , Doug Whiting, Improved Cryptanalysis of Rijndael, Proceedings of the 7th International Workshop on Fast Software Encryption, p.213-230, April 10-12, 2000
	29	Niels Ferguson , Richard Schroeppel , Doug Whiting, A Simple Algebraic Representation of Rijndael, Revised Papers from the 8th Annual International Workshop on Selected Areas in Cryptography, p.103-111, August 16-17, 2001
	30	Filiol, E. 2003. Plaintext-Dependant Repetition Codes Cryptanalysis of Block Ciphers---The AES Case. Cryptology ePrint Archive: Report 2003/003.
	31	Fuller, J. and Millan, W. 2002. On Linear Redundancy in the AES S-Box. Cryptology ePrint Archive: Report 2002/111.
	32	Henri Gilbert , Helena Handschuh , Antoine Joux , Serge Vaudenay, A Statistical Attack on RC6, Proceedings of the 7th International Workshop on Fast Software Encryption, p.64-74, April 10-12, 2000
	33	Gilbert, H. and Minier, M. 2000. A collision attack on 7 rounds of Rijndael. In Proceedings of the 3rd AES Conference (AES3).
	34	Hachez, G., Koeune, F., and Quisquater, J.-J. 1999. cAESar results: Implementation of four AES candidates on two smart cards. In 2nd AES Candidate Conference (AES2).
	35	Helena Handschuh , Howard M. Heys, A Timing Attack on RC5, Proceedings of the Selected Areas in Cryptography, p.306-318, August 17-18, 1998
	36	Handschuh, H. and Naccache, D. 2000. SHACAL. In Proceedings of the First Open NESSIE Workshop.
	37	Yasuo Hatano , Hiroki Sekine , Toshinobu Kaneko, Higher Order Differential Attack of Camellia (II), Revised Papers from the 9th Annual International Workshop on Selected Areas in Cryptography, p.129-146, August 15-16, 2002
	38	Yeping He , Sihan Qing, Square Attack on Reduced Camellia Cipher, Proceedings of the Third International Conference on Information and Communications Security, p.238-245, November 13-16, 2001
	39	Jason Hill , Robert Szewczyk , Alec Woo , Seth Hollar , David Culler , Kristofer Pister, System architecture directions for networked sensors, ACM SIGOPS Operating Systems Review, v.34 n.5, p.93-104, Dec. 2000
	40	IEEE. 2003. IEEE Standard for Information technology---Telecommunications and information exchange between systems---Local and metropolitan area networks---Specific requirements Part 15.4: Wireless Medium Access Control (MAC) and Physical Layer (PHY) Specifications for Low Rate Wireless Personal Area Networks (LR-WPANs).
	41	Intel Corporation 1997. Intel Architecture Software Developer's Manual Volume 2: Instruction Set Reference. Intel Corporation.
	42	Kaliski, B. and Yin, Y. 1998. On the Security of the RC5 Encryption Algorithm. Tech. Rep. TR-602, RSA Laboratories. Sept.
	43	Ju-Sung Kang , Sang Uk Shin , Dowon Hong , Okyeon Yi, Provable Security of KASUMI and 3GPP Encryption Mode f8, Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology, p.255-271, December 09-13, 2001
	44	Ju-Sung Kang , Okyeon Yi , Dowon Hong , Hyunsook Cho, Pseudorandomness of MISTY-Type Transformations and the Block Cipher KASUMI, Proceedings of the 6th Australasian Conference on Information Security and Privacy, p.60-73, July 11-13, 2001
	45	Chris Karlof , Naveen Sastry , David Wagner, TinySec: a link layer security architecture for wireless sensor networks, Proceedings of the 2nd international conference on Embedded networked sensor systems, November 03-05, 2004, Baltimore, MD, USA [doi>10.1145/1031495.1031515]
	46	Karlof, C. and Wagner, D. 2003. Secure routing in wireless sensor networks: Attacks and countermeasures. Elsevier's Ad Hoc Networks Journal, Special Issue on Sensor Network Applications and Protocols 1, 2--3, 293--315.
	47	Keating, G. 1999. Performance Analysis of AES candidates on the 6805 CPU core. In 2nd AES Candidate Conference (AES2).
	48	Kelsey, J. 2000. Key Separation in Twofish. Tech. Rep. #7, Counterpane Internet Security, Inc. Apr.
	49	John Kelsey , Bruce Schneier , David Wagner , Chris Hall, Side Channel Cryptanalysis of Product Ciphers, Proceedings of the 5th European Symposium on Research in Computer Security, p.97-110, September 16-18, 1998
	50	Joe Kilian , Phillip Rogaway, How to Protect DES Against Exhaustive Key Search, Proceedings of the 16th Annual International Cryptology Conference on Advances in Cryptology, p.252-267, August 18-22, 1996
	51	Kling, R. 2003. Intel mote: An Enhanced Sensor Network Node. In International Workshop on Advanced Sensors, Structural Health Monitoring and Smart Structures.
	52	Lars R. Knudsen , Willi Meier, Correlations in RC6 with a Reduced Number of Rounds, Proceedings of the 7th International Workshop on Fast Software Encryption, p.94-108, April 10-12, 2000
	53	Lars R. Knudsen , David Wagner, Integral Cryptanalysis, Revised Papers from the 9th International Workshop on Fast Software Encryption, p.112-127, February 04-06, 2002
	54	Ulrich Kühn, Cryptanalysis of Reduced-Round MISTY, Proceedings of the International Conference on the Theory and Application of Cryptographic Techniques: Advances in Cryptology, p.325-339, May 06-10, 2001
	55	Ulrich Kühn, Improved Cryptanalysis of MISTY1, Revised Papers from the 9th International Workshop on Fast Software Encryption, p.61-75, February 04-06, 2002
	56	Seonhee Lee , Seokhie Hong , Sangjin Lee , Jongin Lim , Seonhee Yoon, Truncated Differential Cryptanalysis of Camellia, Proceedings of the 4th International Conference Seoul on Information Security and Cryptology, p.32-38, December 06-07, 2001
	57	Lenstra, A. K. and Verheul, E. R. 2001. Selecting cryptographic key sizes. Journal of Cryptology 14, 4, 255--293.
	58	Li, T., Wu, H., Wang, X., and Bao, F. 2005. SenSec Design. Tech. Rep. TR-I2R-v1.1, InfoComm Security Department, Institute for Infocomm Research. Feb.
	59	Donggang Liu , Peng Ning , Rongfang Li, Establishing pairwise keys in distributed sensor networks, ACM Transactions on Information and System Security (TISSEC), v.8 n.1, p.41-77, February 2005 [doi>10.1145/1053283.1053287]
	60	Stefan Lucks, The Saturation Attack - A Bait for Twofish, Revised Papers from the 8th International Workshop on Fast Software Encryption, p.1-15, April 02-04, 2001
	61	Mitsuru Matsui, Linear cryptanalysis method for DES cipher, Workshop on the theory and application of cryptographic techniques on Advances in cryptology, p.386-397, January 1994, Lofthus, Norway
	62	Mitsuru Matsui, New Block Encryption Algorithm MISTY, Proceedings of the 4th International Workshop on Fast Software Encryption, p.54-68, January 20-22, 1997
	63	Matsui, M. and Tokita, T. 2000. MISTY, KASUMI and Camellia Cipher Algorithm. Mitsubishi Electric ADVANCE (Cryptography Edition) 100, 2--8.
	64	Mirza, F. and Murphy, S. 1999. An observation on the key schedule of twofish. In Proceedings of the 2nd AES Conference (AES2).
	65	Mitsubishi Electric Corp. 2001. http://info.isl.ntt.co.jp/crypt/camellia/dl/camellia.c.
	66	Atsuko Miyaji , Masao Nonaka , Yoshinori Takii, Known Plaintext Correlation Attack against RC5, Proceedings of the The Cryptographer's Track at the RSA Conference on Topics in Cryptology, p.131-148, February 18-22, 2002
	67	Moh, T. 2002. On the Courtois-Pieprzyk's Attack on Rijndael. Web page: http://www.usdsi.com/aes.html.
	68	Murphy, S. 2000. The key Separation of twofish. In Proceedings of the 3rd AES Conference (AES3).
	69	Murphy, S. and Robshaw, M. 2002a. Comments on the Security of the AES and the XSL Technique. http://www.isg.rhul.ac.uk/~mrobshaw/rijndael/xslnote.pdf.
	70	Sean Murphy , Matthew J. B. Robshaw, Essential Algebraic Structure within the AES, Proceedings of the 22nd Annual International Cryptology Conference on Advances in Cryptology, p.1-16, August 18-22, 2002
	71	S. Murphy , M. J. B. Robshaw, Key-Dependent S-Boxes and Differential Cryptanalysis, Designs, Codes and Cryptography, v.27 n.3, p.229-255, December 2002 [doi>10.1023/A:1019991004496 ]
	72	Nechvatal, J., Barker, E., Bassham, L., Burr, W., Dworkin, M., Foti, J., and Roback, E. 2000. Report on the Development of the Advanced Encryption Standard (AES). Tech. rep., NIST.
	73	NESSIE Consortium 2003. Portfolio of recommended cryptographic primitives. NESSIE Consortium.
	74	NIST 1998. Skipjack and KEA Algorithm Specifications Version 2.0. NIST.
	75	Nyberg, K. 1995. Linear approximations of block ciphers. In Advances in Cryptology---EUROCRYPT '94, Workshop on the Theory and Application of Cryptographic Techniques. LNCS, vol. 950. Springer-Verlag, 439--444.
	76	Ohta, H. and Matsui, M. 2000. A Description of the MISTY1 Encryption Algorithm. RFC 2994, Network Working Group, IETF. Nov.
	77	Adrian Perrig , Robert Szewczyk , Victor Wen , David Culler , J. D. Tygar, SPINS: security protocols for sensor netowrks, Proceedings of the 7th annual international conference on Mobile computing and networking, p.189-199, July 2001, Rome, Italy [doi>10.1145/381677.381696]
	78	Joseph Polastre , Jason Hill , David Culler, Versatile low power media access for wireless sensor networks, Proceedings of the 2nd international conference on Embedded networked sensor systems, November 03-05, 2004, Baltimore, MD, USA [doi>10.1145/1031495.1031508]
	79	Bart Preneel, Cryptographic Primitives for Information Authentication - State of the Art, State of the Art in Applied Cryptography, Course on Computer Security and Industrial Cryptography - Revised Lectures, p.49-104, June 03-06, 1997
	80	Preneel, B., Biryukov, A., Oswald, E., Rompay, B. V., Granboulan, L., Dottax, E., Murphy, S., Dent, A., White, J., Dichtl, M., Pyka, S., Schafheutle, M., Serf, P., Biham, E., Barkan, E., Dunkelman, O., Quisquater, J.-J., Ciet, M., Sica, F., Knudsen, L., Parker, M., and Raddum, H. 2003. NESSIE Security Report. Deliverable D20, NESSIE Consortium. Feb.
	81	Ben Reichardt , David Wagner, Markov Truncated Differential Cryptanalysis of Skipjack, Revised Papers from the 9th Annual International Workshop on Selected Areas in Cryptography, p.110-128, August 15-16, 2002
	82	Rivest, R. 1995. The RC5 Encryption Algorithm. In Proceedings of the 1994 Leuven Workshop on Fast Software Encryption. Springer-Verlag, 86--96.
	83	Rivest, R., Robshaw, M., Sidney, R., and Yin, Y. 1998. The RC6#8482; Block Cipher. Specification version 1.1.
	84	Sano, F., Koike, M., Kawamura, S., and Shiba, M. 2001. Performance evaluation of aes finalists on the high-end smart card. In Proceedings of the 3rd AES Conference (AES3).
	85	Bruce Schneier, Description of a New Variable-Length Key, 64-bit Block Cipher (Blowfish), Fast Software Encryption, Cambridge Security Workshop, p.191-204, December 09-11, 1993
	86	Bruce Schneier, Applied cryptography (2nd ed.): protocols, algorithms, and source code in C, John Wiley & Sons, Inc., New York, NY, 1995
	87	Schneier, B. 2002a. AES News. Crypto-gram newsletter, Counterpane Internet Security, Inc. Sept.
	88	Schneier, B. 2002b. More on AES Cryptanalysis. Crypto-gram newsletter, Counterpane Internet Security, Inc. Oct.
	89	Schneier, B., Kelsey, J., Whiting, D., Wagner, D., Hall, C., and Ferguson, N. 1998. Twofish: A 128-Bit Block Cipher. http://www.schneier.com/paper-twofish-paper.pdf.
	90	Bruce Schneier , John Kelsey , Doug Whiting , David Wagner , Chris Hall, On the Twofish Key Schedule, Proceedings of the Selected Areas in Cryptography, p.27-42, August 17-18, 1998
	91	Bruce Schneier , John Kelsey , Doug Whiting , David Wagner , Chris Hall , Niels Ferguson, The Twofish encryption algorithm: a 128-bit block cipher, John Wiley & Sons, Inc., New York, NY, 1999
	92	Schneier, B. and Whiting, D. 2001. A performance comparison of the five AES finalists. In Proceedings of the 3rd AES Conference (AES3).
	93	Takeshi Shimoyama , Masahiko Takenaka , Takeshi Koshiba, Multiple Linear Cryptanalysis of a Reduced Round RC6, Revised Papers from the 9th International Workshop on Fast Software Encryption, p.76-88, February 04-06, 2002
	94	Shimoyama, T., Takeuchi, K., and Hayakawa, J. 2000. Correlation Attack to the Block Cipher RC5 and the Simplified Variants of RC6. In Proceedings of the 3rd AES Conference (AES3).
	95	Sasha Slijepcevic , Miodrag Potkonjak , Vlasios Tsiatsis , Scott Zimbeck , Mani B. Srivastava, On Communication Security in Wireless Ad-Hoc Sensor Networks, Proceedings of the 11th IEEE International Workshops on Enabling Technologies: nfrastructure for Collaborative Enterprises, p.139-144, June 10-12, 2002
	96	Makoto Sugita , Kazukuni Kobara , Hideki Imai, Security of Reduced Version of the Block Cipher Camellia against Truncated and Impossible Differential Cryptanalysis, Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology, p.193-207, December 09-13, 2001
	97	Szewczyk, R., Polastre, J., Mainwaring, A., and Culler, D. 2004. Lessons from a sensor network expedition. In Proceedings of the 1st European Workshop Wireless Sensor Networks (EWSN 04). LNCS, vol. 2920. Springer-Verlag, 307--322.
	98	Takenaka, M., Shimoyama, T., and Koshiba, T. 2002. Theoretical Analysis of “Correlations in RC6”. Cryptology ePrint Archive: Report 2002/176.
	99	Takenaka, M., Shimoyama, T., and Koshiba, T. 2003. Theoretical analysis of χ2 attack on RC6. In Proceedings of the 8th Australasian Conference on Information Security and Privacy (ACISP2003). LNCS, vol. 2727. Springer-Verlag, 142--153.
	100	Hidema Tanaka , Chikashi Ishii , Toshinobu Kaneko, On the Strength of KASUMI without FL Functions against Higher Order Differential Attack, Proceedings of the Third International Conference on Information Security and Cryptology, p.14-21, December 08-09, 2000
	101	Texas Instruments, Inc. 2001. MSP430x13x, MSP430x14x Mixed Signal Microcontroller. Datasheet.
	102	Tri Van Le. 2003. Novel Cyclic and Algebraic Properties of AES. Cryptology ePrint Archive: Report 2003/108.
	103	Tijs van Dam , Koen Langendoen, An adaptive energy-efficient MAC protocol for wireless sensor networks, Proceedings of the 1st international conference on Embedded networked sensor systems, November 05-07, 2003, Los Angeles, California, USA [doi>10.1145/958491.958512]
	104	van Hoesel, L., Dulman, S., Havinga, P., and Kip, H. 2003. Design of a low-power testbed for wireless sensor networks and verification. Tech. Rep. TR-CTIT-03-45, Centre for Telematics and Information Technology, University of Twente, The Netherlands. Sept.
	105	Whiting, D. 1998. http://www.schneier.com/code/twofish-optimized-c.zip.
	106	Worley, J., Worley, B., Christian, T., and Worley, C. 2001. AES Finalists on PA-RISC and IA-64: Implementations & performance. In Proceedings of the 3rd AES Conference (AES3).
	107	Xue, Q. and Ganz, A. 2003. Runtime security composition for sensor networks (SecureSense). In IEEE Vehicular Technology Conference (VTC Fall 2003).
	108	Ye, W., Heidemann, J., and Estrin, D. 2002. An energy-efficient MAC protocol for wireless sensor networks. In Proceedings of the IEEE Infocom. USC/Information Sciences Institute, IEEE, New York, NY, USA, 1567--1576.
	109	Yongjin Yeom , Sangwoo Park , Iljun Kim, On the Security of CAMELLIA against the Square Attack, Revised Papers from the 9th International Workshop on Fast Software Encryption, p.89-99, February 04-06, 2002
	110	Youssef, A. and Tavares, S. 2002. On Some Algebraic Structures in the AES Round Function. Cryptology ePrint Archive: Report 2002/144.
	111	Pei Zhang , Christopher M. Sadler , Stephen A. Lyon , Margaret Martonosi, Hardware design experiences in ZebraNet, Proceedings of the 2nd international conference on Embedded networked sensor systems, November 03-05, 2004, Baltimore, MD, USA [doi>10.1145/1031495.1031522]
	112	Sencun Zhu , Sanjeev Setia , Sushil Jajodia, LEAP: efficient security mechanisms for large-scale distributed sensor networks, Proceedings of the 10th ACM conference on Computer and communications security, October 27-30, 2003, Washington D.C., USA [doi>10.1145/948109.948120]

CITED BY 6

	Johann Großschädl , Stefan Tillich , Christian Rechberger , Michael Hofmann , Marcel Medwed, Energy evaluation of software implementations of block ciphers under memory constraints, Proceedings of the conference on Design, automation and test in Europe, April 16-20, 2007, Nice, France
	Mark Luk , Ghita Mezzour , Adrian Perrig , Virgil Gligor, MiniSec: a secure sensor network communication architecture, Proceedings of the 6th international conference on Information processing in sensor networks, April 25-27, 2007, Cambridge, Massachusetts, USA
	Shammi Didla , Aaron Ault , Saurabh Bagchi, Optimizing AES for embedded devices and wireless sensor networks, Proceedings of the 4th International Conference on Testbeds and research infrastructures for the development of networks & communities, March 18-20, 2008, Innsbruck, Austria
	Cynthia Kuo , Mark Luk , Rohit Negi , Adrian Perrig, Message-in-a-bottle: user-friendly and secure key deployment for sensor nodes, Proceedings of the 5th international conference on Embedded networked sensor systems, November 06-09, 2007, Sydney, Australia
	Christos Strydis , Di Zhu , Georgi N. Gaydadjiev, Profiling of symmetric-encryption algorithms for a novel biomedical-implant architecture, Proceedings of the 2008 conference on Computing frontiers, May 05-07, 2008, Ischia, Italy
	Rodrigo Roman , Cristina Alcaraz , Javier Lopez, A survey of cryptographic primitives and implementations for hardware-constrained sensor network nodes, Mobile Networks and Applications, v.12 n.4, p.231-244, August 2007