Article

Seven cardinal properties of sensor network broadcast authentication

Authors:

Bram WhillockAuthors Info & Claims

SASN '06: Proceedings of the fourth ACM workshop on Security of ad hoc and sensor networks

Pages 147 - 156

https://doi.org/10.1145/1180345.1180364

Published: 30 October 2006 Publication History

Abstract

We investigate the design space of sensor network broadcast authentication. We show that prior approaches can be organized based on a taxonomy of seven fundamental proprieties, such that each approach can satisfy at most six of the seven proprieties. An empirical study of the design space reveals possibilities of new approaches, which we present in the following two new authentication protocols: RPT and LEA. Based on this taxonomy, we offer guidance in selecting the most appropriate protocol based on an application's desired proprieties. Finally, we pose the open challenge for the research community to devise a protocol simultaneously providing all seven properties.

References

[1]

D. Boneh, G. Durfee, and M. Franklin. Lower bounds for multicast message authentication. In Advances in Cryptology -- EUROCRYPT '01, pages 434--450, 2001.]]

Digital Library

[2]

M. Brown, D. Cheung, D. Hankerson, J. Lopez Hernandez, M. Kirkup, and A. Menezes. PGP in constrained wireless devices. In Proceedings of USENIX Security Symposium, August 2000.]]

Digital Library

[3]

R. Canetti, J. Garay, G. Itkis, D. Micciancio, M. Naor, and B. Pinkas. Multicast security: A taxonomy and some efficient constructions. In INFOCOMM'99, pages 708--716, March 1999.]]

[4]

J. Deng, R. Han, and S. Mishra. A performance evaluation of intrusion-tolerant routing in wireless sensor networks. In Proceedings of IEEE Workshop on Information Processing in Sensor Networks (IPSN), April 2003.]]

[5]

J. Deng, C. Hartung, R. Han, and S. Mishra. A practical study of transitory master key establishment for wireless sensor networks. In Proceedings of the First IEEE/CreateNet Conference on Security and Privacy for Emerging Areas in Communication Networks (SecureComm), 2005.]]

Digital Library

[6]

Jeremy Elson, Lewis Girod, and Deborah Estrin. Fine-grained network time synchronization using reference broadcasts. In Proceedings of Symposium on Operating Systems Design and Implementation (OSDI), December 2002.]]

Digital Library

[7]

Jeremy Elson and Kay Römer. Wireless sensor networks: A new regime for time synchronization. In Proceedings of Workshop on Hot Topics In Networks (HotNets-I), October 2002.]]

[8]

S. Even, O. Goldreich, and S. Micali. On-line/off-line digital signatures. In Advances in Cryptology -- CRYPTO '89, volume 435, pages 263--277, 1990.]]

Digital Library

[9]

Niels Ferguson, Doug Whiting, Bruce Schneier, John Kelsey, Stefan Lucks, and Tadayoshi Kohno. Helix: Fast encryption and authentication in a single cryptographic primitive. In Proceedings of the International Workshop on Fast Software Encryption (FSE 2003), 2003.]]

[10]

V. Gupta, M. Millard, S. Fung, Y. Zhu, N. Gura, H. Eberle, and S. C. Shantz. Sizzle: A standards-based end-to-end security architecture for the embedded internet. In Proceedings of the Third IEEE International Conference on Pervasive Computing and Communication (PerCom), 2005.]]

Digital Library

[11]

Jason Hill, Robert Szewczyk, Alec Woo, Seth Hollar, David E. Culler, and Kristofer S. J. Pister. System architecture directions for networked sensors. In Proceedings of Architectural Support for Programming Languages and Operating Systems (ASPLOS IX), pages 93--104, 2000.]]

Digital Library

[12]

Lingxuan Hu and David Evans. Secure aggregation for wireless networks. In Workshop on Security and Assurance in Ad hoc Networks, January 2003.]]

Digital Library

[13]

Yih-Chun Hu, Adrian Perrig, and David B. Johnson. Packet leashes: A defense against wormhole attacks in wireless networks. In Proceedings of IEEE INFOCOM, April 2003.]]

[14]

J. M. Kahn, R. H. Katz, and K. S. Pister. Mobile networking for smart dust. In Proceedings of ACM/IEEE Conference on Mobile Computing and Networking (MobiCom), August 1999.]]

Digital Library

[15]

C. Karlof, N. Sastry, and D. Wagner. TinySec: A link layer security architecture for wireless sensor networks. In ACM SenSys, November 2004.]]

Digital Library

[16]

Chris Karlof, Naveen Sastry, Yaping Li, Adrian Perrig, and J. D. Tygar. Distillation codes and applications to dos resistant multicast authentication. In Proceedings of the Symposium on Network and Distributed Systems Security (NDSS), November 2004.]]

[17]

Chris Karlof and David Wagner. Secure routing in wireless sensor networks: Attacks and countermeasures. In Proceedings of First IEEE International Workshop on Sensor Network Protocols and Applications, May 2003.]]

[18]

A. Lenstra and E. Verheul. Selecting cryptographic key sizes. Journal of Cryptology, 14(4):255--293, 2001.]]

Digital Library

[19]

D. Liu, P. Ning, S. Zhu, and S. Jajodia. Practical broadcast authentication in sensor networks. In Proceedings of The 2nd Annual International Conference on Mobile and Ubiquitous Systems: Networking and Services, November 2005.]]

Digital Library

[20]

Donggang Liu and Peng Ning. Efficient distribution of key chain commitments for broadcast authentication in distributed sensor networks. In Proceedings of Network and Distributed System Security Symposium (NDSS),pages 263--276, February 2003.]]

[21]

David Malan, Matt Welsh, and Michael Smith. A public-key infrastructure for key distribution in TinyOS based on elliptic curve cryptography. In Proceedings of IEEE International Conference on Sensor and Ad hoc Communications and Networks (SECON), October 2004.]]

[22]

S. Matyas, C. Meyer, and J. Oseas. Generating strong one-way functions with cryptographic algorithm. IBM Technical Disclosure Bulletin, 27:5658--5659, 1985.]]

[23]

A. Menezes, P. van Oorschot, and S. Vanstone. Handbook of Applied Cryptography. CRC Press, 1997.]]

Digital Library

[24]

R. Merkle. Protocols for public key cryptosystems. In Proceedings of the IEEE Symposium on Research in Security and Privacy, pages 122--134, April 1980.]]

[25]

R. Merkle. A digital signature based on a conventional encryption function. In Advances in Cryptology -- CRYPTO '87, pages 369--378, 1988.]]

Digital Library

[26]

R. Merkle. A certified digital signature. In Advances in Cryptology -- CRYPTO '89, pages 218--238, 1990.]]

Digital Library

[27]

National Institute of Standards and Technology (NIST), Computer Systems Laboratory. Secure Hash Standard. Federal Information Processing Standards Publication (FIPS PUB) 180--2, February 2004.]]

[28]

A. Perrig. The BiBa one-time signature and broadcast authentication protocol. In Proceedings of ACM Conference on Computer and Communications Security (CCS),pages 28--37, November 2001.]]

Digital Library

[29]

A. Perrig, R. Canetti, J. D. Tygar, and D. Song. Efficient authentication and signature of multicast streams over lossy channels. In Proceedings of the IEEE Symposium on Research in Security and Privacy, pages 56--73, May 2000.]]

Digital Library

[30]

A. Perrig, R. Canetti, J. D. Tygar, and D. Song. The TESLA broadcast authentication protocol. RSA CryptoBytes, 5(Summer), 2002.]]

[31]

Adrian Perrig, Robert Szewczyk, Victor Wen, David Culler, and J. D. Tygar. SPINS: Security protocols for sensor networks. In Proceedings of ACM Conference on Mobile Computing and Networks (MobiCom), pages 189--199, 2001.]]

Digital Library

[32]

Bartosz Przydatek, Dawn Song, and Adrian Perrig. SIA: Secure information aggregation in sensor networks. In Proceedings of the First ACM International Conference on Embedded Networked Sensor Systems (SenSys 2003), pages 255--265, November 2003.]]

Digital Library

[33]

Leonid Reyzin and Natan Reyzin. Better than BiBa: Short one-time signatures with fast signing and verifying. In Proceedings of Conference on Information Security and Privacy (ACISP), July 2002.]]

Digital Library

[34]

R. Rivest, A. Shamir, and L. Adleman. A method for obtaining digital signatures and public-key cryptosystems. Communications of the ACM, 21(2):120--126, February 1978.]]

Digital Library

[35]

P. Rohatgi. A compact and fast hybrid signature scheme for multicast packet. In Proceedings of the 6th ACM Conference on Computer and Communications Security, pages 93--100. ACM Press, November 1999.]]

Digital Library

[36]

F. Ye, H. Luo, S. Lu, and L. Zhang. Statistical en-route filtering of injected false data in sensor networks. In Proceedings of IEEE INFOCOM, March 2004.]]

[37]

S. Zhu, S. Setia, S. Jajodia, and P. Ning. An interleaved hop-by-hop authentication scheme for filtering false data in sensor networks. In Proceedings of IEEE Symposium on Security and Privacy, pages 259--271, May 2004.]]

Cited By

Esiner ETefek UErol HMashima DChen BHu YKalbarczyk ZNicol D(2022)LoMoS: Less-Online/More-Offline Signatures for Extremely Time-Critical SystemsIEEE Transactions on Smart Grid10.1109/TSG.2022.315689713:4(3214-3226)Online publication date: Jul-2022
https://doi.org/10.1109/TSG.2022.3156897
Yildiz HCenk MOnur E(2021)PLGAKD: A PUF-Based Lightweight Group Authentication and Key Distribution ProtocolIEEE Internet of Things Journal10.1109/JIOT.2020.30327578:7(5682-5696)Online publication date: 1-Apr-2021
https://doi.org/10.1109/JIOT.2020.3032757
Han DDu XLu Y(2020)Trustworthiness and a Zero Leakage OTMP-P2L Scheme Based on NP Problems for Edge Security AccessSensors10.3390/s2008223120:8(2231)Online publication date: 15-Apr-2020
https://doi.org/10.3390/s20082231
Show More Cited By

Index Terms

Seven cardinal properties of sensor network broadcast authentication
1. Security and privacy
  1. Security services
    1. Authentication

Recommendations

Mitigating DoS attacks against broadcast authentication in wireless sensor networks

Broadcast authentication is a critical security service in wireless sensor networks. There are two general approaches for broadcast authentication in wireless sensor networks: digital signatures and μTESLA-based techniques. However, both signature-based ...
The BiBa one-time signature and broadcast authentication protocol
CCS '01: Proceedings of the 8th ACM conference on Computer and Communications Security

We introduce the BiBa signature scheme, a new signature construction that uses one-way functions without trapdoors. BiBa features a low verification overhead and a relatively small signature size. In comparison to other one-way function based signature ...
Multi-sender Broadcast Authentication in Wireless Sensor Networks
CIS '14: Proceedings of the 2014 Tenth International Conference on Computational Intelligence and Security

Broadcast authentication, a fundamental feature in wireless sensor networks (WSNs), enables users to broadcast to multiple sensor nodes in an authenticated way. Symmetric-key-based muTESLA-like schemes are a popular solution due to their energy ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

SASN '06: Proceedings of the fourth ACM workshop on Security of ad hoc and sensor networks

October 2006

186 pages

ISBN:1595935541

DOI:10.1145/1180345

Program Chairs:
Sencun Zhu
The Pennsylvania State University
,
Donggang Liu
University of Texas at Arlington

Copyright © 2006 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 30 October 2006

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Article

Conference

CCS06

Sponsor:

CCS06: 13th ACM Conference on Computer and Communications Security 2006

October 30, 2006

Virginia, Alexandria, USA

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

72
Total Citations
View Citations
888
Total Downloads

Downloads (Last 12 months)6
Downloads (Last 6 weeks)0

Reflects downloads up to 05 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

Esiner ETefek UErol HMashima DChen BHu YKalbarczyk ZNicol D(2022)LoMoS: Less-Online/More-Offline Signatures for Extremely Time-Critical SystemsIEEE Transactions on Smart Grid10.1109/TSG.2022.315689713:4(3214-3226)Online publication date: Jul-2022
https://doi.org/10.1109/TSG.2022.3156897
Yildiz HCenk MOnur E(2021)PLGAKD: A PUF-Based Lightweight Group Authentication and Key Distribution ProtocolIEEE Internet of Things Journal10.1109/JIOT.2020.30327578:7(5682-5696)Online publication date: 1-Apr-2021
https://doi.org/10.1109/JIOT.2020.3032757
Han DDu XLu Y(2020)Trustworthiness and a Zero Leakage OTMP-P2L Scheme Based on NP Problems for Edge Security AccessSensors10.3390/s2008223120:8(2231)Online publication date: 15-Apr-2020
https://doi.org/10.3390/s20082231
Wu ZZhang YYang YLiang CLiu R(2020)Spoofing and Anti-Spoofing Technologies of Global Navigation Satellite System: A SurveyIEEE Access10.1109/ACCESS.2020.30222948(165444-165496)Online publication date: 2020
https://doi.org/10.1109/ACCESS.2020.3022294
Meshram CLee CMeshram SMeshram A(2020)OOS-SSS: An Efficient Online/Offline Subtree-Based Short Signature Scheme Using Chebyshev Chaotic Maps for Wireless Sensor NetworkIEEE Access10.1109/ACCESS.2020.29913488(80063-80073)Online publication date: 2020
https://doi.org/10.1109/ACCESS.2020.2991348
Boubiche DAthmani SBoubiche SToral-Cruz H(2020)Cybersecurity Issues in Wireless Sensor Networks: Current Challenges and SolutionsWireless Personal Communications10.1007/s11277-020-07213-5Online publication date: 10-Mar-2020
https://doi.org/10.1007/s11277-020-07213-5
Souza ACarlson IRamos HLoureiro AOliveira L(2020)Internet of Things device authentication via electromagnetic fingerprintsEngineering Reports10.1002/eng2.122262:8Online publication date: 9-Jul-2020
https://doi.org/10.1002/eng2.12226
Nesteruk SBezzateev S(2018)Location-Based Protocol for the Pairwise Authentication in the Networks without InfrastructureProceedings of the 22st Conference of Open Innovations Association FRUCT10.5555/3266365.3266391(190-197)Online publication date: 21-May-2018
https://dl.acm.org/doi/10.5555/3266365.3266391
Nesteruk SKovalenko VBezzateev S(2018)A Survey on Localized Authentication Protocols for Wireless Sensor Networks2018 Wave Electronics and its Application in Information and Telecommunication Systems (WECONF)10.1109/WECONF.2018.8604433(1-7)Online publication date: Nov-2018
https://doi.org/10.1109/WECONF.2018.8604433
Tesfay TLe Boudec J(2018)Experimental Comparison of Multicast Authentication for Wide Area Monitoring SystemsIEEE Transactions on Smart Grid10.1109/TSG.2017.26560679:5(4394-4404)Online publication date: Sep-2018
https://doi.org/10.1109/TSG.2017.2656067
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten