An improved hybrid Ney management scheme for wireless sensor networNs. PriyanNa Ahlawat. Department of Computer Engineering. National Institute of ...
�����)RXUWK�,QWHUQDWLRQDO�&RQIHUHQFH�RQ�3DUDOOHO��'LVWULEXWHG�DQG�*ULG�&RPSXWLQJ��3'*&
$Q�LPSURYHG�K\EULG�NH\�PDQDJHPHQW�VFKHPH�IRU� ZLUHOHVV�VHQVRU�QHWZRUNV� 3UL\DQND�$KODZDW�
0D\DQN�'DYH�
'HSDUWPHQW�RI�&RPSXWHU�(QJLQHHULQJ�� 1DWLRQDO�,QVWLWXWH�RI�7HFKQRORJ\� .XUXNVKHWUD���������,QGLD�� SUL\DQNDDKODZDW#QLWNNU�DF�LQ�
'HSDUWPHQW�RI�&RPSXWHU�(QJLQHHULQJ�� 1DWLRQDO�,QVWLWXWH�RI�7HFKQRORJ\� .XUXNVKHWUD���������,QGLD�� PGDYH#QLWNNU�DF�LQ� � � �
Abstract— The prevention of node capture attack is an important issue for wireless sensor network (WSN) security. Key management plays a crucial role in providing secure communication among the sensor nodes. The resilience of the key management scheme used by the WSN for secure communication is considered as a performance metric. During a node capture attack, the keying material gets revealed leading to further compromise of other non-compromised nodes/links. The resistance of key management scheme reduces as the number of captured nodes increases degrading security of the network. This paper addresses minimization of node capture and proposes an improved hybrid key management scheme for it. The scheme uses cryptographic hash function to reduce the number of additional compromised links and thus, the resistance against node capture is improved. We have also evaluated our scheme analytically and results obtained show that it gives better resilience against node capture as compared to other existing schemes. Keywords- Wireless sensor networks, node capture attack, hashing, key predistribution, key management scheme.
,��
,1752'8&7,21�
:LUHOHVV�VHQVRU�QHWZRUN��:61 �LV�FRPSRVHG�RI�PDQ\�WLQ\� UHVRXUFH� FRQVWUDLQHG� VHQVRUV� WKDW� KDYH� OLPLWHG� SURFHVVLQJ� SRZHU� >�@�� 7KHVH� QHWZRUNV� DUH� RIWHQ� GHSOR\HG� LQ� KRVWLOH� HQYLURQPHQWV��PDNLQJ�WKHP�YXOQHUDEOH�WR�QRGH�FDSWXUH�DWWDFNV� >�@���7KXV��UREXVW�FU\SWRJUDSKLF�NH\�PDQDJHPHQW�LV�RQH�RI�WKH� SUHUHTXLVLWHV� RI� WKH� VHFXULW\� PHFKDQLVPV� RI� :61V�� .H\� PDQDJHPHQW� VFKHPH� �.06 � SURYLGHV� D� VHFXUH� HQYLURQPHQW� ZKHUH� WZR� SDUWLHV� FDQ� H[FKDQJH� WKHLU� VHQVLWLYH� GDWD�� ,W� LV� GHILQHG� DV� D� VHW� RI� SURFHVVHV� DQG� PHFKDQLVPV� WR� VXSSRUW� DQG� PDLQWDLQ� DQ� RQJRLQJ� NH\LQJ� UHODWLRQVKLSV� DFFRUGLQJ� WR� D� VHFXULW\� SROLF\� >���@�� ,Q� WKLV� SDSHU�� ZH� SUHVHQW� DQ� LPSURYHG� K\EULG� NH\� PDQDJHPHQW� VFKHPH� IRU� :61V�EDVHG� RQ� WKH� KDVK� FKDLQHG�SUREDELOLVWLF�NH\�PDQDJHPHQW�DQG�WKH�SRO\QRPLDO�SRRO� NH\� PDQDJHPHQW� VFKHPHV�� 7KH� SURSRVHG� VROXWLRQ� PLQLPL]HV� WKH�HIIHFW�RI�QRGH�FDSWXUH�DWWDFN�WKHUHE\�LQFUHDVLQJ�WKH�VHFXULW\� RI�WKH�QHWZRUN�� 7KH�UHPDLQGHU�RI�WKH�SDSHU�LV�RUJDQL]HG�DV�IROORZV��6HFWLRQ� ,,� GLVFXVVHV� WKH� UHODWHG� NH\� PDQDJHPHQW� VFKHPHV�� 6HFWLRQ� ,,,� SUHVHQWV� WKH� SURSRVHG� NH\� PDQDJHPHQW� VFKHPH�� 7KH� SHUIRUPDQFH� DQDO\VLV� RI� WKH� SURSRVHG� VFKHPH� LV� JLYHQ� LQ� 6HFWLRQ�,9�DQG�VLPXODWLRQV�DUH�UHIOHFWHG�LQ�6HFWLRQ�9��)LQDOO\�� ZH�FRQFOXGH�RXU�SDSHU�LQ�6HFWLRQ�9,���
���������������������������������,(((
,,��
5(/$7('�:25.6�
1XPHURXV� .06V� DUH� SURSRVHG� IRU� :61V�� 7KH� HDUOLHVW� SUREDELOLVWLF�VFKHPH�LV�JLYHQ�E\�(VFKHQDXHU�DQG�*OLJRU�>�@�DV� EDVLF�VFKHPH�ZKHUH�D�VXEVHW�RI�NH\V�DUH�UDQGRPO\�SLFNHG�E\� WKH�NH\�GLVWULEXWLRQ�VHUYHU�DQG�DVVLJQ�WR�WKH�VHQVRU�QRGHV��7KLV� VFKHPH� ZRUNV� LQ� WKUHH� VWDJHV� QDPHO\� NH\� SUHGLVWULEXWLRQ�� VKDUHG� NH\� GLVFRYHU\� DQG� SDWK� NH\� HVWDEOLVKPHQW�� 7KH� QRGHV� FDQ� HVWDEOLVK� WKH� OLQN� NH\� RQO\� LI� WKH\� DUH� LQ� HDFK� RWKHU� FRPPXQLFDWLRQ�UDQJH�DQG�VKDUH�DW�OHDVW�RQH�NH\��,W�ZDV�IXUWKHU� VWUHQJWKHQ� E\� q� FRPSRVLWH� VFKHPH� ZKHUH� WKH� QRGHV� VKDUH� DW� OHDVW� q� NH\V� WR� HVWDEOLVK� D� VHFXUH� OLQN>�@�� 7KLV� VFKHPH� SHUIRUPV� ZHOO� LQ� VPDOO� VFDOH� DWWDFNV� EXW� IDLOV� LQ� ODUJH� VFDOH� DWWDFN�� $� SRO\QRPLDO� SRRO� EDVHG� VFKHPH� LV� SURSRVHG� E\� %OXQGR� HW� DO�� >�@� ZKHUH� QRGHV� VWRUH� WKH� SRO\QRPLDO� VKDUHV� LQVWHDG� RI� NH\V�� ,W� ZDV� ODWHU� PRGLILHG� E\� /LQJ� HW� DO�� LQ� >�@�� 7KHVH� VFKHPHV� DUH� t� FROOLVLRQ� UHVLVWDQW�� ZKLFK� PHDQV� LI� PRUH� WKDQ�t QRGHV�DUH�FDSWXUHG�E\�DQ�DGYHUVDU\��WKH�ZKROH�SRRO�JHW� UHYHDOHG��7KHVH�VFKHPHV�KDYH�KLJK�VWRUDJH�RYHUKHDG�>�@��:LWK� LQFUHDVLQJ� QXPEHU� RI� FDSWXUHG� QRGHV� E\� WKH� DGYHUVDU\�� WKH� VFKHPH� ORVHV� LWV� W� GHJUHH� SRO\QRPLDO� VHFUHF\� HDVLO\�� 'HSOR\PHQW� EDVHG� NH\� SUHGLVWULEXWLRQ� LV� SUHVHQWHG� E\� 'X� HW� DO�>�@�ZKHUH�WKH�GHSOR\PHQW�DUHD�LV�SDUWLWLRQHG�LQ�WR�WKH�]RQHV� DQG� QHLJKERULQJ� DUH� DVVLJQHG� PRUH� FRPPRQ� NH\V�� 7KH� GLVDGYDQWDJH� RI� VXFK� VFKHPH� LV� UHTXLUHPHQW� RI� GHSOR\PHQW� NQRZOHGJH� RI� VHQVRU� QRGHV�� $� K\EULG� VFKHPH� LV� SURSRVHG� E\� =KDQJ� HW� DO�� >��@� ZKHUH� (*� VFKHPH� LV� FRPELQHG� ZLWK� SRO\QRPLDO�VFKHPH�UHVXOWHG�LQ�33%5�VFKHPH�WR�PDNH�QHWZRUN� PRUH� UHVLVWDQW� DJDLQVW� QRGH� FDSWXUH� DWWDFNV�� 7KLV� VFKHPH� FRQVLGHUV� PRELOH� VLQN�� ,W� LV� VKRZQ� WKDW� WKLV� VFKHPH� KDV� LPSURYHG� QHWZRUN� UHVLOLHQFH�� NH\� FRQQHFWLYLW\� DQG� VWRUDJH� RYHUKHDG�� $QRWKHU� VFKHPH� LV� SUHVHQWHG� E\� 'X� HW� DO�� >��@� LQ� ZKLFK� SRO\QRPLDO� VFKHPH� LV� FRPELQHG� ZLWK� q� FRPSRVLWH� VFKHPH�� $� VFKHPH� JLYHQ� E\� 4LX� HW� DO� >��@� WR� LQFUHDVH� WKH� OLIHWLPH� RI� QHWZRUN� E\� GHFUHDVLQJ� WKH� HIIHFW� RI� FRPSURPLVHG� QRGHV��,Q�WKLV�VFKHPH��SUREDELOLVWLF�VFKHPH�LV�FRPELQHG�ZLWK� PDWUL[� EDVHG� VFKHPH� WR� SURYLGH� PRUH� VHFXULW\� WR� QRGHV�� $� FU\SWRJUDSKLF� RQH� ZD\� KDVK� IXQFWLRQ� EDVHG� VFKHPH� LV� SURSRVHG� E\� 6KDQ� HW� DO�>��@� ZKHUH� KDVKLQJ� LV� DSSOLHG� RQ� WKH� NH\�SUHGLVWULEXWLRQ�WR�LQFUHDVH�WKH�UHVLOLHQFH�RI�WKH�VFKHPH��$� KDVK� FKDLQ� DQG� GHSOR\PHQW� EDVHG� VFKHPH� LV� JLYHQ� LQ� >��@� ZKHUH� ORQJ� FKDLQV� DUH� DVVLJQHG� WR� QRGHV� DIWHU� WKHLU� GHSOR\PHQW�� 1RGHV� HVWDEOLVK� WKH� SDLU�ZLVH� NH\� IURP� WKHVH� FKDLQV�� $IWHU� WKDW� WKH� FKDLQV� DUH� GHOHWHG� IURP� PHPRU\� RI�
���
�����)RXUWK�,QWHUQDWLRQDO�&RQIHUHQFH�RQ�3DUDOOHO��'LVWULEXWHG�DQG�*ULG�&RPSXWLQJ��3'*&
QRGHV��$�DV\PPHWULF�NH\�SUHGLVWULEXWLRQ�LV�SUHVHQWHG�E\�.KDQ� HW� DO��>��@�� �$�KDVK� FKDLQ� DSSURDFK� LV� JLYHQ�E\� %HFKNLW� HW� DO�� >��@�LQ�ZKLFK�NH\V�RI�WKH�QRGHV�DUH�KDVKHG�EDVHG�RQ�WKH�QRGH� LGHQWLILHU�WR�LQFUHDVH�WKH�UHVLVWDQFH�RI�WKH�VFKHPH��7KH�H[LVWLQJ� NH\� GLVWULEXWLRQ� VFKHPHV� DUH� XQDEOH� WR� PHHW� DOO� UHTXLUHPHQWV� UHODWHG� WR� VHFXULW\�� VWRUDJH�� FRPSXWDWLRQ� DQG� FRPPXQLFDWLRQ� RI� :61V�� 7KXV�� D� NH\� PDQDJHPHQW� VFKHPH� LV� QHHGHG� WKDW� VKRXOG� EH� DEOH� WR� SURYLGH� D� WUDGHRII� EHWZHHQ� WKH� GLIIHUHQW� UHTXLUHPHQWV�RI�WKH�QHWZRUN�� ,,,��
B. Threat model 7KH� %6� LV� DVVXPHG� WR� VHFXUH� DQG� FDQQRW�EH� FRPSURPLVHG�E\� DQ�DGYHUVDU\��7KH�)1V�DUH�DOVR�WDPSHU�SURRI�DQG�WKXV��FDQQRW� EH� FRPSURPLVHG� E\� DQ� DGYHUVDU\�� 2QO\� WKH� 01V� FDQ� EH� SK\VLFDOO\� FDSWXUHG� E\� DQ� DGYHUVDU\� GXULQJ� D� QRGH� FDSWXUH� DWWDFN�>������@�� C. Hash function $�KDVK�IXQFWLRQ�LV�DSSOLHG�RQ�WKH�DVVLJQHG�NH\V�>��@��,W�KDV�WZR� SURSHUWLHV�QDPHO\��
7+(�352326('�6&+(0(�
�L �&ROOXVLRQ�UHVLVWDQW��,W�LV�KDUG�WR�ILQG�WZR�GLVWLQFW�PHVVDJHV� KDYLQJ�VDPH�RXWSXW�YDOXH���7KH�FRQGLWLRQ�WKDW��+�݇ଵ ��+�݇ଶ � DOZD\V�KROG�LQ�WKH�V\VWHP�IRU�GLIIHUHQW�YDOXHV�RI�݇ଵ �DQG�݇ଶ ��
7KLV�VHFWLRQ�GHWDLOV�WKH�ZRUNLQJ�RI�WKH�SURSRVHG�VFKHPH��7KH� V\PEROV�DQG�WKHLU�PHDQLQJ�DUH�OLVWHG�LQ�7DEOH���� �
ܣ �
$XWKHQWLFDWLRQ�SRRO�
�LL � 3UH�LPDJH� UHVLVWDQW�� ,W� GHSLFWV� WKDW� WKH� UHVXOW� RI� WKH� KDVK� FDQQRW�EH�UHYHUVHG��*LYHQ�DQ\�x��ZH�FDQQRW�GHGXFH�x'�VXFK�WKDW� x' = H(x).�
ܥ �
&RPPXQLFDWLRQ�SRRO�
ܲ �
3RO\QRPLDO�SRRO�
D. Key predistribution phase
7DEOH����6\PEROV�DQG�WKHLU�PHDQLQJV� Symbol
Meaning
ܦܫெே � 01�
0RELOH�QRGH�
%6�
%DVH�VWDWLRQ�
7KLV� VHFWLRQ� GHWDLOV� WKH� NH\� SUHGLVWULEXWLRQ� SKDVH� RI� WKH� SURSRVHG� VFKHPH�� 7KH� SURSRVHG� VFKHPH� XVHV� DV\PPHWULF� SUHGLVWULEXWLRQ� ZKHUH� WKH� 01V� DUH� DVVLJQHG� IHZHU� NH\V� DV� FRPSDUHG�WR�WKH�)1V�>��������@��7KH�NH\V�RI�WKH�NH\�SRRO�DUH� DJDLQ�KDVKHG�WR�FRQFHDO�WKH�VHFUHW�NH\LQJ�PDWHULDO��,W�ZRUNV�DV� IROORZV�� � 1) Key pre-distribution phase of the proposed scheme 7KH�%6�JHQHUDWHV�D�ODUJH�NH\�SRRO��,W�GLYLGHV�WKH�NH\�SRRO�LQWR� WZR�GLVMRLQW�NH\�SRROV�QDPHO\�$XWKHQWLFDWLRQ�NH\�SRRO��ܣ �RI� VL]H�3�DQG�FRPPXQLFDWLRQ�NH\�SRRO��ܥ �RI�VL]H�&�DV�LQ�>��@�� 7KH�NH\�SRRO�ܣ �LV�XVHG�IRU�JHQHUDWLQJ�WKH�DXWKHQWLFDWLRQ�NH\V� DQG�ܥ �LV�XVHG�IRU�FRPPXQLFDWLRQ�NH\�JHQHUDWLRQ�EHWZHHQ�01� DQG�)1��,W�DOVR�JHQHUDWHV�D�ELYDULDWH�t-�GHJUHH�SRO\QRPLDO�SRRO� ܲ �RI�VL]H�3 ��
,GHQWLILHU�RI�PRELOH�QRGH�
)1�
)L[HG�QRGH�
m�
.H\�ULQJ�RI�PRELOH�QRGH�
n�
3RO\QRPLDO�ULQJ�RI�PRELOH�QRGH�
ܭ �
(QFU\SWLRQ�NH\�
ܭ � ܭ �
3RO\QRPLDO�NH\�RI�PRELOH�QRGH�
&RPPXQLFDWLRQ�NH\�
݇௩ �
1HWZRUN�SULYDWH�NH\�
݇௨ �
1HWZRUN�SXEOLF�NH\�
L
1XPEHU�RI�WLPHV�WKH�KDVK�IXQFWLRQ�LV� DSSOLHG�RQ�WKH�NH\�
� A. Network model 7KH� QHWZRUN� LV� FRQVLGHUHG� DV� KHWHURJHQHRXV� LQ� QDWXUH� FRQVLVWLQJ� RI� WZR� NLQGV� RI� QRGHV� QDPHO\� IL[HG� QRGHV� �)1V � DQG�PRELOH�QRGHV��01V >��@��7KHUH�LV�D�EDVH�VWDWLRQ��%6 �WKDW� FROOHFWV� GDWD�IURP� WKH� VHQVRU�QRGHV� DQG�SURFHVVHV� LW�� )1V�DUH� FRQVLGHUHG� WR� EH� PRUH� SRZHUIXO� QRGHV� WKDQ� 01V� LQ� WHUPV� RI� PHPRU\��SURFHVVLQJ�FDSDELOLW\�DQG�DGGLWLRQDO�UDGLRV���01V�DFW� DV� HQG� GHYLFHV� DQG� DUH� UHVSRQVLEOH� IRU� FROOHFWLQJ� WKH� LQIRUPDWLRQ��7KH�QHWZRUN�PRGHO�LV�JLYHQ�LQ�ILJ�����
a) MN keys assignment: 7KH�%6�UDQGRPO\�DVVLJQV�WKH�m NH\V�WR�WKH�01V�IURP�D�ODUJH�NH\�SRRO�ܣ ���:KHQ�LW� VHOHFWV� WKH� VDPH� NH\� LGHQWLILHU� WR� QH[W� VHQVRU� QRGH�� WKHQ�LW�DVVLJQV�WKH�KDVKHG�YDOXH�RI�WKH�NH\�LQVWHDG�RI� WKH� RULJLQDO� NH\�� 7KLV� LQFUHDVHV� WKH� UHVLOLHQFH� RI� WKH� SURSRVHG� VFKHPH�� 7KXV�� ZH� KDYH� PDQ\� GHULYDWLYH� YHUVLRQV�RI�WKH�NH\�DVVLJQHG�WR�WKH�GLIIHUHQW�QRGHV�LQ� WKH� QHWZRUN�� 7KH� QRGH�LG� LV� DOVR� VWRUHG� LQ� 01�� $� QHWZRUN� SXEOLF� NH\�݇௨ LV� DOVR� VWRUHG� IRU� WKH� JOREDO� FRQQHFWLYLW\��,W�DOVR�VWRUH�n�SRO\QRPLDO�VKDUHV�LQ�01� DORQJ�ZLWK�WKHLU�LGV�� �
BS
�
FN
FN
�
FN
FN
MN
MN
�
�
MN
MN
MN
� �
)LJ�����1HWZRUN�PRGHO�IRU�WKH�SURSRVHG�VFKHPH�
�
b) FN keys assignment: 7KH�%6�UDQGRPO\�DVVLJQ�s�NH\V� IURP�NH\�SRRO�ܣ ��WR�WKH�)1�ZLWK�WKHLU�NH\�LGV�ZKHUH� s>> m�� ,W� LV� QRWHG� WKDW� )1� DUH� DVVLJQHG� WKH� RULJLQDO� YHUVLRQV� RI� WKH� NH\�� 01� LGV� DQG� DVVRFLDWHG� NH\�LGV� LQIRUPDWLRQ�RI�DOO�WKH�01V�DUH�DOVR�VWRUHG�LQ�)1��7KH� %6� DOVR� VWRUH� SXEOLF�SULYDWH� NH\� SDLUV� WR� FRPPXQLFDWH� ZLWK� RWKHU� )1V� DQG� %6�� $� QHWZRUN� SULYDWH� NH\�݇௩ �IRU� JOREDO� FRQQHFWLYLW\�� 7ZR� GLVWLQFW� NH\� ULQJV� � ݇ݎଵ �DQG� ݇ݎଶ � IURP� ܥ �� FRQWDLQLQJ��
���
�����)RXUWK�,QWHUQDWLRQDO�&RQIHUHQFH�RQ�3DUDOOHO��'LVWULEXWHG�DQG�*ULG�&RPSXWLQJ��3'*&
�
ܿ݁݀ଵ DQG� ܿ݁݀ଶ �IRU� JHQHUDWLQJ� WKH� FRPPXQLFDWLRQ� NH\�� %6� DVVLJQV� s'� SRO\QRPLDOV� VKDUHV� WR� LW� ZKHUH� s'>>>n.���
E. Key relative information stored in the nodes 7KH��VHQVRU�QRGHV�VWRUH�WKH�NH\V�DORQJ�ZLWK�WKHLU�LGHQWLILHUV��$� SRO\QRPLDO� NH\� ULQJ� LV� DOVR� VWRUHG� LQ� WKH� QRGHV� DORQJ� ZLWK� WKHLU� LGHQWLILHUV� >��@�� � 7KH� QRGH� LGHQWLILHU�� KDVK� IXQFWLRQ� DQG� WKH�LQWHJHU�GHQRWLQJ�WKH�QXPEHU�RI�WLPHV�WKH�NH\V�DUH�KDVKHG� DUH��DOVR�VWRUHG��7KH�NH\�ULQJ�RI�D�QRGH�FRQWDLQV�D�PL[WXUH�RI� RULJLQDO�DQG�GHULYDWLYH�NH\V�DV�JLYHQ�EHORZ�� ��� ܴܭ � �^݄ଶ ሺ݇ଵ ሻ��݄ଷ ሺ݇ସ ሻ�����݄ ሺ݇ ሻ`� � ZKHUH�ܴܭ ��VWDQGV�IRU�WKH�NH\�ULQJ�RI�QRGH�݊ ��� ݄ ሺ݇ ሻ�LV� WKH� GHULYDWLYH� YHUVLRQ� RI� WKH� NH\�݇ �ZLWK� ,'� r ZLWK�KDVKHG�YDOXH l.� ���� )���Establishment of the pair-wise key between MN and FN $IWHU� WKH� GHSOR\PHQW� RI� WKH� VHQVRU� QRGHV� LQ� WKH� QHWZRUN�� WKH� QRGHV�LPPHGLDWHO\�VWDUWV�HVWDEOLVKLQJ�WKH�SDLU�ZLVH�NH\��,Q�WKH� LQLWLDOL]DWLRQ� SKDVH�� WKH� QRGHV� EURDGFDVW� WKHLU� NH\� UHODWHG� LQIRUPDWLRQ� WR� RWKHU� QRGHV�� 7KH� 01� VHOHFWV� WKH� PRVW� DSSURSULDWH�)1�LQ�LWV�UDGLR�FRYHUDJH�EDVHG�RQ�VLJQDO�VWUHQJWK�� EDQGZLGWK�DQG�DYDLODELOLW\�>��@��7KH�01V�EURDGFDVW�WKHLU�QRGH� LGHQWLILHU�DQG�WKH�l�YDOXH��7KH�)1�ILUVW�FRPSDUHV�WKH�1RGH�LG�WR� LWV�RZQ�VWRUHG�LGV��$IWHU�YHULI\LQJ�WKH�DXWKHQWLFLW\�RI�WKH�01�� )1�FRPSDUHV�WKH�NH\�LGV�DQG�SRO\QRPLDOV�LGV�ZLWK�LWV�RZQ�LGV�� WKH� QRGHV� VWDUW� WR� HVWDEOLVK� WKH� DXWKHQWLFDWLRQ� NH\�� )RU� WKH� VKDUHG� NH\� HVWDEOLVKPHQW�� DW�OHDVW� RQH� NH\�LG� VKRXOG� EH� FRPPRQ�EHWZHHQ�WKH�QHLJKERULQJ�QRGHV��,I�WKHUH�LV�QR�PDWFK�� WKH�QRGHV�RSW�IRU�SDWK�NH\�HVWDEOLVKPHQW��7KLV�LV�H[SODLQHG�LQ� GHWDLO�LQ�ODWHU�VHFWLRQV��)RU�H[DPSOH��OHW�WKH�NH\�ULQJ�RI�QRGH�u�� DQG� v EH�݇௨ ={�݄ଶ ሺ݇ଵ ሻǡ� ݄ଶ ሺ݇ଽ ሻǡ ݄ଵ ሺ݇ଵଵ ሻሽ DQG�݇௩ = {�݄ଶ ሺ݇ଶ ሻǡ� ଼݄ ሺ଼݇ ሻǡ ݄ଵ ሺ݇ଽ ሻሽ UHVSHFWLYHO\�� 7KHQ�� �݇ଽ �EH� WKH� FRPPRQ� NH\�� EHWZHHQ� QRGH� u� DQG� v� LQ� WKH� QHWZRUN�� WKH\� ZLOO� HVWDEOLVK� WKH� NH\�DV�IROORZV��� kuv
� ݄ଶ ሺ݇ଽ ሻǡ��kvu
�(h( ݄ଵ ሺ݇ଽ ሻ)
� 1) Shared key discovery phase 7KH�VKDUHG�NH\�GLVFRYHU\�VWDUWV�ZLWK�01�DXWKHQWLFDWLRQ�E\�WKH� )1��$IWHU�WKDW��WKH�FRPPXQLFDWLRQ�NH\�LV�JHQHUDWHG�E\�)1�DQG� LV�VHQW�WR�01�� � a) MN authentication phase and generation of encryption key: 7KH� DXWKHQWLFDWLRQ� SURFHVV� VWDUWV� ZLWK� WKH� UHTXHVW� PHVVDJH� E\� 01� E\� VHQGLQJ� LWV� LG� WR� )1�� $IWHU� UHFHLYLQJ�01�LG��)1�PDWFKHV�WKH�NH\�LGV�RI�01�ZLWK� LWV� RZQ� NH\� LGHQWLILHU� OLVW� WR� YHULI\� LWV� DXWKHQWLFLW\� DORQJ�ZLWK�PDWFKLQJ�RI�SRO\QRPLDO�VKDUHV��,I��WKHUH�LV� QR�NH\�PDWFK��WKHQ�)1�UHTXHVW�%6�IRU�HQFU\SWLRQ�NH\� �݇ �DORQJ�ZLWK�NH\�LGV�XVHG�IRU�JHQHUDWLQJ�LW��,I�WKHUH� LV�PDWFK�RI�NH\�DQG�SRO\QRPLDO�VKDUH��WKH�HQFU\SWLRQ�
NH\�LV�HVWDEOLVKHG�EHWZHHQ�WKHP��$IWHU�FRQFDWHQDWLQJ� WKH� FRPPRQ� NH\V� DQG� SRO\QRPLDO� VKDUHV�� WKH� )1� JHQHUDWHV� D� DXWKHQWLFDWLRQ� QRQFH�� HQFU\SW� LW� ZLWK� WKH� QHZO\�JHQHUDWHG�HQFU\SWLRQ�NH\�DQG�VHQG�WR�WKH�01�� :KHQ� 01� UHFHLYH� WKH� PHVVDJH�� LW� FDQ� JHQHUDWH� WKH� HQFU\SWLRQ� NH\� DV� WKH� LGHQWLILHUV� RI� NH\� DQG� SRO\QRPLDO� VKDUHV� XVHG� WR� FRPSXWH� WKH� HQFU\SWLRQ� NH\� DUH� DOVR� VHQW� WR� 01�� ,Q� WKLV� ZD\�� LW� JHWV� WKH� DXWKHQWLFDWLRQ�QRQFH�DQG�SURFHHGV�WR�QH[W�VWDJH�WR�WKH� JHQHUDWLRQ� RI� WKH� FRPPXQLFDWLRQ� NH\�� 7KH� GHWDLOHG� DOJRULWKP� RI� FRPSXWDWLRQ� RI� WKH� DXWKHQWLFDWLRQ� NH\� HVWDEOLVKPHQW� EHWZHHQ� )1� DQG� 01� LV� JLYHQ� E\� DOJRULWKP� ��� ,I� WKH� $OJRULWKP�� WDNHV� XQVRUWHG� OLVW� RI� NH\� LGHQWLILHUV� WKH� FRPSOH[LW\� RI� DXWKHQWLFDWLRQ� DOJRULWKP�LV�O�݊ଶ �RWKHUZLVH�LW�LV�2�n .� � Algorithm 1: Algorithm to compute the authentication key between FN and MN in the proposed scheme 1. Input�� ܦܫெே �� ܦܫோሺெேሻ� � � ܦܫோሺிேሻ � ܦܫிே �� ܦܫோሺிேሻ �� ܦܫோሺிேሻ� ǡ �Hash function, l 2. Output��ܭሺிேିெேሻ� 3. 1RGH MN �EURDGFDVW�WKH�PHVVDJHV�WR�FN 4. 1RGH�01� → ���hello�^�ܦܫெே� ǡ ݈ }� 5. If���ܦܫோሺெேሻ� � ∩ �ܦܫோሺிேሻ� ሻ�� ��� ������$VNV� WKH� %6� IRU� WKH�ܭሺிேିெேሻ� �DQG� VHQGV� WR� 01� DORQJ� ZLWK�NH\�LGV�� 6. If���ܦܫோሺெேሻ� � ∩ �ܦܫோሺிேሻ� ሻ�� ��� If�ܦܫோሺெேሻ � ∩ �ܦܫோሺிேሻ� �� �����������������������3URFHHG�WR�NH\�HVWDEOLVKPHQW� ������������������������HOVH�*R�WR�VWHS���� 7. If���ܦܫோሺெேሻ� � ∩ �ܦܫோሺிேሻ� ሻ�� �\� If�ܦܫோሺெேሻ � ∩ �ܦܫோሺிேሻ� �� �����������������������3URFHHG�WR�NH\�HVWDEOLVKPHQW� ������������������������HOVH�*R�WR�VWHS���� 8. end if 9 end if ����10 ��k= hl ሺ�݇ଵ� �__�hl ሺ�݇ଶ� �__�hl ሺ�݇௬� �� �����������݇� �݂� �ܦܫሺெேሻ� ǡ ܦܫሺிேሻ� ሻ� ܭሺିሻ �hash ��N�__��݇� � 11 end if� ��12 return ܭሺିሻ �
b) Communication key generation phase: 7R�JHQHUDWH�WKH�FRPPXQLFDWLRQ�NH\�EHWZHHQ�WKH�)1� DQG�01��WKH�)1�VHOHFWV�ܿ݁݀ଵ IURP�NH\�ULQJ��݇ݎଵ �DQG� ܿ݁݀ଶ IURP� WKH� NH\� ULQJ� � ݇ݎଶ �DQG� JHQHUDWH� ݇ � DV� IROORZV�� � ݇ ܿ݁݀ଵ ���y�MOD�ܿ݁݀ଶ �� ZKHUH�y�LV�QXPEHU�WKH�FRPPRQ�NH\�LGV�� � $IWHU� JHQHUDWLQJ� WKH� FRPPXQLFDWLRQ� NH\�� LW� HQFU\SW� WKH�FRPPXQLFDWLRQ�NH\�݇ �XVLQJ�SUHYLRXVO\�JHQHUDWHG� HQFU\SWLRQ�NH\�݇ �DQG�VHQG�LW�WR�WKH�01��$V�WKH�01� KDV� DOUHDG\� FRPSXWHG� WKH� HQFU\SWLRQ� NH\�� LW� FDQ�
���
�����)RXUWK�,QWHUQDWLRQDO�&RQIHUHQFH�RQ�3DUDOOHO��'LVWULEXWHG�DQG�*ULG�&RPSXWLQJ��3'*&
�
Algorithm 2: Algorithm to compute the communication key between FN and MN in the proposed scheme ͳǤ Input� ܭሺிேିெேሻ� , ܿ݁݀ଵ ,�ܿ݁݀ଶ , y ʹǤ Output���ܭሺிேିெேሻ� ͵Ǥ ������݇ ܿ݁݀ଵ �y�MOD�ܿ݁݀ଶ ͶǤ �����(QFU\SW�LW�E\� ୣ ��DQG�VHQG�WR�01 �
,9�� 3(5)250$1&(�$1$/�����@�� :H� GHDO� WKH� FRPSURPLVH�RI�WKH�HQFU\SWLRQ�NH\�RQO\�EHFDXVH�WKH�FDSWXULQJ� RI� WKH� HQFU\SWLRQ� NH\� OHDGV� WR� FRPSURPLVH� RI� WKH� FRPPXQLFDWLRQ�NH\���,W�LV�JLYHQ�DV�� ���� ௫ �� � ܲሺுாீሻ � � ������� ሻ � ଶ�
� � �������ܴ ������ ����σ௧ୀ ሺ݆ሻ� ��
ZKHUH�p (j)� �� §¨ x ·¸ § n · � § � − n · ¸ ¨ j ¸ ¨© P ¸¹ ¨© P ¹ © ¹
7KXV�� WKH� ILQDO� SUREDELOLW\� RI� NH\� FRPSURPLVH� ܲሺிሻ � IURP� (TV���� �DQG��� �LV�DV�IROORZV�� � ܲሺிሻ �ܲሺுாீሻ ��ܴ ������������������������������������������������������������� ������������������� � � ZKHUH�ܲሺுாீሻ �LV� WKH� SUREDELOLW\� RI� DGGLWLRQDO� FRPSURPLVHG� OLQNV�GXH�WR�KDVKHG�(*�VFKHPH� �������ܴ �LV� WKH� SUREDELOLW\� RI� NH\� FRPSURPLVH� GXH� WR� SRO\QRPLDO�SRRO�NH\�GLVWULEXWLRQ�VFKHPH� ������x�LV�QXPEHU�RI�FRPSURPLVHG�QRGHV� ������ܣ �LV�WKH�DXWKHQWLFDWLRQ�NH\�SRRO� ������3 �LV�WKH�SRO\QRPLDO�SRRO� ����� m�LV�NH\�ULQJ� ������n�LV�WKH�SRO\QRPLDO�ULQJ� � � 9��
6,08/$7,21�
:H� KDYH� DQDO\]HG� WKH� SHUIRUPDQFH� RI� WKH� SURSRVHG� VFKHPHV� XVLQJ� &���EDVHG�VLPXODWRU� VHWXS��� ,Q� WKLV� H[SHULPHQW� VHW��WKH� VL]H�RI�WKH�NH\�SRRO�LV�WDNHQ�DV�������WKH�NH\�ULQJ�VL]H�RI�01� LV�DVVXPHG�WR�EH����WKH�GHJUHH�RI�SRO\QRPLDO�VKDUH��t�HTXDOV�WR� �����WKH�YDOXH�RI�WKH�SRO\QRPLDO�SRRO�ܲԢ�LV�WDNHQ�IURP�WKH�VHW� ^������`��7KH�QXPEHU�RI�FDSWXUHG�QRGHV�x�DUH�WDNHQ�IURP�WKH� VHW�^�������������������������������������������������`��� �
Key ring size
HDVLO\� GHFU\SW� WKH� PHVVDJH� VHQW� E\� )1� DQG� JHW� WKH� FRPPXQLFDWLRQ� NH\�� 7KH� GHWDLOHG� DOJRULWKP� RI� FRPSXWDWLRQ�RI�WKH�FRPPXQLFDWLRQ�NH\�HVWDEOLVKPHQW� EHWZHHQ�)1�DQG�01�LV�JLYHQ�E\�DOJRULWKP���� �
45 40 35 30 25 20 15 10 5 0
EG scheme Proposed scheme
0.999895
0.9999877
0.999999
Key connectivity )LJ�����7KH�NH\�ULQJ�VL]H�UHTXLUHG�E\�WKH�GLIIHUHQW�NH\�SUHGLVWULEXWLRQ�VFKHPHV� XQGHU�D�JLYHQ�NH\�FRQQHFWLYLW\�DQG�NH\�SRRO�VL]H��
�
� 7KH�ILJ����GHSLFWV�WKH�VWRUDJH�UHTXLUHPHQWV�RI�(*�VFKHPH�DQG� WKH� SURSRVHG� VFKHPH�� 7R� PDLQWDLQ� WKH� VDPH� NH\� FRQQHFWLYLW\� OHYHO�� WKH�SURSRVHG� VFKHPH� UHTXLUHV� OHVVHU�QXPEHU�RI�NH\V� LQ� 01V�� 7KLV� LV� GXH� WR� DV\PPHWULF� NH\� SUHGLVWULEXWLRQ�� 7KXV�� VLJQLILFDQW� VWRUDJH� VDYLQJ� LV� JDLQHG� RQ� WKH� 01V� DORQJ� ZLWK� LQFUHDVHG�YDOXH�RI�UHVLOLHQFH�DJDLQVW�QRGH�FDSWXUH��� �
��� � ௫ି
��
�
���
�����)RXUWK�,QWHUQDWLRQDO�&RQIHUHQFH�RQ�3DUDOOHO��'LVWULEXWHG�DQG�*ULG�&RPSXWLQJ��3'*&
Additional compromised links
1.2
Effect of variation in key ring size on the probability of key compromise
1
1.5
EG scheme
0.8
Shan scheme
1
0.6
0.5
0.4
Zhang scheme (22)
0.2
Proposed scheme (14)
0 2
Proposed scheme (22)
0
�
)LJ�� ��� 7KH� H[SHULPHQW� UHVXOW� IRU� WKH� IUDFWLRQ� RI� DGGLWLRQDO� FRPSURPLVHG� OLQNV�RI�GLIIHUHQW�NH\�SUHGLVWULEXWLRQ�VFKHPHV�
� ,Q� ILJ�� ��� LW� LV� VKRZQ� WKDW� WKH� SURSRVHG� VFKHPH� KDV� OHDVW� QXPEHU�RI�DGGLWLRQDO�FRPSURPLVHG�OLQNV�DV�FRPSDUHG�WR�RWKHU� VFKHPHV�ZKHQ�QXPEHU�RI�FDSWXUHG�QRGHV�DUH�NHSW�VDPH��7KLV� LV�GXH�WR�WKH�KDVK�FKDLQ�DSSURDFK�WKDW�UHGXFHV�WKH�SUREDELOLW\� RI� NH\� FRPSURPLVH�� 7KH� SURSRVHG� VFKHPH� DOVR� FRPELQHV� WKH� SRO\QRPLDO� VFKHPH� DQG� SUREDELOLVWLF� NH\� PDQDJHPHQW� VFKHPHV�ZKLFK�SURYLGH�PRUH�UHVLVWDQFH�DJDLQVW�QRGH�FDSWXUH�� ,I� ZH� LQFUHDVH� WKH� NH\� SRRO� VL]H� NHHSLQJ� RWKHU� SDUDPHWHUV� VDPH�� WKH� SUREDELOLW\� RI� NH\� FRPSURPLVH� GHFUHDVHV�� 7KH� QXPEHU� RI� FDSWXUHG� QRGHV� KDV� D� GLUHFW� LQIOXHQFH� RQ� WKH� SUREDELOLW\�RI�NH\�FRPSURPLVH��/DUJHU�QRGHV�ZLOO�UHYHDO�ODUJHU� IUDFWLRQ� RI� NH\V� WR� DQ� DGYHUVDU\�� WKXV� ORZHULQJ� WKH� UHVLOLHQFH� RI�WKH�VFKHPH�� � 1.20E+00 1.00E+00 8.00E-01 Zhang scheme (P' =14)
6.00E-01
5
10
Number of keys in node
100 200 300 400 500 600 700 800 900 1000
Number of captured nodes
Probability of key compromise
Proposed scheme
Zhang scheme (14)
�
)LJ�� ��� 7KH� HIIHFW� RI� WKH� YDULDWLRQ� LQ� NH\� ULQJ� VL]H� RQ� WKH� SUREDELOLW\� RI� NH\� FRPSURPLVH�RI�WKH�SURSRVHG�VFKHPH��
� 7R�SORW�WKH�JUDSK�RI�ILJ����ZH�KDYH�WDNHQ�WKH�IROORZLQJ�YDOXHV�� [ ������P� ^������`��ܣ � �������W �����Q ���S ����:KHQ�WKH� QXPEHU� RI� NH\V� VWRUHG� LQ� WKH� QRGH� JHW� LQFUHDVHG�� WKH� SUREDELOLW\�RI�NH\�FRPSURPLVH�DOVR�LQFUHDVHV��/DUJHU�NH\�ULQJ� UHYHDO�PRUH�LQIRUPDWLRQ�ZKLFK�PDNHV�WKH�DGYHUVDU\�WR�REWDLQ� ODUJHU�IUDFWLRQ�RI�WKH�NH\�SRRO��� � 9,��
&21&/86,21�
7KH� QRGH� FDSWXUH� DWWDFN� LV� RQH� RI� WKH� SURPLQHQW� DWWDFNV� LQ� ZLUHOHVV� VHQVRU� QHWZRUN� �:61 � VHFXULW\�� 7KLV� SDSHU� IRFXVHV� RQ� PLQLPL]LQJ� WKH� DIIHFW� RI� QRGH� FDSWXUH� DWWDFN� RQ� WKH� SHUIRUPDQFH� RI� NH\� PDQDJHPHQW� VFKHPH�� 7KH� SURSRVHG� K\EULG� WHFKQLTXH� LV� EDVHG� RQ� KDVK� FKDLQLQJ� WR� UHGXFH� WKH� SUREDELOLW\� RI� NH\� FRPSURPLVH�� ,W� LV� VKRZQ� WKDW� WR� PDLQWDLQ� WKH� VDPH� NH\� FRQQHFWLYLW\�� WKH� SURSRVHG� VFKHPH� UHTXLUHV� OHVVHU�NH\�ULQJ�VL]H�DV�FRPSDUHG�WR�RWKHU�VFKHPHV��7KH�UHVXOWV� DOVR�FRQILUP�WKDW�RXU�SURSRVHG�VFKHPH�SURYLGHV�EHWWHU�VHFXULW\� DJDLQVW�QRGH�FDSWXUH�LQ�WHUPV�RI�WKH�OHDVW�QXPEHU�RI�DGGLWLRQDO� FRPSURPLVHG�OLQNV���
Zhang scheme ( P'= 22)
4.00E-01
5()(5(1&(6�
Proposed scheme (P' = 14)
2.00E-01
Proposed scheme (P' = 22)
0.00E+00 100
200
300
400
500
600
700
800
Number of compromised nodes
900
1000
�
)LJ�� ��� 7KH� HIIHFW� RI� WKH� SRO\QRPLDO� SRRO� VL]H� RQ� WKH� SUREDELOLW\� RI� NH\� FRPSURPLVH�RI�WKH�SURSRVHG�VFKHPH��
� 7KH�HIIHFW�RI�WKH�YDULDWLRQ�LQ�WKH�SRO\QRPLDO�SRRO�VL]H�RQ�WKH� QXPEHU� RI� DGGLWLRQDO� FRPSURPLVHG� OLQNV� DQG� KHQFH�� WKH� SUREDELOLW\� RI� NH\� FRPSURPLVH� RI� WKH� SURSRVHG� VFKHPH� LV� GHSLFWHG� E\� ILJ�� ��� :H� ILQG� WKDW� WKHUH� LV� LQYHUVH� UHODWLRQVKLS� EHWZHHQ� SRRO� VL]H� DQG� SUREDELOLW\� RI� NH\� FRPSURPLVH�� ,I� ZH� LQFUHDVH�WKH�SRRO�VL]H�3 �IURP����WR�����WKHUH�LV�VKDUS�GHFUHDVH� LQ�SUREDELOLW\�RI�NH\�FRPSURPLVH��� �
>�@� ,�)��$N\LOGL]��:��6X���@� -�� =KDQJ�� 9�� 9DUDGKDUDMDQ�� �:LUHOHVV� VHQVRU� QHWZRUN� NH\� PDQDJHPHQW� VXUYH\�DQG�WD[RQRP\���J. of Network and Comput. Applicat.�YRO�����SS�� ������������� >�@� 0�/�0HVVDL�� +�� 6HED�� �$� VXUYH\� RI� NH\� PDQDJHPHQW� VFKHPHV� LQ� PXOWLSKDVH� ZLUHOHVV� VHQVRU� QHWZRUNV��� Comput. Networks�� ����� ������� ������ >�@� /�� (VFKHQDXHU�� 9�� *OLJRU�� �$� NH\�PDQDJHPHQW� VFKHPH� IRU� GLVWULEXWHG� VHQVRU�QHWZRUNV�" Proceedings of 9th ACM Conference on Comput. and Commun. Security��SS����±���������� >�@� +��&KDQ��$��3HUULJ��'��6RQJ���5DQGRP�NH\�SUHGLVWULEXWLRQ�VFKHPHV�IRU� VHQVRU� QHWZRUNV��� Proceedings of 2003 IEEE Symposium on Security and Privacy��&DOLIRUQLD��86$��������SS�����±����� >�@� &��%OXQGR��$�'��6DQWLV��$��+HU]EHUJ��6��.XWWHQ��8��9DFFDUR��0���@� '��/LQJ��3��1LQJ��:��'X���*URXS�EDVHG�NH\�SUH�GLVWULEXWLRQ�IRU�ZLUHOHVV� VHQVRU�QHWZRUNV���ACM trans. on sensor networks, TOSN�YRO����SS����� ���������� >�@� '�� /LX�� 3�� 1LQJ�� �(VWDEOLVKLQJ� SDLUZLVH� NH\V� LQ� GLVWULEXWHG� VHQVRU� QHWZRUNV��� Proceedings of 10th ACM CCS,� :DVKLQJWRQ�� '&�� 2FWREHU� ������
���
�����)RXUWK�,QWHUQDWLRQDO�&RQIHUHQFH�RQ�3DUDOOHO��'LVWULEXWHG�DQG�*ULG�&RPSXWLQJ��3'*& >��@� ��@� ��@� ;�� 'X�� ��@� %��4LX��;�&KHQ��4�:X���$�NH\�GHVLJQ�WR�SURORQJ�WKH�OLIHWLPH�RI�ZLUHOHVV� VHQVRU�QHWZRUNV���Chaos Solitans and Fractels��SS������������� >��@� 7�+�� 6KDQ�� &�0�� /LX�� �(QKDQFLQJ� WKH� NH\� SUHGLVWULEXWLRQ� VFKHPH� RQ� ZLUHOHVV� VHQVRU� QHWZRUNV��� Proceedings of IEEE Asia Pacific Services Computing Conference��SS�������������������
� �
���
