securityinwirelessactoresensornetworks-towardsahierarchicalre-keyingdesign - icit-cc05 - apr05

Security in Wireless Actor & Sensor Networks (WASN): Towards A Hierarchical Re-Keying Design Fei Hu 1 Xiaojun Cao 2 1: {[email protected]}, Computer Engineering, RIT, 83 Lomb Memorial Dr, Rochester, NY USA 2: {[email protected]}, Dept. of Information Technology, RIT, 102 Lomb Memorial Dr, Rochester, NY USA Abstract Our work aims to address the challenging security issues in an important information infrastructure – large-scale and low-energy Wireless Actuator and Sensor Networks (WASN). Since WASNs have specific network constraints and data transmission requirements compared to general ad hoc networks and other wireless/wired networks, the security issues need to be tackled accordingly. We  propose to seamlessly integrate WASN security with a promising routing architecture that is scalable and energy-efficient. To protect from active attacks in mobile sensor networks, we propose two-level re-keying/re-routing schemes that can not only adapt to a dynamic network topology but also securely update keys for each data transmission session. Moreover, to provide the security for the in- networking processing such as data aggregation in WASNs, we define a multiple-key management scheme in conjunction with the proposed Tree-Ripple-Zone (TRZ) routing architecture. Keywords – Homeland Security, Wireless Sensor and Actor networks (WASN), Hierarchical Routing A. Introduction ecently Wireless Sensor Networks (WSN) have attracted wide attentions in academia. A promising solution called Wireless Sensor and Actuator Networks (WSANs) has  been proposed to accomplish microclimate contril in buildings,  battlefield surveillance, attack detection for homeland security, environmental monitoring, and so on [3]. WSANs, which can  both detect and respond to intrusion and attacks promptly, have emerged as one of the most important technologies to implement the vision of a pervasive system that consists of nomadic computing (through wireless networking protocols) and smart spaces (th rou gh the coord ina tio n of sens ors an d actuators). In WSANs, sensing the environment and acting on the information gathered are the means by which the nodes interact with the physical world. A civilian application example is the wild fire handling: sensors relay the information about the exact origin and fire intensity to water sprinkler actuators so that the fire can be extinguished before spreading uncontrollably. Similarly, motion and light sensors in a room can detect the  presence of people and then direct the appropriate actuators to execute actions based on user pre-specified preferences. WSANs have some unique characteristics compared to WSNs (Wireless Senso r Networks) , such as real-time s ensing /acting, sensor / actor heterogeneity, and actuator mobility [2]. WSANs typically consist of large-scale low-energy tiny sensors and a small number of resource-rich actuators that are randomly distributed among sensors. Sensors send data to local actuator(s) instead of to a remote sink for real-time control. Compared to tiny sensors, actuators typically have higher power, more memory and stronger calculation capability in order to perform more complicated tasks such as interacting with remote sink [3]. While WSNs are concerned mainly about sensor-to-sensor interconnections, in WSANs four types of coordination need to  be considered in the same scenar io: actuator-to- actuator (A-A), sensor-to-sensor (S-S), actuator-to-sensor (A-S) (downlink), and sensor-to-actuator (S-A) (uplink). As pointed out in [3], even though a significant number of work has been done in WSN, very little research work has been conducted on WSANs that have the coexistence of actuators and large-scale low-energy sensors. There exist many challenging issues to be addressed in WSANs such as real-time A-S/S-A routing, A-A mobility management, and so on [2], however, the focus of this paper is to solve the issue of energy-efficient security in WSANs. In terms of WSN security issues , the pioneering work on secur ing WSN e nd-t o-end trans miss ion i s SPIN S [4,5] . However, it requires time synchronization among sensors. A key-pool scheme was suggested in [6] to guarantee that any two nodes share at le ast one pairwise key with a certain probability. Multiple pairwise keys may be found between nodes by the schemes proposed in [7-9]. Key pre-distribution schemes utilizing location information were described in [10-12]. Other WSN security research works include Denial-of-Service (DOS) attacks [13], routing security [14], group security [15], etc. The co mmon d rawb ack of the cu rren t WSN se curit y schemes is that they do not integrate security with a hierarchical low-energy routing architecture, which cannot be applied to WSANs effectively. In this paper, we will propose a low- energy, scalable WASN security scheme that has close integration with a two-level ripple-zone-based WASN routing architecture. Our goal is to ensure that data can be transmitted among actuators and sensors with desired security (i.e. overcoming network attacks such as eavesdropping and intrusion). To the best of our knowledge, this is the first attempt to solve the security issue that ari ses from the coordination of S- S, A-A and A-S/S-A communication. The rest of this paper is organized as follows. Section B introduces a hiera rchical scalable routing architec ture. Section C provides a detailed security implementation and cryptographic  procedure. We present performance analysis and simulation results in Section D and E. Finally, Section F concludes the  paper with a summary of its major contribution.

