Jianqing Fu,Xiaoning Jiang,Lingdi Ping,Rong Fan

DOI: https://doi.org/10.1109/icime.2009.14

2009-01-01

Abstract:In this paper, we identify a vulnerability of IEEE 802.11 wireless Mesh LANs in which a compromised mesh point can still receive data from other mesh points. Then we propose a new protocol that can counter this attack by considering the effective period of both the mesh points (MPs) when decide the lifetime of the key shared between them. We also amend 802.11s draft in order not to bring about a fundamental change to the whole key hierarchy, and propose a protocol to refresh the shared key when it expired. Then we prove the security of the protocol using protocol composition logic (PCL).

Ruixue Sun,Zhiguo Shi,Rongxing Lu,Jian Qiao,Xuemin (Sherman) Shen

DOI: https://doi.org/10.1109/WCSP.2012.6542795

2012-01-01

Abstract:The 60 GHz ultra-high-speed Wireless Personal Area Network (WPAN) has received considerable attention in recent years. Information security, which ensures secure communication within the network, is of particular importance. In this paper, we propose an efficient lightweight key management scheme for 60 GHz WPAN, which deploys secure encryption algorithms and one-way hash function to achieve efficient key exchange and updating managements. Detailed security analysis has shown its security provisions. In addition, performance evaluation is also provided to demonstrate its efficiency in terms of session key distribution and group key updating.

C Zhang,B Decleene,J Kurose,D Towsley

DOI: https://doi.org/10.1016/S0166-5316(02)00120-7

IF: 2.205

2002-01-01

Performance Evaluation

Abstract:Many emerging mobile wireless applications depend upon secure group communications, in which data is encrypted and the group's data encryption key is changed whenever a member joins or leaves the group's session. Hierarchical approaches have recently been proposed to manage the distribution of the data encryption key in a scalable manner for fixed (non-mobile) networks. In this paper, we characterize the impact of mobility on secure rekeying of group communication in a hierarchical key-distribution framework. We propose several rekeying algorithms that preserve confidentiality as members move within the hierarchy. The algorithms differ in the locality of communication, the amount of messages needed to rekey the data key/key-encryption key, the key-encryption key rekey rate, and the number of key-encryption keys held by group members. We develop Markov models to quantify the performance of the proposed algorithms. Our results shows that the FEDRP and SR inter-area rekeying algorithms are superior under different circumstances. In the situation of lower arrival rate and higher mobility, SR has the lowest intra-AS message rate, rekey rate and a low inter-AS message rate. On the other hand, with higher arrival rate and lower mobility, FEDRP has a low rekey rate, inter-AS message rate and the lowest intra-AS message rate. This is achieved by allowing members to hold a small number of keys. In a wireless environment, where bandwidth is often a limiting resource, minimization of communication overhead is of critical importance. This goal could be achieved by using a dynamic strategy to combine the benefits of FEDRP and SR algorithms. (C) 2002 Elsevier Science B.V. All rights reserved.

Hung-Min Sun,Shih-Ying Chang,Shuai-Min Chen,Chien-Chien Chiu

DOI: https://doi.org/10.1109/apscc.2008.100

2008-01-01

Abstract:Mobile WiMAX (IEEE 802.16e) is an emerging technology for wireless broadband access network. It provides wider converge and higher bandwidth than conventional wireless technologies. Multicast and Broadcast (M&B) in WiMAX are suitable for multimedia applications such as Pay-TV system because multimedia providers can efficiently distribute the same contents to the users within the same M&B group. Although IEEE 802.16e has defined Multicast/Broadcast Rekeying Algorithm (MBRA) to secure M&B, recent research indicates that MBRA is insecure. In this paper, we propose an efficient rekeying scheme which depends on Linear Ordering of Receivers (LORE) to protect M&B group communication. Our scheme requires O(1) messages for rekeying and addresses the security problem of MBRA. Therefore, our rekeying scheme is suitable for protecting large dynamic groups such as M&B groups.

Yiliang Han,Xiaolin Gui

DOI: https://doi.org/10.1002/dac.1023

2009-01-01

International Journal of Communication Systems

Abstract:Secure multicast is one of the majority services in the near future. The frameworks for IP multicast cannot be directly applied in wireless networks. To address the natural issues of wireless multicast and enhance the efficiency, an adaptive secure multicast framework based on a new primitive called multi-recipient generalized signcryption and a multi-recipient generalized signcryption scheme based on the gap Diffie–Hellman problem (MGSC-GDH) are proposed. The key technologies to construct a high-performance adaptive scheme including identification function, randomness reusing are investigated. The framework provides separate or joint encryption and signature functions according to users' identities and requirements transparently, and has the ability to aggregate multiple unicast besides the common multicast service. Therefore, overheads are reduced sharply for multiple functions which are provided with a single primitive. By the precise reduction, the gap-bridge between the security of a base scheme and the corresponding multi-recipient generalized signcryption scheme is built, which is a direct measure to quantify the security. Analysis shows that MGSC-GDH is a semantic secure multi-recipient generalized signcryption scheme and more efficient than other similar schemes in computational and communicational aspects. It is suitable for dynamic environment for rekeying is avoided when membership changes. Copyright © 2009 John Wiley & Sons, Ltd. Proposed a framework of adaptive secure multicast framework for wireless networks based on the proposed primitive multi-recipient generalized signcryption firstly. The framework provides separate or joint privacy and authenticity according to users' identities and requirements transparently, and has the ability to aggregate multiple unicast besides the common multicast service. Then designed a practical scheme called MGSC-GDH, which is semantic secure and more efficient than other similar schemes in computational and communicational aspects. Copyright © 2009 John Wiley & Sons, Ltd.

LI Huijie,HOU Liming,LIN Xiaokang

DOI: https://doi.org/10.3321/j.issn:1000-0054.2008.01.020

2008-01-01

Abstract:IEEE 802.16e supports multicast and broadcast services,with a multicast and broadcast rekeying algorithm(MBRA) defined to maintain and manage the multicast keys.In order to provide forward and backward secrecy for secure multicast services and to improve the scalability of the multicast key management algorithm,the MBRA is modified and optimized based on the group key management protocol(GKMP),and an adaptive wireless multicast key grouping management algorithm is proposed.For real networks,the algorithm combines two grouping schemes and divides the multicast members into subgroups with an approximately optimized mechanism.Theoretical analyses and simulation results show that the algorithm significantly reduces key updating communication costs in the multicast service and improves the network capacity.

Danyang QIN,Renheng XU,Lin MA,Qun DING

2013-01-01

Abstract:Wireless multihop communication network is an important part of modern communication network, because of its flexible forms of networking, not relying on any fixed infrastructure to achieve network connectivity and data transfer, but through the mobile nodes' collaboration and self-organization. The negative impact of network partitions on the availability of key management services in wireless multihop communication network will be alleviated by a robust key management scheme based on the traditional distributed certificate authority (DCA) proposed in this paper. Auxiliary shares are used to increase the redundancy of shares in the networks thereby ensuring robustness and security at the same time. Simulating results show that the average failure ratio for DCA requests is reduced by more than 5 %, and the successful rate of establishing secure link is greatly improved. Security analysis and simulations show that the approach ensures system robustness and thwarts common attacks.

D. SuganyaDevi,G. Padmavathi,G.Padmavathi

DOI: https://doi.org/10.48550/arXiv.1003.1799

2010-03-09

Cryptography and Security

Abstract:Many emerging applications in mobile adhoc networks involve group-oriented communication. Multicast is an efficient way of supporting group oriented applications, mainly in mobile environment with limited bandwidth and limited power. For using such applications in an adversarial environment as military, it is necessary to provide secure multicast communication. Key management is the fundamental challenge in designing secure multicast communications. In many multicast interactions, new member can join and current members can leave at any time and existing members must communicate securely using multicast key distribution within constrained energy for mobile adhoc networks. This has to overcome the challenging element of "1 affects n" problem which is due to high dynamicity of groups. Thus this paper shows the specific challenges towards multicast key management protocols for securing multicast key distribution in mobile ad hoc networks, and present relevant multicast key management protocols in mobile ad hoc networks. A comparison is done against some pertinent performance criteria.

Gang Yao,Kui Ren,Feng Bao,Robert H. Deng,Dengguo Feng

DOI: https://doi.org/10.1007/978-3-540-45203-4_27

2003-01-01

Abstract:Mobile ad hoc networks offer convenient infrastructureless communications over the shared wireless channel. However, the nature of mobile ad hoc networks makes them vulnerable to security attacks, such as passive eavesdropping over the wireless channel and denial of service attacks by malicious nodes. To ensure the security, several cryptography protocols are implemented. Due to the resource scarcity in mobile ad hoc networks, the protocols must be communication efficient and need as less computational power as possible. Broadcast communication is an important operation for many application in mobile ad hoc networks. To securely broadcast a message, all the members in the network need share a group key so that they can use efficient symmetric encryption, such as DES and AES. Several group key management protocols have been proposed. However, not all of them are communication efficient when applied to mobile ad hoc networks. In this paper, we propose a hierarchical key agreement protocol that is communication efficient to mobile ad hoc networks. We also show how to manage the group efficiently in a mobile environment.

XU Chuan,LIU Yuan

DOI: https://doi.org/10.3969/j.issn.1000-3428.2011.08.004

2011-01-01

Abstract:Based on a combination of elliptic curve cryptography Combined Public Key(CPK) technology and using self-certification approach identifies,the paper proposes a new authentication protocol,which applies to Wireless Mesh Networks(WMNs) roaming scenarios and supports large scale application.Analysis results show that this protocol completes mutual authentication and establishes a shared key with fewer interact times,and it proves Universally Composable security(UC).

Binglai Niu,Hai Jiang,H. Vicky Zhao

DOI: https://doi.org/10.1109/tvt.2010.2046431

IF: 6.8

2010-01-01

IEEE Transactions on Vehicular Technology

Abstract:Multicast is a bandwidth-efficient mechanism to provide wireless services for a group of terminals. Providing reliable wireless multicast is challenging due to packet loss and channel fading. In this research, we investigate the medium-access-control (MAC) layer cooperation to enhance the reliability of wireless multicast. We show that the optimal relaying strategy is a pure threshold policy, i.e., the optimal number of relays is bounded by a threshold. We also propose a simple and efficient algorithm to find the optimal time allocation for the direct and relay transmissions.

xueping wang,abdulhadi shoufan,sorin a huss

DOI: https://doi.org/10.1115/1.859681.paper20

2010-01-01

Abstract:Group rekeying in secure multicast poses a scalability problem which can be solved by batch processing of join and disjoin requests. Batch processing, however, results in a loss of quality of service in the join case and in a loss of access control in the disjoin case. In this paper, we present an approach for batch rekeying which keeps these losses of quality of service and access control within system-specific limits.

Xing Li

2002-01-01

Abstract:This paper considers the key management issue of secure group communication in a highly mobile networking environment. In such environment, there are frequent joining and leaving of members due to roaming or suspending for a period. Inorder to preserve forward and backward confidentiality, it is necessary to rekey every time a member joins or leaves. This paper introduces a new state-based group key management framework suitable for highly mobile environment. In this scheme, a member enters Park state when it is going to roam or suspend for a period, when it becomes active again, it send a request to the key server to get the current group key and changes its state to Active again. No rekeying is needed for a roaming, and reliable delivery of rekeying messages is not required for Park members. The scheme can notably reduce the communication overhead and provide an efficient method for error recovery.

Bashayer Othman Aloufi,Wajdi Alhakami

DOI: https://doi.org/10.3390/s23042015

2023-02-10

Abstract:Cognitive radio (CR) has emerged as one of the most investigated techniques in wireless networks. Research is ongoing in terms of this technology and its potential use. This technology relies on making full use of the unused spectrum to solve the problem of the spectrum shortage in wireless networks based on the excessive demand for spectrum use. While the wireless network technology node's range of applications in various sectors may have security drawbacks and issues leading to deteriorating the network, combining it with CR technology might enhance the network performance and improve its security. In order to enhance the performance of the wireless sensor networks (WSNs), a lightweight authentication medium access control (MAC) protocol for CR-WSNs that is highly compatible with current WSNs is proposed. Burrows-Abadi-Needham (BAN) logic is used to prove that the proposed protocol achieves secure and mutual authentication. The automated verification of internet security protocols and applications (AVISPA) simulation is used to simulate the system security of the proposed protocol and to provide formal verification. The result clearly shows that the proposed protocol is SAFE under the on-the-fly model-checker (OFMC) backend, which means the proposed protocol is immune to passive and active attacks such as man-in-the-middle (MITM) attacks and replay attacks. The performance of the proposed protocol is evaluated and compared with related protocols in terms of the computational cost, which is 0.01184 s. The proposed protocol provides higher security, which makes it more suitable for the CR-WSN environment and ensures its resistance against different types of attacks.

赵欣,吴敏强,陈道蓄,谢立

DOI: https://doi.org/10.3321/j.issn:0372-2112.2003.05.004

2003-01-01

Tien Tzu Hsueh Pao/Acta Electronica Sinica

Abstract:To make the multieast session secure, the multicast group needs to change the session key when the group member set changes. Batch re-keying mechanism, in which group leader latches up join/leave requests and serves them together after a period of time, is introduced to reduce the overhead of group re-keying. Fixed period cannot adapt to the dynamic nature of multicast session and may not be optimal all the time. An adaptive batch re-keying algorithm was presented, and it can adaptively determine the most appropriate time according to current request arrival pattern. Applications can change the parameters of the adaptive batching algorithm to meet their performance preference. Simulation results show that the adaptive algorithm achieves optimal performance point in various multicast scenarios.

B. Murugeshwari,R. Amirthavalli,C. Bharathi Sri,S. Neelavathy Pari

DOI: https://doi.org/10.48550/arXiv.2304.14652

2023-04-28

Cryptography and Security

Abstract:Since communication signals are publicly exposed while they transmit across space, Ad Hoc Networks (MANETs) are where secured communication is most crucial. Unfortunately, these systems are more open to intrusions that range from passive listening to aggressive spying. A Hybrid Team centric Re-Key Control Framework (HT-RCF) suggests that this research examines private group communication in Adhoc environments. Each group selects a Group Manager to oversee the group's members choose the group manager, and the suggested HT-RCF uses the Improved Hybrid Power-Aware Decentralized (I-HPAD) mechanism. The Key Distribution Center (KDC) generates the keys and distributes them to the group managers (GMs) using the base algorithm Rivest Shamir Adleman (RSA). The key agreement technique is investigated for safe user-user communication. Threats that aim to exploit a node are recognized and stopped using regular transmissions. The rekeying procedure is started every time a node enters and exits the network. The research findings demonstrate that the suggested approach outperforms the currently used Cluster-based Group Key Management in terms of power use, privacy level, storage use, and processing time.

Liu Zhiyuan,Fu Yalong

DOI: https://doi.org/10.3969/j.issn.1000-386x.2013.09.249

2013-01-01

Abstract:For the distributed collaborative applications deployed in an open network environment,in some circumstances the users participating in the application may join or leave a group consisting of multi-user at any time,such dynamic nature of membership leads to higher requirements and challenges in security of group communication system for collaborative applications in distributed network environment. Based on identity cryptography mechanism and threshold cryptography,a new secure distributed group key management scheme is proposed. The presented scheme can strongly resist active attacks and the coalition attacks from malicious adversaries,and with the features of robustness and adaptiveness.

Song Guo,An-Ni Shen,Minyi Guo

DOI: https://doi.org/10.1587/transinf.E93.D.421

2010-01-01

IEICE Transactions on Information and Systems

Abstract:Many applications of wireless sensor networks (WSNs) require secure group communications. The WSNs are normally operated in unattended, harsh, or hostile environment. The adversaries may easily compromise some sensor nodes and abuse their shared keys to inject false sensing reports or modify the reports sent by other nodes. Once a malicious node is detected, the group key should be renewed immediately for the network security. Some strategies have been proposed to develop the group rekeying protocol. but most of existing schemes are not suitable for sensor networks due to their high overhead and poor scalability. In this paper, we propose a new group rekeying protocol for hierarchical WSNs with renewable network devices. Compared with existing schemes, our rekeying method possesses the following features that are particularly beneficial to the resource-constrained large-scale WSNs: (I) robustness to the node capture attack. (2) reactive rekeying capability to malicious nodes, and (3) low communication and storage overhead.

Liang Zhao,Ahmed Al-Dubai,Xiaodong Liu

2008-01-01

Abstract:Wireless mesh networks, also known as "community wireless networks", have been attracting much attention due to its promising technology. It is becoming a major avenue for the fourth generation of wireless mobility. This is due to the revaluation of using basic radio frequency physics to provide a robust, flexible, standard-based architecture that offers instant mobile broadband communications to different communities. Communication in large-scale wireless networks can create bottlenecks for scalable implementations of computationally intensive applications. A class of crucially important communication patterns that have already received considerable attention in this regard are group communication operations, since these inevitably place a high demand on network bandwidth and have a consequent impact on algorithm execution times. Multicast communication has been among the most primitive group capabilities of any message passing network. It is central to many important distributed applications in Science and Engineering and fundamental to the implementation of higher-level communication operations such as gossip, gather, and barrier synchronisation. Existing solutions offered for providing multicast communications in WMN have severe restriction in terms of almost all performance characteristics. Consequently, there is a need for the design and analysis of new efficient multicast communication schemes for this promising network technology. Hence, the aim of this study is to tackle the challenges posed by the continuously growing need for delivering efficient multicast communication over WMN. In particular, this study presents new load balancing aware algorithms with the aim of enhancing the QoS in the multicast communication over WMNs.

Kui Ren,Wenjing Lou,Bo Zhu,Sushil Jajodia

DOI: https://doi.org/10.1109/TVT.2008.2003961

2009-01-01

Abstract:Multicast security is one of the most important security services in wireless sensor networks (WSNs) since it enables a sink to multicast messages to sensors in a secure manner. While multicast authentication has widely been addressed in the literature, the problem of multicast encryption still remains open in WSNs. In this paper, we propose a multicast encryption scheme called global-partition, local-diffusion (GPLD) that focuses on scheme efficiency and supports various multicast group semantics. GPLD partitions sensors into a series of elementary groups using their location and class information and accordingly builds a location-class-aware symmetric key management framework. Furthermore, the scheme leverages the fact that sensors are both end receivers and routers, which effectively minimizes global (sink-to-sensor) group key distribution and rekeying traffic while supporting various multicast group semantics. The efficiency and security properties of GPLD are justified through both analysis and simulations.