Rong Fan,Lingdi Ping,JianQing Fu,Xuezeng Pan

DOI: https://doi.org/10.1109/PACCS.2010.5626600

2010-01-01

Abstract:As wireless sensor networks (WSNs) are susceptible to attacks and sensor nodes have limited resources, designing a secure and efficient user authentication protocol for WSNs is a difficult task. Considering that most future large-scale WSNs follow a two-tiered architecture, we propose an efficient and Denial-of-Service resistant user authentication scheme for two-tiered WSNs, which imposes very light computational load and requires simple operations such as one-way hash function and exclusive-OR operations. In addition, there is a growing requirement for preserving user anonymity recently. Thus we introduce pseudonym identity for each user which is concealed in login messages. And through clever design, our proposed scheme can prevent from smart card breach. Moreover, the security analysis on this scheme demonstrates that our proposed scheme enjoys security attributes such as preventing the various kinds of attacks and user anonymity. Finally, performance analysis shows that our proposed scheme is simple and efficient.

Rong Fan,Dao-jing He,Xue-zeng Pan,Ling-di Ping

DOI: https://doi.org/10.1631/jzus.c1000377

2011-01-01

Abstract:Wireless sensor networks (WSNs) are vulnerable to security attacks due to their deployment and resource constraints. Considering that most large-scale WSNs follow a two-tiered architecture, we propose an efficient and denial-of-service (DoS)-resistant user authentication scheme for two-tiered WSNs. The proposed approach reduces the computational load, since it performs only simple operations, such as exclusive-OR and a one-way hash function. This feature is more suitable for the resource-limited sensor nodes and mobile devices. And it is unnecessary for master nodes to forward login request messages to the base station, or maintain a long user list. In addition, pseudonym identity is introduced to preserve user anonymity. Through clever design, our proposed scheme can prevent smart card breaches. Finally, security and performance analysis demonstrates the effectiveness and robustness of the proposed scheme.

Fan Rong,Ping Lingdi,Fu Jianqing,Pan Xuezeng

DOI: https://doi.org/10.3969/j.issn.1000-0801.2010.10.015

2010-01-01

Abstract:In the applications of unattended wireless sensor networks(UWSN),sensor nodes always are deployed in hostile area and are difficult to communicate with each other.Besides,the network user need abstract sensed data not real time data in some scene.Thus the sensor nodes need to store the sensed data until receiving the request of data.However,the distributed architecture makes it challenging to build a secure and efficient data storage system due to the resource-constrained nature of sensor node.Besides,due to the lack of physical protection,WBAN are vulnerable to attacks when deployed in hostile environments.In order to address the challenges,we propose a novel secure and efficient data storage scheme with dynamic integrity checking in this paper.Based on the policies of multiple secret sharing,we first propose secure and efficient patient-related data storage and access scheme for UWSN.Furthermore,to dynamically check the integrity of the distributed data shares,we then propose an efficient data integrity verification scheme based on orthonormal vectors.Finally,the security and performance analysis shows that the proposed scheme is secure and practical for UWSN.

Abdullah M. Almuhaideb,Dania M. Al-Khulaifi

DOI: https://doi.org/10.1109/access.2024.3504602

IF: 3.9

2024-12-04

IEEE Access

Abstract:The Internet of Underwater Things (IoUT) and Underwater Sensor Networks (UWSN) are technologies that benefit multiple disciplines, including offshore exploration, aquaculture, and natural disaster prediction. Given the challenging operating conditions with the inherent capacity limitations of underwater sensors, specialized protocols are necessary to ensure secure and efficient communication. In this paper, we highlight some of the advancements related to UWSNs. Based on a comprehensive review of previous work, we propose a protocol that considers security and performance requirements using lightweight operations and mutual authentication, which is a security process in which both parties establish the identity of the other to gain confidence in the communication before any data is exchanged. In the UWSNs setting, this implies achieving secure communication between nodes and base stations. The scheme's performance was evaluated using Burrows-Abadi-Needham (BAN) logic and the Automated Validation of Internet Security Protocols Applications (AVISPA) simulation. We can confirm that the proposed protocol outperforms previous work regarding security, computational overhead, and communication cost. Additionally, comparative analysis demonstrates that our protocol withstands different types of cyber-attacks while achieving an improved overall performance compared to other related schemes.

computer science, information systems,telecommunications,engineering, electrical & electronic

Jaydip Sen

DOI: https://doi.org/10.13140/RG.2.1.2978.0722

2010-12-12

Abstract:Wireless sensor networks (WSNs) have recently attracted a lot of interest in the research community due their wide range of applications. Unfortunately, these networks are vulnerable to numerous security threats that can adversely affect their proper functioning. This problem is more critical if the network is deployed for some mission-critical applications such as in a tactical battlefield. Random failure of nodes and intentional compromise of nodes by an insider attack in a WSN pose particularly difficult challenges to security engineers as these attacks cannot be defended by traditional cryptography-based mechanisms. In this paper, a security solution is proposed for detecting compromised and faulty nodes in a WSN. The mechanism also isolates a compromised node from the network so that it cannot participate in any network activity. The proposed mechanism is based on misbehavior classification, behaviour monitoring and trust management. It involves minimum computation and communication overhead and is ideally suited for a resource-constrained, high-integrity WSN.

Cryptography and Security

Fan Wu,Lili Xu,Saru Kumari,Xiong Li,Jian Shen,Kim-Kwang Raymond Choo,Mohammad Wazid,Ashok Kumar Das

DOI: https://doi.org/10.1016/j.jnca.2016.12.008

IF: 7.574

2016-01-01

Journal of Network and Computer Applications

Abstract:Wireless sensor networks (WSNs) for Internet of Things (IoT) can be deployed in a wide range of industries such as agriculture and military. However, designing a secure and reliable authentication scheme for WSNs that can be deployed in IoT remains a research and operational challenge. For example, recently in 2016, Amin and Biswas showed that the Turcanovic et al.'s scheme is vulnerable to smart card loss attack, user impersonation attack, etc. They then proposed a new authentication scheme for WSNs with multi-gateway. In this paper, we revisit the scheme of Amin and Biswas and reveal previously unknown vulnerabilities in the scheme (i.e. sensor capture attack, user forgery attack, gateway forgery attack, sensor forgery attack and off-line guessing attack). In addition, we demonstrate that the user in the scheme can be tracked due to the use of a constant pseudo-identity and previously established session keys can be calculated by the attacker. Rather than attempting to fix a broken scheme, we present a novel authentication scheme for multi-gateway based WSNs. We then demonstrate the security of the proposed scheme using Proverif, as well as evaluating the good performance of the scheme using NS-2 simulation.

Saru Kumari,Ashok Kumar Das,Mohammad Wazid,Xiong Li,Fan Wu,Kim-Kwang Raymond Choo,Muhammad Khurram Khan

DOI: https://doi.org/10.1002/cpe.3930

2017-01-01

Abstract:A wireless sensor network (WSN) typically consists of a large number of resource-constrained sensor nodes and several control or gateway nodes. Ensuring the security of the asymmetric nature of WSN is challenging, and designing secure and efficient user authentication and key agreement schemes for WSNs is an active research area. For example, in 2016, Farash et al. proposed a user authentication and key agreement scheme for WSNs. However, we reveal previously unpublished vulnerabilities in their scheme, which allow an attacker to carry out sensor node spoofing, password guessing, user/sensor node anonymity, and user impersonation attacks. We then present a scheme, which does not suffer from the identified vulnerabilities. To demonstrate the practicality of the scheme, we evaluate the scheme using NS-2 simulator. We then prove the scheme secure using Burrows-Abadi-Needham logic. Copyright (c) 2016 John Wiley & Sons, Ltd.

Khawaja Masood Ahmed,Rehan Shams,Fozia Hanif Khan,Miguel-Ángel Luque-Nieto

DOI: https://doi.org/10.1109/access.2024.3490498

IF: 3.9

2024-11-09

IEEE Access

Abstract:In recent years industry's pursuit of Underwater Wireless Sensor Networks (UWSN) has surged because of UWSN's advancements in commercial and military applications as well as monitoring marine life. Owing to its capabilities, open acoustic channel, and hostile undersea environment, additionally, it is susceptible to many different types of malicious attacks and threats. Although secure interaction and communication is necessary for many UWSN-based applications, attackers can readily exploit vulnerabilities to steal data while the application is in use. However, most of UWSN research to date has not taken security into account. Due to these factors, the objective of this research is to present a thorough review of UWSN security by going over security requirements as well as the primary UWSN security threats according to layered classification. This paper discusses different security concerns and examines countermeasure schemes against UWSN security attacks and strategies created specifically for UWSNs that discuss several security issues. The aim of this study is to discuss various security concerns and examines countermeasure schemes against UWSN security attacks and strategies created specifically for UWSNs that discuss several security issues. The goal of this study is to recommend future lines of inquiry for UWSN research. The proposed study discusses different strategies that had already addressed the security issues. However, how these schemes are still lacking in the performance and what countermeasures can be considered by different techniques such as confidentiality, integrity, authenticity and many more, in order to fulfill the security issues in under water sensors networks. The goal of this study is to recommend future lines of inquiry for UWSN research. Comparisons of different techniques in terms of energy efficiency, latency, and detection accuracy with other major factors have also been done as a guideline for new research.

computer science, information systems,telecommunications,engineering, electrical & electronic

Jia Shi,Jinqiu Wu,Zhiwei Zhao,Xiaofei Qi,Wenbo Zhang,Gang Qiao,Dahong Zuo

DOI: https://doi.org/10.3390/jmse12050831

IF: 2.744

2024-05-17

Journal of Marine Science and Engineering

Abstract:Due to the open underwater channels and untransparent network deployment environments, underwater acoustic networks (UANs) are more vulnerable to hostile environments. Security research is also being conducted in cryptography, including authentication based on asymmetric algorithms and key distribution based on symmetric algorithms. In recent years, the advancement of quantum computing has made anti-quantum attacks an important issue in the field of security. Algorithms such as lattice and SPHINCS+ have become a research topic of interest in the field of security. However, within the past five years, few papers have discussed security algorithms for UANs to resist quantum attacks, especially through classical algorithms. Some existing classical asymmetric and symmetric algorithms are considered to have no prospects. From the perspective of easy deployment in engineering and anti-quantum attacks, our research focuses on a comprehensive lightweight security framework for data protection, authentication, and malicious node detection through the Elliptic Curve and Hash algorithms. Our mechanism is suitable for ad hoc scenarios with limited underwater resources. Meanwhile, we have designed a multi-party bit commitment to build a security framework for the system. A management scheme is designed by combining self-certifying with the threshold sharing algorithm. All schemes are designed based on certificate-less and ad hoc features. The proposed scheme ensures that the confidentiality, integrity, and authentication of the system are well considered. Moreover, the scheme is proven to be of unconditional security and immune to channel eavesdropping. The resource and delay issues are also taken into consideration. The simulations considered multiple variables like number of nodes, attackers, and message length to calculate proper values that can increase the efficiency of this scheme. The results in terms of delay, delivery ratio, and consumption demonstrate the suitability of the proposal in terms of security, especially for malicious node detection. Meanwhile, the computational cost has also been controlled at the millisecond level.

oceanography,engineering, marine, ocean

Huda A. Babaeer,Saad A. AL-ahmadi

DOI: https://doi.org/10.1109/access.2020.2994587

IF: 3.9

2020-01-01

IEEE Access

Abstract:In a wireless sensor network, the sensors periodically transmit sensed data from a specific environment to a centralized station by wireless communication. Deployment in an open environment leads to the potential of security attacks. A sinkhole attack is a destructive attack aimed at the network layer, where the sinkhole node attracts other nodes by advertising itself as the best path to the base station. Subsequently receiving other sensor node packets and compromising network security. Hence, this work proposes a lightweight, secure method based on the Threshold Sensitive Energy Efficient Sensor Network protocol and watermarking techniques to ensure data integrity during transmission. The homomorphic encryption used in this scheme is to provide fast and efficient and consumes less energy while identifying sensor nodes for the purpose of sinkhole detection and prevention. The proposed work has been evaluated using OMNET++ simulation environment to measure the proposed work performance in the following metrics: delay, packet delivery ratio, throughput, and average energy consumption. Compared with previous works, the proposed work shows better results in these metrics. In addition, the proposed scheme consumes less energy compared with similar works due to the use of lightweight watermarking and authentication techniques. The results show that the proposed scheme enhances security by detecting the sinkhole attacker node before the attack is even activated. In addition, the proposed method ensures the integrity and authenticity of the sensed data while transmitting them from the sensor node until receiving it in the base station, and it can detect any tampering of the data.

computer science, information systems,telecommunications,engineering, electrical & electronic

Chen Yulei,Chen Jianhua

DOI: https://doi.org/10.1007/s11227-021-03820-6

IF: 3.3

2021-01-01

The Journal of Supercomputing

Abstract:Wireless sensor networks (WSNs) are usually deployed in hostile or unattended areas, and users need to obtain real-time data from WSNs. The data collected by sensor nodes are usually relatively private and sensitive, so users must pass the identity authentication before obtaining the information perceived by sensor nodes. In order to enhance the security of wireless sensor networks and prevent illegal users from accessing sensor nodes, this paper designs an efficient and secure identity authentication protocol for wireless sensor networks. The proposed protocol makes full use of the advantages of lightweight cryptographic primitives such as physical unclonable function, one-way hash function and bitwise exclusive operation. Moreover, users only need to use biometrics (such as fingerprints, iris) to access the remote systems and do not need to rely on any password, which avoids the trouble of memorizing and losing password. To prove the scheme's security, the well-known formal security proof with random oracle model and traditional heuristic discussion are given. Additionally, the performance comparison results show that our scheme has less communication overhead and computation complexity, and is effective for the resource constrained sensor devices in WSNs.

Xiujun Yu,Huifang Chen,Lei Xie

DOI: https://doi.org/10.1109/icaica52286.2021.9497907

2021-06-28

Abstract:Underwater acoustic sensor networks (UASNs) have been receiving more and more attention due to their wide applications and the marine data collection is one of the important applications of UASNs. However, the openness and unreliability of underwater acoustic communication links and the easy capture of underwater wireless devices make UASNs vulnerable to various attacks. On the other hand, due to the limited resources of underwater acoustic network nodes, the high bit error rates, large and variable propagation delays, and low bandwidth of acoustic channels, many mature security mechanisms in terrestrial wireless sensor networks cannot be applied in the underwater environment [1]. In this paper, a secure communication protocol for marine data collection was proposed to ensure the confidentiality and data integrity of communication between under sensor nodes and the sink node in UASNs.

Muhammad Saud Khan,Muhammad Sardaraz,Muhammad Tahir,Abdullah Alourani

DOI: https://doi.org/10.1109/access.2024.3504744

IF: 3.9

2024-12-04

IEEE Access

Abstract:The Internet of Things (IoT) is considered the future of the Internet due to its immense potential. It has captured the interest of researchers who are exploring new possibilities in this field. Unlike the current internet structure, IoT involves the connection of billions of devices and entails a significant exchange of data, diverse traffic, and resource availability. The increasing use of IoT devices in vulnerable environments has presented two major challenges for researchers: authenticating sensor nodes and ensuring secure data routing. These challenges become more difficult by the presence of wireless sensors in communication devices, where all devices are not authenticated or have up-to-date software. Among the various IoT attacks, the Sybil attack poses a significant threat to the network. Consequently, the conventional solutions used for conventional wireless networks do not apply to wireless sensor networks due to the differences in algorithms and associated costs in terms of processing and power consumption. To address these challenges, an extended signed response-based (ESRES) solution is proposed. The proposed framework utilizes a pre-distributed key embedded in a sensor node, while the authentication process employs a dual key-based algorithm with linear complexity. In this mechanism, the node uses pre-distributed keys to respond to a random challenge number sent by the server or sink, thus proving its legitimacy. Since there are different types of IoT networks, such as hierarchical and centralized structures, the proposed authentication scheme is designed to be flexible and implementable for both types. The performance of the proposed framework is analyzed and evaluated, considering the probability of attack detection with different authentication key pool sizes for different parameters i.e., processing overhead, probability, and power consumption.

computer science, information systems,telecommunications,engineering, electrical & electronic

Roee Diamant,Paolo Casari,Stefano Tomasin

DOI: https://doi.org/10.1109/twc.2018.2886896

IF: 10.4

2019-02-01

IEEE Transactions on Wireless Communications

Abstract:With the growing use of underwater acoustic communications (UWAC) for both industrial and military operations, there is a need to ensure communication security. A particular challenge is represented by underwater acoustic networks (UWANs), which are often left unattended over long periods of time. Currently, due to the physical and performance limitations, the UWAC packets rarely include encryption, leaving the UWAN exposed to external attacks faking legitimate messages. In this paper, we propose a new algorithm for message authentication in a UWAN setting. We begin by observing that, due to the strong spatial dependency of the underwater acoustic channel, an attacker can attempt to mimic the channel associated with the legitimate transmitter only for a small set of receivers, typically just for a single one. Taking this into account, our scheme relies on trusted nodes that independently help a sink node in the authentication process. For each incoming packet, the sink fuses beliefs evaluated by the trusted nodes to reach an authentication decision. These beliefs are based on the estimated statistics of the channel parameters, which are chosen to be the most sensitive to the transmitter-receiver displacement. Our simulation results show accurate identification of an attacker’s packet. We also report results from a sea experiment demonstrating the effectiveness of our approach.

telecommunications,engineering, electrical & electronic

Irshad Ullah,Noor Ul Amin,Jawaid Iqbal,Muhammad Shahid,Farman Ali

2018-01-01

Abstract:Wireless Sensor Networks (WSNs) comprise of independent sensor nodes attached to one or more base stations. Conversely, the applied placement of sensor systems face various challenges enforced by everyday life demands. Wireless sensor nodes have restricted communication resources. Therefore, it is extremely unfavorable to use hard information security techniques. The aim of this paper is to develop an optimal and secure hybrid algorithm to provide secure data transfer and also increase the lifetime of the wireless sensor networks. In symmetric cryptographic algorithms the secure key distribution was a main problem, while asymmetric cryptographic algorithms is more costly for resource constrain environment of WSNs. To resolve these above issues, we encode and decode the messages through Advance Encryption Standard algorithm and securely exchange key using Hyper Elliptic Curve Cryptography (HECC) algorithm. This hybrid cryptographic scheme deeds the benefits of the symmetric and asymmetric cryptographic algorithms and is more secure and suitable for resource constrain environment of WSNs.

Jiaqing Mo,Hang Chen

DOI: https://doi.org/10.1155/2019/2136506

IF: 1.968

2019-01-01

Security and Communication Networks

Abstract:Wireless sensor networks (WSNs) have great potential for numerous domains of application because of their ability to sense and understand unattended environments. However, a WSN is subject to various attacks due to the openness of the public wireless channel. Therefore, a secure authentication mechanism is vital to enable secure communication within WSNs, and many studies on authentication techniques have been presented to build robust WSNs. Recently, Lu et al. analyzed the security defects of the previous ones and proposed an anonymous three-factor authenticated key agreement protocol for WSNs. However, we found that their protocol is vulnerable to some security weaknesses, such as the offline password guessing attack, known session-specific temporary information attack, and no session key backward secrecy. We propose a lightweight security-improved three-factor authentication scheme for WSNs to overcome the previously stated weaknesses. In addition, the improved scheme is proven to be secure under the random oracle model, and a formal verification is conducted by ProVerif to reveal that the proposal achieves the required security features. Moreover, the theoretical analysis indicates that the proposal can resist known attacks. A comparison with related works demonstrates that the proposed scheme is superior due to its reasonable performance and additional security features.

Xiancun Zhou,Yan Xiong

DOI: https://doi.org/10.1007/978-3-642-25255-6_34

2011-01-01

Abstract:As wireless sensor networks(WSNs) are susceptible to attacks and sensor nodes have limited resources, it is necessary to design a secure and lightweight user authentication protocol for WSNs. Over the past few years, a few user authentication schemes for WSNs were proposed, in which the concept of timestamps were employed without exception. Analysis shows that it brings new security flaws. An efficient and lightweight user authentication scheme for WSNs is proposed in this paper. In proposed scheme, we employ one-way hash function with a secret key. With the help of smart card, mutual authentication is performed using a challenge-response handshake between user and gateway node in both directions, and it avoids the problem of time synchronization between smart card and the gateway node. An analysis of the scheme is presented and it shows its resilience against classical types of attacks, and it adds less computational overhead than other schemes.

Fan Wu,Lili Xu,Saru Kumari,Xiong Li

DOI: https://doi.org/10.1007/s12083-015-0404-5

IF: 3.488

2015-01-01

Peer-to-Peer Networking and Applications

Abstract:Wireless sensor network(WSN) contains many specially distributed sensors which collect information for people to analyze appointed objects in real-time. WSN is deployed widely in many fields, such as fire detection and remote health care monitoring. User authentication is an important part for the communication of WSN. In 2014, Jiang et al. and Choi et al. proposed their authentication schemes for WSN, respectively. However, we find some weaknesses in them. Jiang et al.'s scheme cannot resist the De-Synchronization attack, the off-line guessing attack and the user forgery attack. Besides, it does not keep the character of strong forward security. Choi et al.'s scheme is under the off-line password guessing attack and the user impersonation attack without user anonymity. We present an improved authentication scheme and prove it to be secure with the formal security model. Also, we analyze the concrete secure characters and the performance of our scheme. Through comparison with some recent schemes, our scheme is more practical and fit for applications.

Bahaa Hussein Taher,Muhammad Yasir,Abraham Isiaho,Judith N. Nyakanga

DOI: https://doi.org/10.30564/jcsr.v4i3.4258

2022-07-13

Journal of Computer Science Research

Abstract:Wireless sensor networks process and exchange mission-critical data relating to patients’ health status. Obviously, any leakages of the sensed data can have serious consequences which can endanger the lives of patients. As such, there is need for strong security and privacy protection of the data in storage as well as the data in transit. Over the recent past, researchers have developed numerous security protocols based on digital signatures, advanced encryption standard, digital certificates and elliptic curve cryptography among other approaches. However, previous studies have shown the existence of many security and privacy gaps that can be exploited by attackers to cause some harm in these networks. In addition, some techniques such as digital certificates have high storage and computation complexities occasioned by certificate and public key management issues. In this paper, a certificateless algorithm is developed for authenticating the body sensors and remote medical server units. Security analysis has shown that it offers data privacy, secure session key agreement, untraceability and anonymity. It can also withstand typical wireless sensor networks attacks such as impersonation, packet replay and man-in-the-middle. On the other hand, it is demonstrated to have the least execution time and bandwidth requirements.

Hanguang Luo,Guangjun Wen,Jian Su

DOI: https://doi.org/10.1007/978-3-030-00021-9_4

2018-01-01

Abstract:Wireless Sensor Networks (WSNs) have rapidly increased to be applicable in many different areas due to their wireless mobile connectivity, large scale deployment and ad hoc network. However, these characteristics make WSNs usually deployed in unattended and hostile field, which may bring some new threats such as information tampering and eavesdropping attacks, etc. User authentication is one of the most important security services that allowed the legitimate user to query and collect the real-time data from a sensor node in WSN. Since the sensor nodes are resource-constrained devices which have limited storage, power and computing resource, the proposed authentication scheme must be low cost and lightweight. Recently, Gope et al. proposed a realistic lightweight authentication for real-time data access in WSN. Unfortunately, through our analysis we identified several flaws exist in their scheme as well as exist in other two-factor schemes. In order to withstand these threats, in this paper, we proposed some solutions to withstand the problems in Gope et al.' s and other schemes. Our solutions provide an important reference for security data access in WSN.