Somya Kapoor Jorge Chang Amarnath Kolla 1 Agenda

  • Slides: 30
Download presentation
Somya Kapoor Jorge Chang Amarnath Kolla 1

Somya Kapoor Jorge Chang Amarnath Kolla 1

Agenda Introduction and Architecture of WSN –Somya Kapoor Security threats on WSN – Jorge

Agenda Introduction and Architecture of WSN –Somya Kapoor Security threats on WSN – Jorge Chang & Amarnath Kolla 2

What is WSN? “A wireless sensor network (WSN) is a network made of numerous

What is WSN? “A wireless sensor network (WSN) is a network made of numerous small independent sensor nodes. The sensor nodes, typically the size of a 35 mm, are selfcontained units consisting of a battery, radio, sensors, and a minimal amount of on-board computing power. The nodes self-organize their networks, rather than having a pre-programmed network topology. Because of the limited electrical power available, nodes are built with power conservation in mind, and generally spend large amounts. ” 3

Uses or Benefits Buildings automation for controlling lights, fire alarms or access control, refrigeration

Uses or Benefits Buildings automation for controlling lights, fire alarms or access control, refrigeration control • • Industrial automation • Habitat monitoring • Medical field • Military 4

Layout of WSN 5

Layout of WSN 5

Layout of a mote 6

Layout of a mote 6

Picture 7

Picture 7

Doesn’t it sound amazing? 8

Doesn’t it sound amazing? 8

Requirements of WSN • Small in size and low power consumption • Concurrency–intensive operation

Requirements of WSN • Small in size and low power consumption • Concurrency–intensive operation • Diversity in design and usage • Low cost • Security! 9

Security Threats n n n n Denial of Service. Spoofed, altered, or replayed routing

Security Threats n n n n Denial of Service. Spoofed, altered, or replayed routing info. Selective forwarding. Sinkhole attacks. Sybil attacks. Wormhole attacks. Hello flood attacks. Acknowledgement spoofing. 10

Denial of Service Network Layer Do. S Attack Defenses Physical Jamming Spread-spectrum, priority messages,

Denial of Service Network Layer Do. S Attack Defenses Physical Jamming Spread-spectrum, priority messages, lower duty cycle, region mapping, mode change Tampering Tamper-proofing, hiding 11

Denial of Service Network Layer Do. S Attack Defenses Physical Jamming Spread-spectrum, priority messages,

Denial of Service Network Layer Do. S Attack Defenses Physical Jamming Spread-spectrum, priority messages, lower duty cycle, region mapping, mode change Tampering Tamper-proofing, hiding Collision Error correcting code Exhaustion Rate limitation Unfairness Small frames Link 13

Denial of Service (cont. ) Network and routing Neglect and Greed Redundancy, probing Homing

Denial of Service (cont. ) Network and routing Neglect and Greed Redundancy, probing Homing Encryption Misdirection Egress filtering, authorization, monitoring Black holes Authorization, monitoring, redundancy 14

Denial of Service (cont. ) Network and routing Transport Neglect and Greed Redundancy, probing

Denial of Service (cont. ) Network and routing Transport Neglect and Greed Redundancy, probing Homing Encryption Misdirection Egress filtering, authorization, monitoring Black holes Authorization, monitoring, redundancy Flooding Client puzzles Desynchronization Authentication 15

Spoofed, Altered, or Replayed Routing Info n Issues: n n n Routing info altered/falsified

Spoofed, Altered, or Replayed Routing Info n Issues: n n n Routing info altered/falsified to attract/repel traffic from nodes. Malicious nodes can create traffic loops. Counter Measures: Authentication. 16

Selective Forwarding n Issues: n n Relies on routing methodology. Subvert a node on

Selective Forwarding n Issues: n n Relies on routing methodology. Subvert a node on a major traffic path. Selectively forward only some data. Counter Measures: n Redundant routes. n Redundant messages. 17

Sinkhole Attack n Issues: n Subverted nodes close to base advertise attractive routing information.

Sinkhole Attack n Issues: n Subverted nodes close to base advertise attractive routing information. Sinkhole Base Station 18

Sinkhole Attack n Issues: n n Subverted nodes close to base advertise attractive routing

Sinkhole Attack n Issues: n n Subverted nodes close to base advertise attractive routing information. Force nodes in the region to route data towards it. Creates a ‘sphere of influence’. Sinkhole Counter Measures: n n Hierarchical routing. Geographic routing. Base Station 19

Sybil Attack n n An adversary node assumes identity of multiple nodes. This causes

Sybil Attack n n An adversary node assumes identity of multiple nodes. This causes ineffectiveness in a network. Specially target for networks with: n Fault Tolerance n Geographic routing protocol 20

Sybil Attack (cont. ) n n Geographic routing network where each intermediate node is

Sybil Attack (cont. ) n n Geographic routing network where each intermediate node is allowed up to five connected nodes. Here, an adversary node assumes the identity of two nodes, leaving one node starved. A B Base Station 21

Sybil Attack (cont. ) n n In a network with fault tolerance, each node

Sybil Attack (cont. ) n n In a network with fault tolerance, each node sends data to multiple intermediate node. Adversary intermediate node assumes multiple identity, removing the fault tolerance requirement. 22

Sybil Attack n Counter measure n n n Each node is assigned one or

Sybil Attack n Counter measure n n n Each node is assigned one or more “verified neighbors” Traffic can go through verified or non-verified nodes. Base station keeps track of how many neighbors each node has, and if the number is higher than normal, this indicates Sybil attack. At this point, traffic can only be routed through verified nodes. Neighbor verification can be done through certificates or public key cryptosystem. 23

Wormhole Attack n n Two powerful adversary nodes placed in two strategic location Advertise

Wormhole Attack n n Two powerful adversary nodes placed in two strategic location Advertise a low cost path to the sink All nodes in the network are attracted to them looking for an optimal route This is attack is usually applied in conjunction with selective forwarding or eavesdropping attack. 24

Wormhole Attack (cont. ) n n n The two adversary nodes advertise a route

Wormhole Attack (cont. ) n n n The two adversary nodes advertise a route that’s two hops away. Normal route is longer, so it’s not used. The adversaries are now in control of all the traffic in the network. 25

Wormhole Attack (cont. ) n Hard to detect because communication medium between the two

Wormhole Attack (cont. ) n Hard to detect because communication medium between the two bad nodes are unknown. n n Control and verify hop count. This limits the self-organizing criteria of an ad-hoc network. Use protocol that is not based on hop count. In geographic routing, a route is based on coordinates of intermediate nodes. But if adversary nodes can mimic its location, this doesn’t work. 26

HELLO flood attack n n n New sensor node broadcasts “Hello” to find its

HELLO flood attack n n n New sensor node broadcasts “Hello” to find its neighbors. Also broadcast its route to the base station. Other nodes may choose to route data through this new node if the path is shorter. Adversary node broadcast a short path to the base station using a high power transmission. Target nodes attempt to reply, but the adversary node is out of range. This attack puts the network in a state of confusion. 27

HELLO flood attack n n n Counter this attack by using a three-way handshake.

HELLO flood attack n n n Counter this attack by using a three-way handshake. New node sends HELLO. Any receiving nodes reply with randomly generated message. The new node must resend the message back to the receiving nodes. This guarantees the bidirectionality of the link. 28

Acknowledgement Spoofing n n Adversary can easily intercept messages between two parties Spoofs an

Acknowledgement Spoofing n n Adversary can easily intercept messages between two parties Spoofs an acknowledge of a message to the sender. Goal is to convince the sender that a weak link is strong, or a dead link is still active. Counter the attack by appending a random number to the message and encrypt the whole thing. Acknowledge by sending the decrypted random number. 29

Conclusion n n Wireless sensor network is a growing field and has many different

Conclusion n n Wireless sensor network is a growing field and has many different applications. Most security threats to wireless ad-hoc network are applicable to wireless sensor network. These threats are further complicated by the physical limitations of sensor nodes. Some of these threats can be countered by encryption, data integrity and authentication. Security of wireless sensor network remains an intensive studied field. 30

Questions and Comments? 31

Questions and Comments? 31

Woman entrepreneur Ekta kapoor Ekta kapoor Defining womenWoman entrepreneur Ekta kapoor Ekta kapoor Defining women
Jorge Guillen JORGE GUILLEN BIOGRAFA Jorge naci enJorge Guillen JORGE GUILLEN BIOGRAFA Jorge naci en
Jorge Guillen JORGE GUILLEN BIOGRAFA Jorge naci enJorge Guillen JORGE GUILLEN BIOGRAFA Jorge naci en
BIRN ONTOLOGIES Session Jeffrey Grethe Amarnath Gupta BertramBIRN ONTOLOGIES Session Jeffrey Grethe Amarnath Gupta Bertram
APPLICATION OF PKPD MODELING IN DRUG DEVELOPMENT AmarnathAPPLICATION OF PKPD MODELING IN DRUG DEVELOPMENT Amarnath
Kepler Opal and Gemstone Amarnath Gupta University ofKepler Opal and Gemstone Amarnath Gupta University of
Developing Practical Applications of Phosphonic Acid Skanda AmarnathDeveloping Practical Applications of Phosphonic Acid Skanda Amarnath
BIRN ONTOLOGIES Session Jeffrey Grethe Amarnath Gupta BertramBIRN ONTOLOGIES Session Jeffrey Grethe Amarnath Gupta Bertram
UCSD NeuronCentered Database Amarnath Gupta Bertram Ludscher MaryannUCSD NeuronCentered Database Amarnath Gupta Bertram Ludscher Maryann
Neuroinformatics Maryann Martone Amarnath Gupta Bioinformatics a scientificNeuroinformatics Maryann Martone Amarnath Gupta Bioinformatics a scientific
The Truth Behind Holy Amarnath The Land OfThe Truth Behind Holy Amarnath The Land Of
VENTRICULAR SEPTAL DEFECT by Dr Amarnath BR BMCVENTRICULAR SEPTAL DEFECT by Dr Amarnath BR BMC
Kllkritik p Internet Kolla kllan http kollakallan skolutvecklingKllkritik p Internet Kolla kllan http kollakallan skolutveckling
The Quantum 7 Dwarves Alexandra Kolla Gatis MidrijanisThe Quantum 7 Dwarves Alexandra Kolla Gatis Midrijanis
Use Kolla for Better Life A real caseUse Kolla for Better Life A real case
Sundsvalls DFF Psst Kolla detta Tips hur viSundsvalls DFF Psst Kolla detta Tips hur vi
Pueblos Originarios El pueblo Kolla Bandera de WhipalaPueblos Originarios El pueblo Kolla Bandera de Whipala
Kllkritik p Internet Kolla kllan http kollakallan skolutvecklingKllkritik p Internet Kolla kllan http kollakallan skolutveckling
CSCI 2824 Discrete Structures Spring 2018 Alexandra KollaCSCI 2824 Discrete Structures Spring 2018 Alexandra Kolla
Pueblos Originarios El pueblo Kolla Bandera de WhipalaPueblos Originarios El pueblo Kolla Bandera de Whipala
KLLKRITIK MOMENT Kllfrtecking Kolla klla Exempel p kllorKLLKRITIK MOMENT Kllfrtecking Kolla klla Exempel p kllor
Kolla vecka 3 8 G vidare genom attKolla vecka 3 8 G vidare genom att
Kolla vldigt noga Vecka G vidare genom attKolla vldigt noga Vecka G vidare genom att
www vintrosa com Men kolla frst vecka 33www vintrosa com Men kolla frst vecka 33