Certificates Shared Verification Key Management for SurvSec Security Architecture

Megahed, Mohamed; Makrakis, Dimitrios; Dahshan, Hisham

Home // SENSORCOMM 2012 , The Sixth International Conference on Sensor Technologies and Applications // View article

Certificates Shared Verification Key Management for SurvSec Security Architecture

Authors:
Mohamed Megahed
Dimitrios Makrakis
Hisham Dahshan

Keywords: Key Management; Dynamic; Hybrid; Certificate Shared Verification.

Abstract:
SurvSec is a novel security architecture for reliable network recovery from base station BS failure of surveillance wireless sensor network (WSN) in hostile environment. Key management is the fundamental security mechanism in WSN which is needed for secure localization, secure clustering, secure data aggregation, secure authenticated broadcasting and secure routing. In this paper, a novel hybrid and dynamic key management scheme was proposed. This new scheme established secret keys between sensor nodes for SurvSec security architecture with high security level, high performance and low setup time. Hybrid key management provides high security level in the hostile environment however previous work assumed heterogeneous network utilizes high end sensor nodes (HSNs) with high power for high computations of certificates verification. This assumption provides attackers the best chance to destroy the network by targeting the HSNs. Also, HSN is connected to large number of nodes and there is no backup node for it. In addition, if the attackers target HSNs, then the connectivity and scalability will be affected where these nodes are points of failure. Moreover, previous work did not explain how to revoke compromised HSN. Furthermore, increasing the number of HSNs will increase the network deployment cost. Finally, if HSN is destroyed, nodes cannot have rekeying or addition of new nodes or revocation of compromised nodes. This paper proposed a hybrid scheme with homogenous network that uses some sensor nodes named as security managers (SMs) with a proposed novel mechanism called certificates shared verification to verify the certificates of group of nodes with distributed computations to overcome the absence of HSNs. This paper presents analytical evaluation and extensive simulation. The simulation results showed that at the cost of increasing communication overhead, the certificates shared verification mechanism was developed. Also, simulation results showed that the proposed scheme has lower computation overhead at SM side and lower setup time than HSN model. Both schemes have the same storage overhead.

Pages: 14 to 25

Copyright: Copyright (c) IARIA, 2012

Publication date: August 19, 2012

Published in: conference

ISSN: 2308-4405

ISBN: 978-1-61208-207-3

Location: Rome, Italy

Dates: from August 19, 2012 to August 24, 2012