Title :
A collusion attack on pairwise key predistribution schemes for distributed sensor networks
Author_Institution :
Comput. Lab., Cambridge Univ.
Abstract :
Key predistribution schemes are a favoured solution for establishing secure communication in sensor networks. Often viewed as the safest way to bootstrap trust, the main drawback is seen to be the large storage overhead imposed on resource-constrained devices. In this paper, we argue that predistribution schemes can actually be quite insecure: pre-loading global secrets onto exposed devices strengthens the incentive for attackers to compromise nodes. Furthermore, lack of coordination between nodes arising from localised communication helps attackers hide misbehaviour. We consider one scheme in particular - Chan et al.´s random pairwise key predistribution (2003) - and demonstrate an attack where colluding nodes reuse selected pairwise keys to create many false identities. We find that a small, colluding minority can hijack a majority of node communication channels. Finally, we consider countermeasures, from improved detection to scrapping predistribution altogether
Keywords :
cryptography; telecommunication security; wireless sensor networks; bootstrap; colluding nodes; collusion attack; distributed sensor network; global secret; localised communication; node communication channel; pairwise key predistribution scheme; pairwise key reuse; resource-constrained device; secure communication; Authentication; Communication channels; Computer networks; Cryptography; Distributed computing; Laboratories; Monitoring; Network topology; Proposals; Protection;
Conference_Titel :
Pervasive Computing and Communications Workshops, 2006. PerCom Workshops 2006. Fourth Annual IEEE International Conference on
Conference_Location :
Pisa
Print_ISBN :
0-7695-2520-2
DOI :
10.1109/PERCOMW.2006.3
