H2BSAP: A Hop-by-Hop Broadcast Source Authentication Protocol for WSN to mitigate DoS Attacks
Broadcast communication is a dominant communication pattern in WSN. As a major security concern, the broadcast source authentication is needed to mitigate impersonation of a broadcast source, modifications of its broadcasted data, or depletion of the limited energy of sensors caused by an attacker injecting useless broadcast traffic. Several Broadcast Source Authentication Protocols (BSAPs) were proposed in the literature. One class of them is time asymmetry-based BSAPs like μESLA 1 protocol. These BSAPs operate delayed key-disclosure to secure broadcast communications, but they suffer from a kind of DoS attack, called resource-draining attack, in which an attacker floods the network with fake messages that all sensors of the network buffer and forward, then later verify, thus causing buffer over.ow and batteries depletion. In this paper we propose the H2BSAP protocol, to overcome this kind of DoS attacks, by achieving a hop-by-hop authentication of broadcasted messages, thus limiting the damage of an attacker to its one-hop neighbors only, instead of the entire network.
Chakib BEKARA Maryline LAURENT-MAKNAVICIUS Kheira BEKARA
INSTITUT TELECOM,TELECOM&MANEGEMENT Sud-Paris CNRS Samovar UMR 5157,9 rue Charles Fourier,91000 Evry,FRANCE
国际会议
广州
英文
2008-11-19(万方平台首次上网日期,不代表论文的发表时间)