Distributed Software-based Attestation for Node Compromise Detection in Sensor Networks Export

@inproceedings{citeulike:5780077, abstract = {Sensors that operate in an unattended, harsh or hostile environment are vulnerable to compromises because their low costs preclude the use of expensive tamper-resistant hardware. Thus, an adversary may reprogram them with malicious code to launch various insider attacks. Based on verifying the genuineness of the running program, we propose two distributed software-based attestation schemes that are well tailored for sensor networks. These schemes are based on a pseudorandom noise generation mechanism and a lightweight block-based pseudorandom memory traversal algorithm. Each node is loaded with pseudorandom noise in its empty program memory before deployment, and later on multiple neighbors of a suspicious node collaborate to verify the integrity of the code running on this node in a distributed manner. Our analysis and simulation show that these schemes achieve high detection rate even when multiple compromised neighbors collude in an attestation process.}, address = {Washington, DC, USA}, author = {Yang, Yi and Wang, Xinran and Zhu, Sencun and Cao, Guohong}, booktitle = {SRDS '07: Proceedings of the 26th IEEE International Symposium on Reliable Distributed Systems}, citeulike-article-id = {5780077}, citeulike-linkout-0 = {http://portal.acm.org/citation.cfm?id=1308237}, isbn = {0-7695-2995-X}, keywords = {attestation, network-programming, security, wsn}, pages = {219--230}, posted-at = {2009-09-14 09:20:58}, priority = {2}, publisher = {IEEE Computer Society}, title = {Distributed Software-based Attestation for Node Compromise Detection in Sensor Networks}, url = {http://portal.acm.org/citation.cfm?id=1308237}, year = {2007} }

TY - CONF ID - citeulike:5780077 L3 - citeulike-article-id:5780077 N2 - Sensors that operate in an unattended, harsh or hostile environment are vulnerable to compromises because their low costs preclude the use of expensive tamper-resistant hardware. Thus, an adversary may reprogram them with malicious code to launch various insider attacks. Based on verifying the genuineness of the running program, we propose two distributed software-based attestation schemes that are well tailored for sensor networks. These schemes are based on a pseudorandom noise generation mechanism and a lightweight block-based pseudorandom memory traversal algorithm. Each node is loaded with pseudorandom noise in its empty program memory before deployment, and later on multiple neighbors of a suspicious node collaborate to verify the integrity of the code running on this node in a distributed manner. Our analysis and simulation show that these schemes achieve high detection rate even when multiple compromised neighbors collude in an attestation process. SN - 0-7695-2995-X AD - Washington, DC, USA EP - 230 TI - Distributed Software-based Attestation for Node Compromise Detection in Sensor Networks PB - IEEE Computer Society T2 - SRDS '07: Proceedings of the 26th IEEE International Symposium on Reliable Distributed Systems SP - 219 KW - attestation KW - network-programming KW - security KW - wsn AU - Yang, Yi AU - Wang, Xinran AU - Zhu, Sencun AU - Cao, Guohong PY - 2007/// UR - http://portal.acm.org/citation.cfm?id=1308237 ER -