Comparing Cryptographic protocols for securing wireless Ad-hoc Networks Advisor : Prof.Kris Gaj.

Transcription

1 Comparing Cryptographic protocols for securing wireless Ad-hoc Networks Advisor : Prof.Kris Gaj. Project Team Lawrence,Pavan,Sirija.

2 Wireless ad-hoc network A wireless ad-hoc network is a self-configuring network of mobile nodes ( or hosts). An arbitrary topology without a fix infrastructure. Suitable for military and emergency situations: -natural or human-induced disasters, -emergency medical conditions or -military operations Civilian environment: -classrooms, meeting rooms, sports stadiums

3 Wireless ad-hoc network Topology From Wikipedia, the free encyclopedia

4 Ad-Hoc Network Configurations Wireless Security Primer

5 Military and Emergency operations Emergency operation Military operation

6 Infrastructure Network Configurations Wireless Security Primer

7 Constraints in Ad-hoc Networks Authentication. Session secrecy. Forward Secrecy. Backward Secrecy. Power Consumption. Memory Consumption. Scalability.

8 Some Groups of Protocols used for Communication in Ad_hoc networks Group keying Protocols Diffie-Hellman Protocols Burmester-Desmedt Protocols Arbitrated Protocols Kerberos Protocols Otway-Rees Pre-Deployed Keying Protocols Network-wide wide pre-deployed keying protocol. Node-specific pre-deployed keying protocol. KDP based Pre deployed keying Protocol.

9 Group Key Agreement protocols in Ad Hoc Network Centralized and contributory Two Types Cliques Group Diffie-Hellman Protocols Burmester-Desmedt Protocols All contributory

10 GDH.2 Protocol

11 Cliques Group Diffie-Hellman Protocols

12 Burmester-Desmedt Protocols In the form;

13 An Authenticated BD Protocol For added security, the message broadcast is piggybacked with certificate and signature of each node.

14 Theoretical Analysis CLQ (GDH) Round Msg Comm Uni Broad Comp Exp Join 4 n+3 n+ 2 n+3 Leave, Partition Merge k+3 n+2k+ n- n+2k- 2 n+2k+ BD 2 2n 2n 3 Group Key Agreement-Theory and Practice - February 3, 26 Yongdae Kim Modified for presentation

15 Protocol comparison Protocol/Parameter GDH.2 BD General Authentication Forward Secrecy Backward Secrecy Power Consumed Memory Consumption Scalability

16 Arbitrated Protocol KDC NodeA NodeB Examples of Arbitrated Protocols Kerberos Protocol Otwayrees Protocol

17 Kerberos Protocol Based on the KerberosV5 Protocol and is modified to address the limitations of the Adhoc Networks. All the communicating nodes share a Secret key with trusted third party called Key Distribution Center KDC. key is distributed prior to the deployment.

18 Kerberos Node A KDC Node B Rounds Round Round2 Round3 Round4. KDC ID A ID B NA ID A KDC TicketB NA TicketB is B,KDC (Kpair ID A L) 2. ID K B,KDC ID B ID A TicketB E (ID B,TA) 3. ID Kpair(ID 4. ID A ID B E Kpair (TA) Kpair (TA)

19 Otwayrees Protocol Based on Needham Schroeder protocol. Different from Kerberos as it uses Nonce instead of time stamps to provide better security.

20 Otwayrees Node A KDC Round Node B Rounds. IDB IDA KDCj NA 2. KDCj IDB IDA NB NA Mkbj(KDCj IDB IDA NB NA. Round 2 3. IDB IDA EkAj ( H(IDA IDB NA NB Keypair) KBj(H(Ida IDB NA NB) Key pair) Round 3 Round 4 4. IDA IDB NB EKAj(H(IDA I DB NA NB) Keypair) Ekeypair(NA NB ) 5. IDA IDB Ekeypair(NB NA) Round 5

21 Protocol Comparison Parameter/Protocol. Kerberos Ottwayrees General Authentication Forward Secrecy Backward Secrecy Power Consumed Memory Consumption Scalability

22 Pre deployed keying protocol Keys loaded before deployment energy key management protocol Examples of pre deployed protocols Network wide pre deployed protocol Node specific pre deployed protocol Key Distribution Pattern based protocol

23 Network wide pre deployed protocol All the nodes in the network are loaded with the same key before deployment. Memory: Since only one key is used in the protocol which is loaded before the nodes are deployed the number of bits used will be equal to the key size. A new node added should be loaded with the same common key which the other nodes are loaded with.

24 Node specific pre deployed protocol A unique key is assigned for every combination of communicating nodes. Addition of a new node will tend the whole system to dissatisfy the main principle of pre deployed keying. If there are n number of nodes in the network then each node has to store (n-) number of keys.and the total number of keys to be generated are ( n c 2 ).

25 Key Distribution Pattern based Pre deployed Protocol Each node is loaded with a set of keys and a matrix which gives information about the common keys. Features of key distribution pattern Absence of trusted authority Decentralized model Self-initialization Self-securing

26 Construction of KDP Construction of KDP Key matrix Key matrix B B B B B B B B B B B B B B B2={5,6,8,9} B2={5,6,8,9} Ref: Group Protocols for Secure Wireless Ad Ref: Group Protocols for Secure Wireless Ad-hoc Networks, GMU 5 hoc Networks, GMU 5

27 Blom s s Key Distribution Scheme Used to update the keys Blom s s key for secure point to point communication between two nodes using :

28 Protocol Comparison Protocol Comparison Parameter/Protocol. Parameter/Protocol. Network Network wide wide Node Node specific specific KDP KDP based based Commo Commo n features features Authentication Authentication Forward Secrecy Forward Secrecy Backward Secrecy Backward Secrecy Power Consumption Power Consumption Memory Memory Consumption Consumption Scalability Scalability

29 Protocol Vs Security parameters Parameters/ Protocols. Authentication Arbitrated Group keying Pre deployed Backward Secrecy Forward Secrecy Power Consumption Memory Consumption Scalability

30 Purpose Vs Protocol Purpose Vs Protocol Operation/ Operation/ Protocol Protocol Arbitrated Arbitrated Groupkey Groupkey distribution distribution Pre Pre- Deployed Deployed Keying Keying Military. Military. Poor. Poor. Fair. Fair. Fair Fair Emergency Emergency Operation. Operation. Poor. Poor. Fair. Fair. Fair Fair General General purpose. purpose. Good. Good. Good. Good. Poor Poor

31 Questions??? Thank you