With the growing usage of wireless sensors in a variety of applications including Internet of Things, the security aspects of wireless sensor networks have been on priority for the researchers. Due to the constraints of resources in wireless sensor networks, it has been always a challenge to design efficient security protocols for wireless sensor networks. An novel elliptic curve signcryption based security protocol for wireless sensor networks has been presented in this paper, which provides anonymity, confidentiality, mutual authentication, forward security, secure key establishment, and key privacy at the same time providing resistance from replay attack, impersonation attack, insider attack, offline dictionary attack, and stolen-verifier attack. Results have revealed that the proposed elliptic curve signcryption based protocol consumes the least time in comparison to other protocols while providing the highest level of security.
Analysis of security threats in wireless sensor networkijwmn
Wireless Sensor Network(WSN) is an emerging technology and explored field of researchers worldwide
in the past few years, so does the need for effective security mechanisms. The sensing technology
combined with processing power and wireless communication makes it lucrative for being exploited in
abundance in future. The inclusion of wireless communication technology also incurs various types of
security threats due to unattended installation of sensor nodes as sensor networks may interact with
sensitive data and /or operate in hostile unattended environments. These security concerns be addressed
from the beginning of the system design. The intent of this paper is to investigate the security related
issues in wireless sensor networks. In this paper we have explored general security threats in wireless
sensor network with extensive study.
Wireless Sensor Networks: An Overview on Security Issues and ChallengesIJAEMSJORNAL
Wireless Sensor Networks (WSNs) are formed by deploying as large number of sensor nodes in an area for the surveillance of generally remote locations. A typical sensor node is made up of different components to perform the task of sensing, processing and transmitting data. WSNs are used for many applications in diverse forms from indoor deployment to outdoor deployment. The basic requirement of every application is to use the secured network. Providing security to the sensor network is a very challenging issue along with saving its energy. Many security threats may affect the functioning of these networks. WSNs must be secured to keep an attacker from hindering the delivery of sensor information and from forging sensor information as these networks are build for remote surveillance and unauthorized changes in the sensed data may lead to wrong information to the decision makers. This paper gives brief description about various security issues and security threats in WSNs.
Integration of security and authentication agent in ns 2 and leach protocol f...Zac Darcy
Wireless Sensor Networks
(WSN) is an emerging technology for attraction of researchers with its research
challenges and various application
domain
s
.
Today, WSN applications can be used in environmental
detection, Moni
toring system
, medical system,
military and industrial monitoring for ability to transform
human life in various aspects.
Depending on
applications
used
for WSNs,
security
is the biggest challenges
in
WSNs
and security aspect is essential for WSNs b
efore designing WSNs
.
The routing pro
tocol
s for
WSNs
need security services for transmission
exact and secure
data to the users through the network
. LEACH
(Low Energy Adaptive Clustering Hierarchy) is a routing protocol used in WSNs by arranging sensor
nodes into clusters.
Every sensor cluste
r is managed by a Cluster Head (CH) during the network operation
such
as routing and data aggregation from Cluster Member (CM). Therefore, security and authentication
is necessary between CH and CM. However, LEACH is lack of security.
T
his paper present
s
integration of
security and authentication between CH and CM on LEACH routing protocol. For the implementation of
this integration, NS
-
2 simulation software is use
d
and it is necessary to combine security agent into NS
-
2
tool for WSN
. But currently, NS
-
2 d
oes not support these features.
Therefore, the main aim of this paper is
to develop security and authentication agent into NS
-
2 and LEACH protocol for WSNs with the simulation
results
Analysis of wireless sensor networks security, attacks and challengeseSAT Publishing House
IJRET : International Journal of Research in Engineering and Technology is an international peer reviewed, online journal published by eSAT Publishing House for the enhancement of research in various disciplines of Engineering and Technology. The aim and scope of the journal is to provide an academic medium and an important reference for the advancement and dissemination of research results that support high-level learning, teaching and research in the fields of Engineering and Technology. We bring together Scientists, Academician, Field Engineers, Scholars and Students of related fields of Engineering and Technology
Abstract Recent advancements in MEMS technologies and development in the area of low power microcontrollers have resulted as implementation of wireless sensor networks in real life problem solving in areas like traffic monitoring, patient monitoring , battlefield surveillance. These wireless sensors are very small in size and are operated at low power for low data rate applications. WSN nodes include features like scalability, self-organizing, self-healing. WSN nodes face many challenges starting from deployment till their life span which is dependent on very low battery strength. Since these nodes are operated in unattended environments, many security threats are for them to survive. These nodes face variety of attacks at different layers of their architecture, ranging from physical stealing, tempering to reprogramming. Applying any traditional security mechanism over wireless sensor nodes is also not possible as those traditional algorithms or protocols consume very much processing and power due to their complexity. In this paper, we have mentioned. This paper aims at reporting an initial introduction of WSN, WSN architecture, challenges and security threats subsequently. Keywords: Wireless, Sensor, Threat, Security, Power, Node
A Security Framework for Replication Attacks in Wireless Sensor NetworksIJMER
International Journal of Modern Engineering Research (IJMER) is Peer reviewed, online Journal. It serves as an international archival forum of scholarly research related to engineering and science education.
A comparative study of physical attacks on wireless sensor networkseSAT Publishing House
IJRET : International Journal of Research in Engineering and Technology is an international peer reviewed, online journal published by eSAT Publishing House for the enhancement of research in various disciplines of Engineering and Technology. The aim and scope of the journal is to provide an academic medium and an important reference for the advancement and dissemination of research results that support high-level learning, teaching and research in the fields of Engineering and Technology. We bring together Scientists, Academician, Field Engineers, Scholars and Students of related fields of Engineering and Technology.
Multi-Tiered Communication Security Schemes in Wireless Ad-Hoc Sensor NetworksIDES Editor
Networks of wireless micro-sensors for monitoring
physical environments have emerged as an important new
application area for wireless technology. Key attributes of
these new types of networked systems are the severely
constrained computational and energy resources and an ad
hoc operational environment. This paper is a study of the
communication security aspects of these networks. Resource
limitations and specific architecture of sensor networks call
for customized security mechanisms. Our approach is to
classify the types of data existing in sensor networks, and
identify possible communication security threats according
to that classification. We propose a communication security
scheme where for each type of data we define a corresponding
security mechanism. By employing this multi-tiered security
architecture where each mechanism has different resource
requirements, we allow for efficient resource management,
which is essential for wireless sensor networks.
Analysis of security threats in wireless sensor networkijwmn
Wireless Sensor Network(WSN) is an emerging technology and explored field of researchers worldwide
in the past few years, so does the need for effective security mechanisms. The sensing technology
combined with processing power and wireless communication makes it lucrative for being exploited in
abundance in future. The inclusion of wireless communication technology also incurs various types of
security threats due to unattended installation of sensor nodes as sensor networks may interact with
sensitive data and /or operate in hostile unattended environments. These security concerns be addressed
from the beginning of the system design. The intent of this paper is to investigate the security related
issues in wireless sensor networks. In this paper we have explored general security threats in wireless
sensor network with extensive study.
Wireless Sensor Networks: An Overview on Security Issues and ChallengesIJAEMSJORNAL
Wireless Sensor Networks (WSNs) are formed by deploying as large number of sensor nodes in an area for the surveillance of generally remote locations. A typical sensor node is made up of different components to perform the task of sensing, processing and transmitting data. WSNs are used for many applications in diverse forms from indoor deployment to outdoor deployment. The basic requirement of every application is to use the secured network. Providing security to the sensor network is a very challenging issue along with saving its energy. Many security threats may affect the functioning of these networks. WSNs must be secured to keep an attacker from hindering the delivery of sensor information and from forging sensor information as these networks are build for remote surveillance and unauthorized changes in the sensed data may lead to wrong information to the decision makers. This paper gives brief description about various security issues and security threats in WSNs.
Integration of security and authentication agent in ns 2 and leach protocol f...Zac Darcy
Wireless Sensor Networks
(WSN) is an emerging technology for attraction of researchers with its research
challenges and various application
domain
s
.
Today, WSN applications can be used in environmental
detection, Moni
toring system
, medical system,
military and industrial monitoring for ability to transform
human life in various aspects.
Depending on
applications
used
for WSNs,
security
is the biggest challenges
in
WSNs
and security aspect is essential for WSNs b
efore designing WSNs
.
The routing pro
tocol
s for
WSNs
need security services for transmission
exact and secure
data to the users through the network
. LEACH
(Low Energy Adaptive Clustering Hierarchy) is a routing protocol used in WSNs by arranging sensor
nodes into clusters.
Every sensor cluste
r is managed by a Cluster Head (CH) during the network operation
such
as routing and data aggregation from Cluster Member (CM). Therefore, security and authentication
is necessary between CH and CM. However, LEACH is lack of security.
T
his paper present
s
integration of
security and authentication between CH and CM on LEACH routing protocol. For the implementation of
this integration, NS
-
2 simulation software is use
d
and it is necessary to combine security agent into NS
-
2
tool for WSN
. But currently, NS
-
2 d
oes not support these features.
Therefore, the main aim of this paper is
to develop security and authentication agent into NS
-
2 and LEACH protocol for WSNs with the simulation
results
Analysis of wireless sensor networks security, attacks and challengeseSAT Publishing House
IJRET : International Journal of Research in Engineering and Technology is an international peer reviewed, online journal published by eSAT Publishing House for the enhancement of research in various disciplines of Engineering and Technology. The aim and scope of the journal is to provide an academic medium and an important reference for the advancement and dissemination of research results that support high-level learning, teaching and research in the fields of Engineering and Technology. We bring together Scientists, Academician, Field Engineers, Scholars and Students of related fields of Engineering and Technology
Abstract Recent advancements in MEMS technologies and development in the area of low power microcontrollers have resulted as implementation of wireless sensor networks in real life problem solving in areas like traffic monitoring, patient monitoring , battlefield surveillance. These wireless sensors are very small in size and are operated at low power for low data rate applications. WSN nodes include features like scalability, self-organizing, self-healing. WSN nodes face many challenges starting from deployment till their life span which is dependent on very low battery strength. Since these nodes are operated in unattended environments, many security threats are for them to survive. These nodes face variety of attacks at different layers of their architecture, ranging from physical stealing, tempering to reprogramming. Applying any traditional security mechanism over wireless sensor nodes is also not possible as those traditional algorithms or protocols consume very much processing and power due to their complexity. In this paper, we have mentioned. This paper aims at reporting an initial introduction of WSN, WSN architecture, challenges and security threats subsequently. Keywords: Wireless, Sensor, Threat, Security, Power, Node
A Security Framework for Replication Attacks in Wireless Sensor NetworksIJMER
International Journal of Modern Engineering Research (IJMER) is Peer reviewed, online Journal. It serves as an international archival forum of scholarly research related to engineering and science education.
A comparative study of physical attacks on wireless sensor networkseSAT Publishing House
IJRET : International Journal of Research in Engineering and Technology is an international peer reviewed, online journal published by eSAT Publishing House for the enhancement of research in various disciplines of Engineering and Technology. The aim and scope of the journal is to provide an academic medium and an important reference for the advancement and dissemination of research results that support high-level learning, teaching and research in the fields of Engineering and Technology. We bring together Scientists, Academician, Field Engineers, Scholars and Students of related fields of Engineering and Technology.
Multi-Tiered Communication Security Schemes in Wireless Ad-Hoc Sensor NetworksIDES Editor
Networks of wireless micro-sensors for monitoring
physical environments have emerged as an important new
application area for wireless technology. Key attributes of
these new types of networked systems are the severely
constrained computational and energy resources and an ad
hoc operational environment. This paper is a study of the
communication security aspects of these networks. Resource
limitations and specific architecture of sensor networks call
for customized security mechanisms. Our approach is to
classify the types of data existing in sensor networks, and
identify possible communication security threats according
to that classification. We propose a communication security
scheme where for each type of data we define a corresponding
security mechanism. By employing this multi-tiered security
architecture where each mechanism has different resource
requirements, we allow for efficient resource management,
which is essential for wireless sensor networks.
HIERARCHICAL DESIGN BASED INTRUSION DETECTION SYSTEM FOR WIRELESS AD HOC SENS...IJNSA Journal
In recent years, wireless ad hoc sensor network becomes popular both in civil and military jobs. However, security is one of the significant challenges for sensor network because of their deployment in open and unprotected environment. As cryptographic mechanism is not enough to protect sensor network from external attacks, intrusion detection system needs to be introduced. Though intrusion prevention mechanism is one of the major and efficient methods against attacks, but there might be some attacks for which prevention method is not known. Besides preventing the system from some known attacks, intrusion detection system gather necessary information related to attack technique and help in the development of intrusion prevention system. In addition to reviewing the present attacks available in wireless sensor network this paper examines the current efforts to intrusion detection
system against wireless sensor network. In this paper we propose a hierarchical architectural design based intrusion detection system that fits the current demands and restrictions of wireless ad hoc sensor network. In this proposed intrusion detection system architecture we followed clustering mechanism to build a four level hierarchical network which enhances network scalability to large geographical area and use both anomaly and misuse detection techniques for intrusion detection. We introduce policy based detection mechanism as well as intrusion response together with GSM cell concept for intrusion detection architecture.
A Top-down Hierarchical Multi-hop Secure Routing Protocol for Wireless Sensor...ijasuc
This paper proposes a new top-down hierarchical, multi-hop, secure routing protocol for the wireless
sensor network, which is resilient to report fabrication attack. The report fabrication attack tries to
generate bogus reports by compromising the sensor nodes to mislead the environment monitoring
application executed by randomly deployed wireless sensor nodes. The proposed protocol relies on
symmetric key mechanism which is appropriate for random deployment of wireless sensor nodes. In the
proposed protocol, base station initiates the synthesis of secure hierarchical topology using top down
approach. The enquiry phase of the protocol provides assurance for the participation of all the cluster
heads in secure hierarchical topology formation. Further, this methodology takes care of failure of head
node or member node of a cluster. This protocol ensures confidentiality, integrity, and authenticity of the
final report of the monitoring application. The simulation results demonstrate the scalability of the
proposed protocol.
International Journal of Computational Engineering Research(IJCER) ijceronline
International Journal of Computational Engineering Research(IJCER) is an intentional online Journal in English monthly publishing journal. This Journal publish original research work that contributes significantly to further the scientific knowledge in engineering and Technology.
As the Supervisory Control and Data Acquisition (SCADA) system are deployed in infrastructures which are critical to the survival of a nation, they have emerged as a potential terrain for cyber-war, thus attracting the considered attention of ‘nation-states’. The analysis of worms like ‘stuxnet’ ‘flame’ and ‘duqu’ reveals the hand of a ‘nation-state’ in their design and deployment. Hence, the necessity to understand various issues in the defence of SCADA systems arises. The forensics of the SCADA system provide deep insight into the design and deployment of the worm (the malware) once the system is attacked. This is precisely the scope of this essay.
A review of security attacks and intrusion detection schemes in wireless sens...ijwmn
Wireless sensor networks are currently the greatest innovation in the field of telecommunications. WSNs
have a wide range of potential applications, including security and surveillance, control, actuation and
maintenance of complex systems and fine-grain monitoring of indoor and outdoor environments. However
security is one of the major aspects of Wireless sensor networks due to the resource limitations of sensor
nodes. Those networks are facing several threats that affect their functioning and their life. In this paper we
present security attacks in wireless sensor networks, and we focus on comparison and analysis of recent
Intrusion Detection schemes in WSNs.
A survey on bio inspired security in wireless sensor networkseSAT Journals
Abstract Wireless sensor networks usually comprise of a large number of nodes which are geographically dis- tributed and are not physically connected. These nodes are frequently used to sense private data and can be necessary to transmit confidential and critical data. Hence it is important to provide security for wireless sensor networks. Research is still ongoing in this field and many models have been proposed for providing security. Looking into the symbiotic nature of biological systems can give us valuable in- sights for computer networks. Because of the analo- gies between network security and how the biotic components react to perceived threats in their sur- roundings, Bio-inspired approaches for providing se- curity in networks are interesting to evaluate . Many theories from nature such as swarm intelligence, ant colony optimisation (ACO), web spider defence, bird flocking, human immune system and so forth have been used to tackle various problems in the network- ing domain. In this paper, we intend to outline and categorize the various security attacks we encounter in a wireless sensor network and review the proposed conventional security mechanisms for them and also compare it with an alternative novel approach, i.e bio-inspired approach. Keywords— Wireless sensor network (WSN), Bio-inspired, security, attacks
A SERVEY ON WIRELESS SENSOR NETWORK SECURITY ISSUES & CHALLENGESEditor IJCTER
A Wireless Sensor Network (WSN) is an evolving technology and getting significant attention due to its unlimited potential starts from domestic application to battlefield. Wireless
Sensor Networks(WSN) are a most challenging and emerging technology for the research due to
their vital scope in the field coupled with their low processing power and associated low energy.
Today wireless sensor networks are broadly used in environmental control, surveillance tasks,
monitoring, tracking and controlling etc. Sensor nodes are tiny, cheap, disposable and self-contained
battery powered computers, known as "motes”, which can accept input from an attached sensor,
process this input data and transmit the results wirelessly to the transit network. Due to the various
applications of WSN in homeland security and military, security is the major issue to be taken care
of. In this paper we discuss about The combination of these factors demands security for sensor
networks at design time to ensure operation safety, secrecy of sensitive data, and privacy for people
in sensor environments. Broadcast authentication is a critical security service in sensor networks; it
allows a sender to broadcast messages to multiple nodes in an authenticated way. µ TESLA and multi-level µTESLA have been proposed to provide such service for sensor networks.
Wireless ad hoc networks are autonomous nodes that communicate with each other in a
decentralized manner through multi hop radio network. Wireless nodes form a dynamic network
topology and communicate with each other directly without wireless access point. Wireless networks
are particularly vulnerable to intrusions, as they operate in open medium, and use cooperative
strategies for network communication.
Wireless sensor networks are made up of number of tiny mobile nodes, which
have the capability of computation, sensing and wireless network communication. The
energy efficiency of each node in such kind of networks is one of the important issues under
consideration. Thus for these networks, sensor nodes life time is basically depends on use of
routing protocols for routing operations in WSN. There are various routing protocols
proposed by different researchers, which are considered as efficient on the basis of
performance of network lifetime and energy scavenging. There are different routing
protocols introduced for WSN such as flat routing protocols, clustering routing protocols,
hierarchical routing protocols etc. On the other hand, there are basically two types of
WSNs, homogeneous and heterogeneous sensor networks. As WSN is vulnerable to different
types of security threats, there are many security methods presented with their own
advantages and disadvantages. Most of security methods are applied only on homogeneous
WSN, but recently some methods were presented to provide the routing security in
heterogeneous WSNs as well. In this paper, the different security threats and Intrusions in
WSNs are presented, with review of different security methods.
As of late, remote sensor organize (WSN) is
utilized in numerous application zones, for
example, checking, following, and controlling. For
some utilizations of WSN, security is an essential
necessity. In any case, security arrangements in
WSN vary from conventional systems because of
asset confinement and computational
requirements. This paper investigates security
arrangements: Tiny Sec, IEEE 802.15.4, Twists,
Mini SEC, LSec, LLSP, LISA, and Drawl in
WSN. The paper additionally introduces qualities,
security prerequisites, assaults, encryption
calculations, and operation modes. This paper is
thought to be valuable for security planners in
WSNs.
Integration of security and authentication agent in ns-2 and leach protocol f...Zac Darcy
Wireless Sensor Networks (WSN) is an emerging technology for attraction of researchers with its research
challenges and various application domains. Today, WSN applications can be used in environmental
detection, Monitoring system, medical system, military and industrial monitoring for ability to transform
human life in various aspects. Depending on applications used for WSNs, security is the biggest challenges
in WSNs and security aspect is essential for WSNs before designing WSNs. The routing protocols for WSNs
need security services for transmission exact and secure data to the users through the network. LEACH
(Low Energy Adaptive Clustering Hierarchy) is a routing protocol used in WSNs by arranging sensor
nodes into clusters. Every sensor cluster is managed by a Cluster Head (CH) during the network operation
such as routing and data aggregation from Cluster Member (CM). Therefore, security and authentication
is necessary between CH and CM. However, LEACH is lack of security. This paper presents integration of
security and authentication between CH and CM on LEACH routing protocol. For the implementation of
this integration, NS-2 simulation software is used and it is necessary to combine security agent into NS-2
tool for WSN. But currently, NS-2 does not support these features. Therefore, the main aim of this paper is
to develop security and authentication agent into NS-2 and LEACH protocol for WSNs with the simulation
results.
SECURITY IN WIRELESS SENSOR NETWORKS: COMPARATIVE STUDYijcsit
The security in wireless sensor networks (WSNS) is a very important issue. These networks may be exposed
it different attacks. With this in mind, researchers propose in this area variety of security techniques for
this purpose, and this article describes security in wireless sensor networks. Discussed threats and attacks
of wireless sensor networks. The article also aims to provide the basic information related to determining
essential requirements for the protection WSNs. Lastly, we mention some security mechanisms against
these threats and attacks in Wireless Sensor Network.
The security in wireless sensor networks (WSNS) is a very important issue. These networks may be exposed
it different attacks. With this in mind, researchers propose in this area variety of security techniques for
this purpose, and this article describes security in wireless sensor networks. Discussed threats and attacks
of wireless sensor networks. The article also aims to provide the basic information related to determining
essential requirements for the protection WSNs. Lastly, we mention some security mechanisms against
these threats and attacks in Wireless Sensor Network.
Wireless Sensor Network (WSN) has a huge range of applications such as battlefield,
surveillance, emergency rescue operation and smart home technology etc. Apart from its
inherent constraints such as limited memory and energy resources, when deployed in hostile
environmental conditions, the sensor nodes are vulnerable to physical capture and other
security constraints. These constraints put security as a major challenge for the researchers in
the field of computer networking. This paper reflects various issues and challenges related to
security of WSN, its security architecture. The paper also provides a discussion on various
security mechanisms deployed in WSN environment to overcome its security threats.
HIERARCHICAL DESIGN BASED INTRUSION DETECTION SYSTEM FOR WIRELESS AD HOC SENS...IJNSA Journal
In recent years, wireless ad hoc sensor network becomes popular both in civil and military jobs. However, security is one of the significant challenges for sensor network because of their deployment in open and unprotected environment. As cryptographic mechanism is not enough to protect sensor network from external attacks, intrusion detection system needs to be introduced. Though intrusion prevention mechanism is one of the major and efficient methods against attacks, but there might be some attacks for which prevention method is not known. Besides preventing the system from some known attacks, intrusion detection system gather necessary information related to attack technique and help in the development of intrusion prevention system. In addition to reviewing the present attacks available in wireless sensor network this paper examines the current efforts to intrusion detection
system against wireless sensor network. In this paper we propose a hierarchical architectural design based intrusion detection system that fits the current demands and restrictions of wireless ad hoc sensor network. In this proposed intrusion detection system architecture we followed clustering mechanism to build a four level hierarchical network which enhances network scalability to large geographical area and use both anomaly and misuse detection techniques for intrusion detection. We introduce policy based detection mechanism as well as intrusion response together with GSM cell concept for intrusion detection architecture.
A Top-down Hierarchical Multi-hop Secure Routing Protocol for Wireless Sensor...ijasuc
This paper proposes a new top-down hierarchical, multi-hop, secure routing protocol for the wireless
sensor network, which is resilient to report fabrication attack. The report fabrication attack tries to
generate bogus reports by compromising the sensor nodes to mislead the environment monitoring
application executed by randomly deployed wireless sensor nodes. The proposed protocol relies on
symmetric key mechanism which is appropriate for random deployment of wireless sensor nodes. In the
proposed protocol, base station initiates the synthesis of secure hierarchical topology using top down
approach. The enquiry phase of the protocol provides assurance for the participation of all the cluster
heads in secure hierarchical topology formation. Further, this methodology takes care of failure of head
node or member node of a cluster. This protocol ensures confidentiality, integrity, and authenticity of the
final report of the monitoring application. The simulation results demonstrate the scalability of the
proposed protocol.
International Journal of Computational Engineering Research(IJCER) ijceronline
International Journal of Computational Engineering Research(IJCER) is an intentional online Journal in English monthly publishing journal. This Journal publish original research work that contributes significantly to further the scientific knowledge in engineering and Technology.
As the Supervisory Control and Data Acquisition (SCADA) system are deployed in infrastructures which are critical to the survival of a nation, they have emerged as a potential terrain for cyber-war, thus attracting the considered attention of ‘nation-states’. The analysis of worms like ‘stuxnet’ ‘flame’ and ‘duqu’ reveals the hand of a ‘nation-state’ in their design and deployment. Hence, the necessity to understand various issues in the defence of SCADA systems arises. The forensics of the SCADA system provide deep insight into the design and deployment of the worm (the malware) once the system is attacked. This is precisely the scope of this essay.
A review of security attacks and intrusion detection schemes in wireless sens...ijwmn
Wireless sensor networks are currently the greatest innovation in the field of telecommunications. WSNs
have a wide range of potential applications, including security and surveillance, control, actuation and
maintenance of complex systems and fine-grain monitoring of indoor and outdoor environments. However
security is one of the major aspects of Wireless sensor networks due to the resource limitations of sensor
nodes. Those networks are facing several threats that affect their functioning and their life. In this paper we
present security attacks in wireless sensor networks, and we focus on comparison and analysis of recent
Intrusion Detection schemes in WSNs.
A survey on bio inspired security in wireless sensor networkseSAT Journals
Abstract Wireless sensor networks usually comprise of a large number of nodes which are geographically dis- tributed and are not physically connected. These nodes are frequently used to sense private data and can be necessary to transmit confidential and critical data. Hence it is important to provide security for wireless sensor networks. Research is still ongoing in this field and many models have been proposed for providing security. Looking into the symbiotic nature of biological systems can give us valuable in- sights for computer networks. Because of the analo- gies between network security and how the biotic components react to perceived threats in their sur- roundings, Bio-inspired approaches for providing se- curity in networks are interesting to evaluate . Many theories from nature such as swarm intelligence, ant colony optimisation (ACO), web spider defence, bird flocking, human immune system and so forth have been used to tackle various problems in the network- ing domain. In this paper, we intend to outline and categorize the various security attacks we encounter in a wireless sensor network and review the proposed conventional security mechanisms for them and also compare it with an alternative novel approach, i.e bio-inspired approach. Keywords— Wireless sensor network (WSN), Bio-inspired, security, attacks
A SERVEY ON WIRELESS SENSOR NETWORK SECURITY ISSUES & CHALLENGESEditor IJCTER
A Wireless Sensor Network (WSN) is an evolving technology and getting significant attention due to its unlimited potential starts from domestic application to battlefield. Wireless
Sensor Networks(WSN) are a most challenging and emerging technology for the research due to
their vital scope in the field coupled with their low processing power and associated low energy.
Today wireless sensor networks are broadly used in environmental control, surveillance tasks,
monitoring, tracking and controlling etc. Sensor nodes are tiny, cheap, disposable and self-contained
battery powered computers, known as "motes”, which can accept input from an attached sensor,
process this input data and transmit the results wirelessly to the transit network. Due to the various
applications of WSN in homeland security and military, security is the major issue to be taken care
of. In this paper we discuss about The combination of these factors demands security for sensor
networks at design time to ensure operation safety, secrecy of sensitive data, and privacy for people
in sensor environments. Broadcast authentication is a critical security service in sensor networks; it
allows a sender to broadcast messages to multiple nodes in an authenticated way. µ TESLA and multi-level µTESLA have been proposed to provide such service for sensor networks.
Wireless ad hoc networks are autonomous nodes that communicate with each other in a
decentralized manner through multi hop radio network. Wireless nodes form a dynamic network
topology and communicate with each other directly without wireless access point. Wireless networks
are particularly vulnerable to intrusions, as they operate in open medium, and use cooperative
strategies for network communication.
Wireless sensor networks are made up of number of tiny mobile nodes, which
have the capability of computation, sensing and wireless network communication. The
energy efficiency of each node in such kind of networks is one of the important issues under
consideration. Thus for these networks, sensor nodes life time is basically depends on use of
routing protocols for routing operations in WSN. There are various routing protocols
proposed by different researchers, which are considered as efficient on the basis of
performance of network lifetime and energy scavenging. There are different routing
protocols introduced for WSN such as flat routing protocols, clustering routing protocols,
hierarchical routing protocols etc. On the other hand, there are basically two types of
WSNs, homogeneous and heterogeneous sensor networks. As WSN is vulnerable to different
types of security threats, there are many security methods presented with their own
advantages and disadvantages. Most of security methods are applied only on homogeneous
WSN, but recently some methods were presented to provide the routing security in
heterogeneous WSNs as well. In this paper, the different security threats and Intrusions in
WSNs are presented, with review of different security methods.
As of late, remote sensor organize (WSN) is
utilized in numerous application zones, for
example, checking, following, and controlling. For
some utilizations of WSN, security is an essential
necessity. In any case, security arrangements in
WSN vary from conventional systems because of
asset confinement and computational
requirements. This paper investigates security
arrangements: Tiny Sec, IEEE 802.15.4, Twists,
Mini SEC, LSec, LLSP, LISA, and Drawl in
WSN. The paper additionally introduces qualities,
security prerequisites, assaults, encryption
calculations, and operation modes. This paper is
thought to be valuable for security planners in
WSNs.
Integration of security and authentication agent in ns-2 and leach protocol f...Zac Darcy
Wireless Sensor Networks (WSN) is an emerging technology for attraction of researchers with its research
challenges and various application domains. Today, WSN applications can be used in environmental
detection, Monitoring system, medical system, military and industrial monitoring for ability to transform
human life in various aspects. Depending on applications used for WSNs, security is the biggest challenges
in WSNs and security aspect is essential for WSNs before designing WSNs. The routing protocols for WSNs
need security services for transmission exact and secure data to the users through the network. LEACH
(Low Energy Adaptive Clustering Hierarchy) is a routing protocol used in WSNs by arranging sensor
nodes into clusters. Every sensor cluster is managed by a Cluster Head (CH) during the network operation
such as routing and data aggregation from Cluster Member (CM). Therefore, security and authentication
is necessary between CH and CM. However, LEACH is lack of security. This paper presents integration of
security and authentication between CH and CM on LEACH routing protocol. For the implementation of
this integration, NS-2 simulation software is used and it is necessary to combine security agent into NS-2
tool for WSN. But currently, NS-2 does not support these features. Therefore, the main aim of this paper is
to develop security and authentication agent into NS-2 and LEACH protocol for WSNs with the simulation
results.
SECURITY IN WIRELESS SENSOR NETWORKS: COMPARATIVE STUDYijcsit
The security in wireless sensor networks (WSNS) is a very important issue. These networks may be exposed
it different attacks. With this in mind, researchers propose in this area variety of security techniques for
this purpose, and this article describes security in wireless sensor networks. Discussed threats and attacks
of wireless sensor networks. The article also aims to provide the basic information related to determining
essential requirements for the protection WSNs. Lastly, we mention some security mechanisms against
these threats and attacks in Wireless Sensor Network.
The security in wireless sensor networks (WSNS) is a very important issue. These networks may be exposed
it different attacks. With this in mind, researchers propose in this area variety of security techniques for
this purpose, and this article describes security in wireless sensor networks. Discussed threats and attacks
of wireless sensor networks. The article also aims to provide the basic information related to determining
essential requirements for the protection WSNs. Lastly, we mention some security mechanisms against
these threats and attacks in Wireless Sensor Network.
Wireless Sensor Network (WSN) has a huge range of applications such as battlefield,
surveillance, emergency rescue operation and smart home technology etc. Apart from its
inherent constraints such as limited memory and energy resources, when deployed in hostile
environmental conditions, the sensor nodes are vulnerable to physical capture and other
security constraints. These constraints put security as a major challenge for the researchers in
the field of computer networking. This paper reflects various issues and challenges related to
security of WSN, its security architecture. The paper also provides a discussion on various
security mechanisms deployed in WSN environment to overcome its security threats.
Wireless Sensor Network (WSN) has a huge range of applications such as battlefield,surveillance, emergency rescue operation and smart home technology etc. Apart from its inherent constraints such as limited memory and energy resources, when deployed in hostile environmental conditions, the sensor nodes are vulnerable to physical capture and other security constraints. These constraints put security as a major challenge for the researchers in the field of computer networking. This paper reflects various issues and challenges related to security of WSN, its security architecture. The paper also provides a discussion on various security mechanisms deployed in WSN environment to overcome its security threats.
ENHANCED THREE TIER SECURITY ARCHITECTURE FOR WSN AGAINST MOBILE SINK REPLI...ijwmn
Recent developments on Wireless Sensor Networks have made their application in a wide range
such as military sensing and tracking, health monitoring, traffic monitoring, video surveillance and so on.
Wireless sensor nodes are restricted to computational resources, and are always deployed in a harsh,
unattended or unfriendly environment. Therefore, network security becomes a tough task and it involves
the authorization of admittance to data in a network. The problem of authentication and pair wise key
establishment in sensor networks with mobile sink is still not solved in the mobile sink replication attacks.
In q-composite key pre distribution scheme, a large number of keys are compromised by capturing a
small fraction of sensor nodes by the attacker. The attacker can easily take a control of the entire network
by deploying a replicated mobile sinks. Those mobile sinks which are preloaded with compromised keys
are used authenticate and initiate data communication with sensor node. To determine the above problem
the system adduces the three-tier security framework for authentication and pair wise key establishment
between mobile sinks and sensor nodes. The previous system used the polynomial key pre distribution
scheme for the sensor networks which handles sink mobility and continuous data delivery to the
neighbouring nodes and sinks, but this scheme makes high computational cost and reduces the life time of
sensors. In order to overcome this problem a random pair wise key pre distribution scheme is suggested
and further it helps to improve the network resilience. In addition to this an Identity Based Encryption is
used to encrypt the data and Mutual authentication scheme is proposed for the identification and
isolation of replicated mobile sink from the network.
A Survey on Security Issues to Detect Wormhole Attack in Wireless Sensor Networkpijans
Sensor nodes, when deployed to form Wireless sensor network operating under control of central authority
i.e. Base station are capable of exhibiting interesting applications due to their ability to be deployed
ubiquitously in hostile & pervasive environments. But due to same reason security is becoming a major
concern for these networks. Wireless sensor networks are vulnerable against various types of external and
internal attacks being limited by computation resources, smaller memory capacity, limited battery life,
processing power & lack of tamper resistant packaging. This survey paper is an attempt to analyze threats
to Wireless sensor networks and to report various research efforts in studying variety of routing attacks
which target the network layer. Particularly devastating attack is Wormhole attack- a Denial of Service
attack, where attackers create a low-latency link between two points in the network. With focus on survey of
existing methods of detecting Wormhole attacks, researchers are in process to identify and demarcate the
key research challenges for detection of Wormhole attacks in network layer.
Security Attacks and its Countermeasures in Wireless Sensor NetworksIJERA Editor
Wireless Sensor Networks have come to the forefront of the scientific community recently. Present WSNs typically communicate directly with a centralized controller or satellite. Going on the other hand, a smart WSN consists of a number of sensors spread across a geographical area; each sensor has wireless communication ability and sufficient intelligence for signal processing and networking of the data. This paper surveyed the different types of attacks, security related issues, and it’s Countermeasures with the complete comparison between Layer based Attacks in Wireless Sensor Networks
A SECURITY SUITE FOR WIRELESS BODY AREA NETWORKSIJNSA Journal
Wireless Body Area Networks (WBANs) have gained a lot of research attention in recent years since they offer tremendous benefits for remote health monitoring and continuous, real-time patient care. However, as with any wireless communication, data security in WBANs is a challenging design issue. Since such networks consist of small sensors placed on the human body, they impose resource and computational restrictions, thereby making the use of sophisticated and advanced encryption algorithms infeasible. This calls for the design of algorithms with a robust key generation / management scheme, which are reasonably resource optimal. This paper presents a security suite for WBANs, comprised of IAMKeys, an independent and adaptive key management scheme for improving the security of WBANs, and KEMESIS, a key management scheme for security in inter-sensor communication. The novelty of these schemes lies in the use of a randomly generated key for encrypting each data frame that is generated independently at both the sender and the receiver, eliminating the need for any key exchange. The simplicity of the encryption scheme, combined with the adaptability in key management makes the schemes simple, yet secure. The proposed algorithms are validated by performance analysis.
Next Generation Network: Security and Architectureijsrd.com
Wireless sensor networks will be widely deployed in the near future. While much research has focused on making these networks feasible and useful, security has received little attention. Wireless Sensor Networks (WSN) are a most challenging and emerging technology for the Research due to their vital scope in the field coupled with their low processing power and associated low energy. As wireless sensor networks continue to grow, so does the need for effective security mechanisms. Because sensor networks may interact with sensitive data and/or operate in hostile unattended environments, it is imperative that these security concerns be addressed from the beginning of the system design staring with a brief overview of the sensor networks security, a review is made of and how to provide the security in the wireless sensor networks. This paper studies the security problems, Requirement, Architecture of WSN and different platform, characterized by severely constrained computational and energy resources, and an ad hoc operational environment.
Secure and Efficient DiDrip Protocol for Improving Performance of WSNsINFOGAIN PUBLICATION
Wireless Sensor Networks consists of a set of resource constrained devices called nodes that communicate wirelessly with each other. Wireless Sensor Networks have become a key application in number of technologies. It also measures the unit of vulnerability to security threats. Several Protocols are projected to make them secure. Some of the protocols within the sensor network specialize in securing data. These protocols are named as data discovery and dissemination protocols. The data discovery and dissemination protocol for wireless sensor networks are utilized for distributing management commands and altering configuration parameters to the sensor nodes. All existing data discovery and dissemination protocols primarily suffer from two drawbacks. Basically, they are support centralized approach (only single station can distribute data item).This approach is not suitable for multiple owner-multiple users. Second, the protocols are not designed with security in mind. This Paper proposes the first distributed knowledge discovery and dissemination protocol called DiDrip which is safer than the existing one. The protocol permits multiple owners to authorize many network users with altogether totally different priorities to at an equivalent time and directly flow into data items to sensor nodes.
A NOVEL TWO-STAGE ALGORITHM PROTECTING INTERNAL ATTACK FROM WSNSIJCNC
Wireless sensor networks (WSNs) consists of small nodes with constrain capabilities. It enables numerous
applications with distributed network infrastructure. With its nature and application scenario, security of
WSN had drawn a great attention. In malicious environments for a functional WSN, security mechanisms
are essential. Malicious or internal attacker has gained attention as the most challenging attacks to
WSNs. Many works have been done to secure WSN from internal attacks but most of them relay on either
training data set or predefined thresholds. It is a great challenge to find or gain knowledge about the
Malicious. In this paper, we develop the algorithm in two stages. Initially, Abnormal Behaviour
Identification Mechanism (ABIM) which uses cosine similarity. Finally, Dempster-Shafer theory (DST)is
used. Which combine multiple evidences to identify the malicious or internal attacks in a WSN. In this
method we do not need any predefined threshold or tanning data set of the nodes.
Public encryption with two ack approach to mitigate wormhole attack in wsneSAT Journals
Abstract Wireless Sensor Network provides a solution for various applications like nuclear power plant, military. This type of application required continuous monitoring. WSN is unprotected by various attacks; wormhole attack is one of among them. In this attack an attacker able to receive a packet from one location and drop it into another location. We propose an algorithm to defend wormhole attack, which is based on public key encryption and acknowledgement based. Proposed algorithm provides secure communication and detects misbehaving nodes. Index Terms: Wireless Sensor Network, wormhole Attack
SECURITY AND KEY MANAGEMENT CHALLENGES OVER WSN (A SURVEY) IJCSES Journal
Wireless sensor networks (WSNs) have turned to be the backbone of most present-day information technology, which supports the service-oriented architecture in a major activity. Sensor nodes and its restricted and limited resources have been a real challenge because there’s a great engagement with
sensor nodes and Internet Of things (IoT). WSN is considered to be the base stone of IoT which has been widely used recently in too many applications like smart cities, industrial internet, connected cars, connected health care systems, smart grids, smart farming and it's widely used in both military and civilian
applications now, such as monitoring of ambient conditions related to the environment, precious species and critical infrastructures. Secure communication and data transfer among the nodes are strongly needed due to the use of wireless technologies that are easy to eavesdrop, in order to steal its important information. However, is hard to achieve the desired performance of both WSNs and IoT and many critical
issues about sensor networks are still open. The major research areas in WSN is going on hardware, operating system of WSN, localization, synchronization, deployment, architecture, programming models, data aggregation and dissemination, database querying, architecture, middleware, quality of service and security. In This paper we discuss in detail all about Wireless Sensor Networks, its classification, types,
topologies, attack models and the nodes and all related issues and complications. We also preview too many challenges about sensor nodes and the proposed solutions till now and we make a spot ongoing research activities and issues that affect security and performance of Wireless Sensor Network as well.
Then we discuss what’s meant by security objectives, requirements and threat models. Finally, we make a
spot on key management operations, goals, constraints, evaluation metrics, different encryption key types
and dynamic key management schemes.
Similar to A NOVEL SECURITY PROTOCOL FOR WIRELESS SENSOR NETWORKS BASED ON ELLIPTIC CURVE SIGNCRYPTION (20)
Vehicle Ad Hoc Networks (VANETs) have become a viable technology to improve traffic flow and safety on the roads. Due to its effectiveness and scalability, the Wingsuit Search-based Optimised Link State Routing Protocol (WS-OLSR) is frequently used for data distribution in VANETs. However, the selection of MultiPoint Relays (MPRs) plays a pivotal role in WS-OLSR's performance. This paper presents an improved MPR selection algorithm tailored to WS-OLSR, designed to enhance the overall routing efficiency and reduce overhead. The analysis found that the current OLSR protocol has problems such as redundancy of HELLO and TC message packets or failure to update routing information in time, so a WS-OLSR routing protocol based on improved-MPR selection algorithm was proposed. Firstly, factors such as node mobility and link changes are comprehensively considered to reflect network topology changes, and the broadcast cycle of node HELLO messages is controlled through topology changes. Secondly, a new MPR selection algorithm is proposed, considering link stability issues and nodes. Finally, evaluate its effectiveness in terms of packet delivery ratio, end-to-end delay, and control message overhead. Simulation results demonstrate the superior performance of our improved MR selection algorithm when compared to traditional approaches.
A Novel Medium Access Control Strategy for Heterogeneous Traffic in Wireless ...IJCNCJournal
So far, Wireless Body Area Networks (WBANs) have played a pivotal role in driving the development of intelligent healthcare systems with broad applicability across various domains. Each WBAN consists of one or more types of sensors that can be embedded in clothing, attached directly to the body, or even implanted beneath an individual's skin. These sensors typically serve asingle application. However, the traffic generated by each sensor may have distinct requirements. This diversity necessitates a dual approach: tailored treatment based on the specific needs of each traffic typeand the fulfillment of application requirements, such asreliability and timeliness. Never the less, the presence of energy constraints and the unreliable nature of wireless communications make QoS provisioning under such networks a non-trivial task. In this context, the current paper introduces a novel Medium AccessControl (MAC) strategy for the regular traffic applications of WBANs, designed to significantly enhance efficiency when compared to the established MAC protocols IEEE 802.15.4 and IEEE 802.15.6, with a particular focus on improving reliability, timeliness, and energy efficiency.
May_2024 Top 10 Read Articles in Computer Networks & Communications.pdfIJCNCJournal
The International Journal of Computer Networks & Communications (IJCNC) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of Computer Networks & Communications. The journal focuses on all technical and practical aspects of Computer Networks & data Communications. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on advanced networking concepts and establishing new collaborations in these areas.
A Topology Control Algorithm Taking into Account Energy and Quality of Transm...IJCNCJournal
The efficient use of energy in wireless sensor networks is critical for extending node lifetime. The network topology is one of the factors that have a significant impact on the energy usage at the nodes and the quality of transmission (QoT) in the network. We propose a topology control algorithm for software-defined wireless sensor networks (SDWSNs) in this paper. Our method is to formulate topology control algorithm as a nonlinear programming (NP) problem with the objective to optimizing two metrics, maximum communication range, and desired degree. This NP problem is solved at the SDWSN controller by employing the genetic algorithm (GA) to determine the best topology. The simulation results show that the proposed algorithm outperforms the MaxPower algorithm in terms of average node degree and energy expansion ratio.
Multi-Server user Authentication Scheme for Privacy Preservation with Fuzzy C...IJCNCJournal
The integration of artificial intelligence technology with a scalable Internet of Things (IoT) platform facilitates diverse smart communication services, allowing remote users to access services from anywhere at any time. The multi-server environment within IoT introduces a flexible security service model, enabling users to interact with any server through a single registration. To ensure secure and privacy preservation services for resources, an authentication scheme is essential. Zhao et al. recently introduced a user authentication scheme for the multi-server environment, utilizing passwords and smart cards, claiming resilience against well-known attacks. This paper conducts cryptanalysis on Zhao et al.'s scheme, focusing on denial of service and privacy attacks, revealing a lack of user-friendliness. Subsequently, we propose a new multi-server user authentication scheme for privacy preservation with fuzzy commitment over the IoT environment, addressing the shortcomings of Zhao et al.'s scheme. Formal security verification of the proposed scheme is conducted using the ProVerif simulation tool. Through both formal and informal security analyses, we demonstrate that the proposed scheme is resilient against various known attacks and those identified in Zhao et al.'s scheme.
Advanced Privacy Scheme to Improve Road Safety in Smart Transportation SystemsIJCNCJournal
In -Vehicle Ad-Hoc Network (VANET), vehicles continuously transmit and receive spatiotemporal data with neighboring vehicles, thereby establishing a comprehensive 360-degree traffic awareness system. Vehicular Network safety applications facilitate the transmission of messages between vehicles that are near each other, at regular intervals, enhancing drivers' contextual understanding of the driving environment and significantly improving traffic safety. Privacy schemes in VANETs are vital to safeguard vehicles’ identities and their associated owners or drivers. Privacy schemes prevent unauthorized parties from linking the vehicle's communications to a specific real-world identity by employing techniques such as pseudonyms, randomization, or cryptographic protocols. Nevertheless, these communications frequently contain important vehicle information that malevolent groups could use to Monitor the vehicle over a long period. The acquisition of this shared data has the potential to facilitate the reconstruction of vehicle trajectories, thereby posing a potential risk to the privacy of the driver. Addressing the critical challenge of developing effective and scalable privacy-preserving protocols for communication in vehicle networks is of the highest priority. These protocols aim to reduce the transmission of confidential data while ensuring the required level of communication. This paper aims to propose an Advanced Privacy Vehicle Scheme (APV) that periodically changes pseudonyms to protect vehicle identities and improve privacy. The APV scheme utilizes a concept called the silent period, which involves changing the pseudonym of a vehicle periodically based on the tracking of neighboring vehicles. The pseudonym is a temporary identifier that vehicles use to communicate with each other in a VANET. By changing the pseudonym regularly, the APV scheme makes it difficult for unauthorized entities to link a vehicle's communications to its real-world identity. The proposed APV is compared to the SLOW, RSP, CAPS, and CPN techniques. The data indicates that the efficiency of APV is a better improvement in privacy metrics. It is evident that the AVP offers enhanced safety for vehicles during transportation in the smart city.
April 2024 - Top 10 Read Articles in Computer Networks & CommunicationsIJCNCJournal
The International Journal of Computer Networks & Communications (IJCNC) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of Computer Networks & Communications. The journal focuses on all technical and practical aspects of Computer Networks & data Communications. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on advanced networking concepts and establishing new collaborations in these areas.
DEF: Deep Ensemble Neural Network Classifier for Android Malware DetectionIJCNCJournal
Malware is one of the threats to security of computer networks and information systems. Since malware instances are available sufficiently, there is increased interest among researchers on usage of Artificial Intelligence (AI). Of late AI-enabled methods such as machine learning (ML) and deep learning paved way for solving many real-world problems. As it is a learning-based approach, accumulated training samples help in improving thequality of training and thus leveraging malware detection accuracy. Existing deep learning methods are focusing on learning-based malware detection systems. However, there is need for improving the state of the art through ensemble approach. Towards this end, in this paper we proposed a framework known as Deep Ensemble Framework (DEF) for automatic malware detection. The framework obtains features from training samples. From given malware instance a grayscale image is generated. There is another process to extract the opcode sequences. Convolutional Neural Network (CNN) and Long Short Term Memory (LSTM) techniques are used to obtain grayscale image and opcode sequence respectively. Afterwards, a stacking ensemble is employed in order to achieve efficient malware detection and classification. Malware samples collected fromthe Internet sources and Microsoft are used for theempirical study. An algorithm known as Ensemble Learning for Automatic Malware Detection (EL-AML) is proposed to realize our framework. Another algorithm named Pre-Process is proposed to assist the EL-AML algorithm for obtaining intermediate features required by CNN and LSTM.Empirical study reveals that our framework outperforms many existing methods in terms of speed-up and accuracy.
High Performance NMF Based Intrusion Detection System for Big Data IOT TrafficIJCNCJournal
With the emergence of smart devices and the Internet of Things (IoT), millions of users connected to the network produce massive network traffic datasets. These vast datasets of network traffic, Big Data are challenging to store, deal with and analyse using a single computer. In this paper we developed parallel implementation using a High Performance Computer (HPC) for the Non-Negative Matrix Factorization technique as an engine for an Intrusion Detection System (HPC-NMF-IDS). The large IoT traffic datasets of order of millions samples are distributed evenly on all the computing cores for both storage and speedup purpose. The distribution of computing tasks involved in the Matrix Factorization takes into account the reduction of the communication cost between the computing cores. The experiments we conducted on the proposed HPC-IDS-NMF give better results than the traditional ML-based intrusion detection systems. We could train the HPC model with datasets of one million samples in only 31 seconds instead of the 40 minutes using one processor), that is a speed up of 87 times. Moreover, we have got an excellent detection accuracy rate of 98% for KDD dataset.
A Novel Medium Access Control Strategy for Heterogeneous Traffic in Wireless ...IJCNCJournal
So far, Wireless Body Area Networks (WBANs) have played a pivotal role in driving the development of intelligent healthcare systems with broad applicability across various domains. Each WBAN consists of one or more types of sensors that can be embedded in clothing, attached directly to the body, or even implanted beneath an individual's skin. These sensors typically serve asingle application. However, the traffic generated by each sensor may have distinct requirements. This diversity necessitates a dual approach: tailored treatment based on the specific needs of each traffic typeand the fulfillment of application requirements, such asreliability and timeliness. Never the less, the presence of energy constraints and the unreliable nature of wireless communications make QoS provisioning under such networks a non-trivial task. In this context, the current paper introduces a novel Medium AccessControl (MAC) strategy for the regular traffic applications of WBANs, designed to significantly enhance efficiency when compared to the established MAC protocols IEEE 802.15.4 and IEEE 802.15.6, with a particular focus on improving reliability, timeliness, and energy efficiency.
A Topology Control Algorithm Taking into Account Energy and Quality of Transm...IJCNCJournal
The efficient use of energy in wireless sensor networks is critical for extending node lifetime. The network topology is one of the factors that have a significant impact on the energy usage at the nodes and the quality of transmission (QoT) in the network. We propose a topology control algorithm for software-defined wireless sensor networks (SDWSNs) in this paper. Our method is to formulate topology control algorithm as a nonlinear programming (NP) problem with the objective to optimizing two metrics, maximum communication range, and desired degree. This NP problem is solved at the SDWSN controller by employing the genetic algorithm (GA) to determine the best topology. The simulation results show that the proposed algorithm outperforms the MaxPower algorithm in terms of average node degree and energy expansion ratio.
Multi-Server user Authentication Scheme for Privacy Preservation with Fuzzy C...IJCNCJournal
The integration of artificial intelligence technology with a scalable Internet of Things (IoT) platform facilitates diverse smart communication services, allowing remote users to access services from anywhere at any time. The multi-server environment within IoT introduces a flexible security service model, enabling users to interact with any server through a single registration. To ensure secure and privacy preservation services for resources, an authentication scheme is essential. Zhao et al. recently introduced a user authentication scheme for the multi-server environment, utilizing passwords and smart cards, claiming resilience against well-known attacks. This paper conducts cryptanalysis on Zhao et al.'s scheme, focusing on denial of service and privacy attacks, revealing a lack of user-friendliness. Subsequently, we propose a new multi-server user authentication scheme for privacy preservation with fuzzy commitment over the IoT environment, addressing the shortcomings of Zhao et al.'s scheme. Formal security verification of the proposed scheme is conducted using the ProVerif simulation tool. Through both formal and informal security analyses, we demonstrate that the proposed scheme is resilient against various known attacks and those identified in Zhao et al.'s scheme.
Advanced Privacy Scheme to Improve Road Safety in Smart Transportation SystemsIJCNCJournal
In -Vehicle Ad-Hoc Network (VANET), vehicles continuously transmit and receive spatiotemporal data with neighboring vehicles, thereby establishing a comprehensive 360-degree traffic awareness system. Vehicular Network safety applications facilitate the transmission of messages between vehicles that are near each other, at regular intervals, enhancing drivers' contextual understanding of the driving environment and significantly improving traffic safety. Privacy schemes in VANETs are vital to safeguard vehicles’ identities and their associated owners or drivers. Privacy schemes prevent unauthorized parties from linking the vehicle's communications to a specific real-world identity by employing techniques such as pseudonyms, randomization, or cryptographic protocols. Nevertheless, these communications frequently contain important vehicle information that malevolent groups could use to Monitor the vehicle over a long period. The acquisition of this shared data has the potential to facilitate the reconstruction of vehicle trajectories, thereby posing a potential risk to the privacy of the driver. Addressing the critical challenge of developing effective and scalable privacy-preserving protocols for communication in vehicle networks is of the highest priority. These protocols aim to reduce the transmission of confidential data while ensuring the required level of communication. This paper aims to propose an Advanced Privacy Vehicle Scheme (APV) that periodically changes pseudonyms to protect vehicle identities and improve privacy. The APV scheme utilizes a concept called the silent period, which involves changing the pseudonym of a vehicle periodically based on the tracking of neighboring vehicles. The pseudonym is a temporary identifier that vehicles use to communicate with each other in a VANET. By changing the pseudonym regularly, the APV scheme makes it difficult for unauthorized entities to link a vehicle's communications to its real-world identity. The proposed APV is compared to the SLOW, RSP, CAPS, and CPN techniques. The data indicates that the efficiency of APV is a better improvement in privacy metrics. It is evident that the AVP offers enhanced safety for vehicles during transportation in the smart city.
DEF: Deep Ensemble Neural Network Classifier for Android Malware DetectionIJCNCJournal
Malware is one of the threats to security of computer networks and information systems. Since malware instances are available sufficiently, there is increased interest among researchers on usage of Artificial Intelligence (AI). Of late AI-enabled methods such as machine learning (ML) and deep learning paved way for solving many real-world problems. As it is a learning-based approach, accumulated training samples help in improving thequality of training and thus leveraging malware detection accuracy. Existing deep learning methods are focusing on learning-based malware detection systems. However, there is need for improving the state of the art through ensemble approach. Towards this end, in this paper we proposed a framework known as Deep Ensemble Framework (DEF) for automatic malware detection. The framework obtains features from training samples. From given malware instance a grayscale image is generated. There is another process to extract the opcode sequences. Convolutional Neural Network (CNN) and Long Short Term Memory (LSTM) techniques are used to obtain grayscale image and opcode sequence respectively. Afterwards, a stacking ensemble is employed in order to achieve efficient malware detection and classification. Malware samples collected fromthe Internet sources and Microsoft are used for theempirical study. An algorithm known as Ensemble Learning for Automatic Malware Detection (EL-AML) is proposed to realize our framework. Another algorithm named Pre-Process is proposed to assist the EL-AML algorithm for obtaining intermediate features required by CNN and LSTM.Empirical study reveals that our framework outperforms many existing methods in terms of speed-up and accuracy.
High Performance NMF based Intrusion Detection System for Big Data IoT TrafficIJCNCJournal
With the emergence of smart devices and the Internet of Things (IoT), millions of users connected to the network produce massive network traffic datasets. These vast datasets of network traffic, Big Data are challenging to store, deal with and analyse using a single computer. In this paper we developed parallel implementation using a High Performance Computer (HPC) for the Non-Negative Matrix Factorization technique as an engine for an Intrusion Detection System (HPC-NMF-IDS). The large IoT traffic datasets of order of millions samples are distributed evenly on all the computing cores for both storage and speedup purpose. The distribution of computing tasks involved in the Matrix Factorization takes into account the reduction of the communication cost between the computing cores. The experiments we conducted on the proposed HPC-IDS-NMF give better results than the traditional ML-based intrusion detection systems. We could train the HPC model with datasets of one million samples in only 31 seconds instead of the 40 minutes using one processor), that is a speed up of 87 times. Moreover, we have got an excellent detection accuracy rate of 98% for KDD dataset.
IoT Guardian: A Novel Feature Discovery and Cooperative Game Theory Empowered...IJCNCJournal
Cyber intrusion attacks increasingly target the Internet of Things (IoT) ecosystem, exploiting vulnerable devices and networks. Malicious activities must be identified early to minimize damage and mitigate threats. Using actual benign and attack traffic from the CICIoT2023 dataset, this WORK aims to evaluate and benchmark machine-learning techniques for IoT intrusion detection. There are four main phases to the system. First, the CICIoT2023 dataset is refined to remove irrelevant features and clean up missing and duplicate data. The second phase employs statistical models and artificial intelligence to discover novel features. The most significant features are then selected in the third phase based on cooperative game theory. Using the original CICIoT2023 dataset and a dataset containing only novel features, we train and evaluate a variety of machine learning classifiers. On the original dataset, Random Forest achieved the highest accuracy of 99%. Still, with novel features, Random Forest's performance dropped only slightly (96%) while other models achieved significantly lower accuracy. As a whole, the work contributes substantial contributions to tailored feature engineering, feature selection, and rigorous benchmarking of IoT intrusion detection techniques. IoT networks and devices face continuously evolving threats, making it necessary to develop robust intrusion detection systems.
Enhancing Traffic Routing Inside a Network through IoT Technology & Network C...IJCNCJournal
IoT networking uses real items as stationary or mobile nodes. Mobile nodes complicate networking. Internet of Things (IoT) networks have a lot of control overhead messages because devices are mobile. These signals are generated by the constant flow of control data as such device identity, geographical positioning, node mobility, device configuration, and others. Network clustering is a popular overhead communication management method. Many cluster-based routing methods have been developed to address system restrictions. Node clustering based on the Internet of Things (IoT) protocol, may be used to cluster all network nodes according to predefined criteria. Each cluster will have a Smart Designated Node. SDN cluster management is efficient. Many intelligent nodes remain in the network. The network design spreads these signals. This paper presents an intelligent and responsive routing approach for clustered nodes in IoT networks. An existing method builds a new sub-area clustered topology. The Nodes Clustering Based on the Internet of Things (NCIoT) method improves message transmission between any two nodes. This will facilitate the secure and reliable interchange of healthcare data between professionals and patients. NCIoT is a system that organizes nodes in the Internet of Things (IoT) by grouping them together based on their proximity. It also picks SDN routes for these nodes. This approach involves selecting one option from a range of choices and preparing for likely outcomes problem addressing limitations on activities is a primary focus during the review process. Predictive inquiry employs the process of analyzing data to forecast and anticipate future events. This document provides an explanation of compact units. The Predictive Inquiry Small Packets (PISP) improved its backup system and partnered with SDN to establish a routing information table for each intelligent node, resulting in higher routing performance. Both principal and secondary roads are available for use. The simulation findings indicate that NCIoT algorithms outperform CBR protocols. Enhancements lead to a substantial 78% boost in network performance. In addition, the end-to-end latency dropped by 12.5%. The PISP methodology produces 5.9% more inquiry packets compared to alternative approaches. The algorithms are constructed and evaluated against academic ones.
IoT Guardian: A Novel Feature Discovery and Cooperative Game Theory Empowered...IJCNCJournal
Cyber intrusion attacks increasingly target the Internet of Things (IoT) ecosystem, exploiting vulnerable devices and networks. Malicious activities must be identified early to minimize damage and mitigate threats. Using actual benign and attack traffic from the CICIoT2023 dataset, this WORK aims to evaluate and benchmark machine-learning techniques for IoT intrusion detection. There are four main phases to the system. First, the CICIoT2023 dataset is refined to remove irrelevant features and clean up missing and duplicate data. The second phase employs statistical models and artificial intelligence to discover novel features. The most significant features are then selected in the third phase based on cooperative game theory. Using the original CICIoT2023 dataset and a dataset containing only novel features, we train and evaluate a variety of machine learning classifiers. On the original dataset, Random Forest achieved the highest accuracy of 99%. Still, with novel features, Random Forest's performance dropped only slightly (96%) while other models achieved significantly lower accuracy. As a whole, the work contributes substantial contributions to tailored feature engineering, feature selection, and rigorous benchmarking of IoT intrusion detection techniques. IoT networks and devices face continuously evolving threats, making it necessary to develop robust intrusion detection systems.
** Connect, Collaborate, And Innovate: IJCNC - Where Networking Futures Take ...IJCNCJournal
The International Journal of Computer Networks & Communications (IJCNC) is a bi monthly open access peer-reviewed journal that publishes articles which contribute new results in all areas of Computer Networks & Communications. The journal focuses on all technical and practical aspects of Computer Networks & data Communications. The goal of this journal is to bring together researchers and practitioners from academia and industry to focus on advanced networking concepts and establishing new collaborations in these areas.
Enhancing Traffic Routing Inside a Network through IoT Technology & Network C...IJCNCJournal
IoT networking uses real items as stationary or mobile nodes. Mobile nodes complicate networking. Internet of Things (IoT) networks have a lot of control overhead messages because devices are mobile. These signals are generated by the constant flow of control data as such device identity, geographical positioning, node mobility, device configuration, and others. Network clustering is a popular overhead communication management method. Many cluster-based routing methods have been developed to address system restrictions. Node clustering based on the Internet of Things (IoT) protocol, may be used to cluster all network nodes according to predefined criteria. Each cluster will have a Smart Designated Node. SDN cluster management is efficient. Many intelligent nodes remain in the network. The network design spreads these signals. This paper presents an intelligent and responsive routing approach for clustered nodes in IoT networks. An existing method builds a new sub-area clustered topology. The Nodes Clustering Based on the Internet of Things (NCIoT) method improves message transmission between any two nodes. This will facilitate the secure and reliable interchange of healthcare data between professionals and patients. NCIoT is a system that organizes nodes in the Internet of Things (IoT) by grouping them together based on their proximity. It also picks SDN routes for these nodes. This approach involves selecting one option from a range of choices and preparing for likely outcomes problem addressing limitations on activities is a primary focus during the review process. Predictive inquiry employs the process of analyzing data to forecast and anticipate future events. This document provides an explanation of compact units. The Predictive Inquiry Small Packets (PISP) improved its backup system and partnered with SDN to establish a routing information table for each intelligent node, resulting in higher routing performance. Both principal and secondary roads are available for use. The simulation findings indicate that NCIoT algorithms outperform CBR protocols. Enhancements lead to a substantial 78% boost in network performance. In addition, the end-to-end latency dropped by 12.5%. The PISP methodology produces 5.9% more inquiry packets compared to alternative approaches. The algorithms are constructed and evaluated against academic ones.
Automobile Management System Project Report.pdfKamal Acharya
The proposed project is developed to manage the automobile in the automobile dealer company. The main module in this project is login, automobile management, customer management, sales, complaints and reports. The first module is the login. The automobile showroom owner should login to the project for usage. The username and password are verified and if it is correct, next form opens. If the username and password are not correct, it shows the error message.
When a customer search for a automobile, if the automobile is available, they will be taken to a page that shows the details of the automobile including automobile name, automobile ID, quantity, price etc. “Automobile Management System” is useful for maintaining automobiles, customers effectively and hence helps for establishing good relation between customer and automobile organization. It contains various customized modules for effectively maintaining automobiles and stock information accurately and safely.
When the automobile is sold to the customer, stock will be reduced automatically. When a new purchase is made, stock will be increased automatically. While selecting automobiles for sale, the proposed software will automatically check for total number of available stock of that particular item, if the total stock of that particular item is less than 5, software will notify the user to purchase the particular item.
Also when the user tries to sale items which are not in stock, the system will prompt the user that the stock is not enough. Customers of this system can search for a automobile; can purchase a automobile easily by selecting fast. On the other hand the stock of automobiles can be maintained perfectly by the automobile shop manager overcoming the drawbacks of existing system.
Student information management system project report ii.pdfKamal Acharya
Our project explains about the student management. This project mainly explains the various actions related to student details. This project shows some ease in adding, editing and deleting the student details. It also provides a less time consuming process for viewing, adding, editing and deleting the marks of the students.
Final project report on grocery store management system..pdfKamal Acharya
In today’s fast-changing business environment, it’s extremely important to be able to respond to client needs in the most effective and timely manner. If your customers wish to see your business online and have instant access to your products or services.
Online Grocery Store is an e-commerce website, which retails various grocery products. This project allows viewing various products available enables registered users to purchase desired products instantly using Paytm, UPI payment processor (Instant Pay) and also can place order by using Cash on Delivery (Pay Later) option. This project provides an easy access to Administrators and Managers to view orders placed using Pay Later and Instant Pay options.
In order to develop an e-commerce website, a number of Technologies must be studied and understood. These include multi-tiered architecture, server and client-side scripting techniques, implementation technologies, programming language (such as PHP, HTML, CSS, JavaScript) and MySQL relational databases. This is a project with the objective to develop a basic website where a consumer is provided with a shopping cart website and also to know about the technologies used to develop such a website.
This document will discuss each of the underlying technologies to create and implement an e- commerce website.
About
Indigenized remote control interface card suitable for MAFI system CCR equipment. Compatible for IDM8000 CCR. Backplane mounted serial and TCP/Ethernet communication module for CCR remote access. IDM 8000 CCR remote control on serial and TCP protocol.
• Remote control: Parallel or serial interface.
• Compatible with MAFI CCR system.
• Compatible with IDM8000 CCR.
• Compatible with Backplane mount serial communication.
• Compatible with commercial and Defence aviation CCR system.
• Remote control system for accessing CCR and allied system over serial or TCP.
• Indigenized local Support/presence in India.
• Easy in configuration using DIP switches.
Technical Specifications
Indigenized remote control interface card suitable for MAFI system CCR equipment. Compatible for IDM8000 CCR. Backplane mounted serial and TCP/Ethernet communication module for CCR remote access. IDM 8000 CCR remote control on serial and TCP protocol.
Key Features
Indigenized remote control interface card suitable for MAFI system CCR equipment. Compatible for IDM8000 CCR. Backplane mounted serial and TCP/Ethernet communication module for CCR remote access. IDM 8000 CCR remote control on serial and TCP protocol.
• Remote control: Parallel or serial interface
• Compatible with MAFI CCR system
• Copatiable with IDM8000 CCR
• Compatible with Backplane mount serial communication.
• Compatible with commercial and Defence aviation CCR system.
• Remote control system for accessing CCR and allied system over serial or TCP.
• Indigenized local Support/presence in India.
Application
• Remote control: Parallel or serial interface.
• Compatible with MAFI CCR system.
• Compatible with IDM8000 CCR.
• Compatible with Backplane mount serial communication.
• Compatible with commercial and Defence aviation CCR system.
• Remote control system for accessing CCR and allied system over serial or TCP.
• Indigenized local Support/presence in India.
• Easy in configuration using DIP switches.
Event Management System Vb Net Project Report.pdfKamal Acharya
In present era, the scopes of information technology growing with a very fast .We do not see any are untouched from this industry. The scope of information technology has become wider includes: Business and industry. Household Business, Communication, Education, Entertainment, Science, Medicine, Engineering, Distance Learning, Weather Forecasting. Carrier Searching and so on.
My project named “Event Management System” is software that store and maintained all events coordinated in college. It also helpful to print related reports. My project will help to record the events coordinated by faculties with their Name, Event subject, date & details in an efficient & effective ways.
In my system we have to make a system by which a user can record all events coordinated by a particular faculty. In our proposed system some more featured are added which differs it from the existing system such as security.
Quality defects in TMT Bars, Possible causes and Potential Solutions.PrashantGoswami42
Maintaining high-quality standards in the production of TMT bars is crucial for ensuring structural integrity in construction. Addressing common defects through careful monitoring, standardized processes, and advanced technology can significantly improve the quality of TMT bars. Continuous training and adherence to quality control measures will also play a pivotal role in minimizing these defects.
Overview of the fundamental roles in Hydropower generation and the components involved in wider Electrical Engineering.
This paper presents the design and construction of hydroelectric dams from the hydrologist’s survey of the valley before construction, all aspects and involved disciplines, fluid dynamics, structural engineering, generation and mains frequency regulation to the very transmission of power through the network in the United Kingdom.
Author: Robbie Edward Sayers
Collaborators and co editors: Charlie Sims and Connor Healey.
(C) 2024 Robbie E. Sayers
Water scarcity is the lack of fresh water resources to meet the standard water demand. There are two type of water scarcity. One is physical. The other is economic water scarcity.
A NOVEL SECURITY PROTOCOL FOR WIRELESS SENSOR NETWORKS BASED ON ELLIPTIC CURVE SIGNCRYPTION
1. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
DOI: 10.5121/ijcnc.2019.11506 93
A NOVEL SECURITY PROTOCOL FOR WIRELESS
SENSOR NETWORKS BASED ON ELLIPTIC CURVE
SIGNCRYPTION
Anuj Kumar Singh1
and B.D.K.Patro2
1
Dr. A.P.J. Abdul Kalam Technical University, Lucknow, (U.P), India
2
Rajkiya Engineering College, Kannauj, (U.P.), India
ABSTRACT
With the growing usage of wireless sensors in a variety of applications including Internet of Things, the
security aspects of wireless sensor networks have been on priority for the researchers. Due to the
constraints of resources in wireless sensor networks, it has been always a challenge to design efficient
security protocols for wireless sensor networks. An novel elliptic curve signcryption based security
protocol for wireless sensor networks has been presented in this paper, which provides anonymity,
confidentiality, mutual authentication, forward security, secure key establishment, and key privacy at the
same time providing resistance from replay attack, impersonation attack, insider attack, offline dictionary
attack, and stolen-verifier attack. Results have revealed that the proposed elliptic curve signcryption based
protocol consumes the least time in comparison to other protocols while providing the highest level of
security.
KEYWORDS
Wireless Sensor Network, Security,Protocol, Signcryption, Elliptic Curve
1. INTRODUCTION
To monitor the harsh, hostile, or unattended environments, there is a need forhaving dedicated
infrastructure which is capable of collecting the required data when needed. The Wireless Sensor
Network (WSN) composed of tiny sensors distributed spatially, is such an infrastructure which is
used to monitor and gather data about the physical situations of an environment or location. WSN
collects the data using wireless sensors also called as nodes. Generally, the sensor node comprises
of a microcontroller, analog-to-digital converter (ADC), transceiver,powersource, and
sensors.The schematic diagram of a wireless sensor node architecture has been depicted in Figure
1 (a).The role of the microcontroller is to processes the collected data and to regulate the
functions of the other elements of the sensor node. The transceiver is equipped with an antenna
and performs the functions of both the transmitter and the receiver. Two categories of memory
are used in a sensor node, the user memory which is used to store user data, and the program
memory which is used to program the device. Sensor node operates on power and thus a power
source, commonly a battery is deployed to supply power to the sensor node. Sensor nodes are also
equipped with sensors, which are hardware devices capable of measuring the change in the
physical conditions of surroundings like temperature, pressure, etc. ADC is deployed to convert
analog values to the digital signals.
2. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
94
The architecture of a WSN typically consists of three components - a gateway, sensor nodes, and
the user [1]. The sensor nodes and gateway are connected through wireless links, and the data
among them is passed using radio signals. Gateway also known as a sink, gathers all the data and
transmits this data to the user through the Internet or a network. The basic architecture of a WSN
has been demonstrated in Figure 1(b). Except for the gateway and the sensor node, the user is
another party involved in the communication. The communication between the gateway and the
sensor node is highly insecure because of the usage of wireless links. Due to the capability of
monitoring, sensing, and controlling, WSNs are being applied in the areas including
environmental monitoring, medical, military, healthcare, industry, robotics and many more.
Furthermore, with the evolution of the Internet of Things (IoT), application of wireless sensors
have grown to a large scale, since wireless sensors are an important component of IoT
Figure 1(a). Sensor Node Architecture Figure 1(b). Architecture of a WSN
1.1. Security Requirements of WSN
Besides confidentiality, non-repudiation, authentication, and integrity, which are the major
security features for any system, WSNs require the implementation of some more security
attributes, since they function in the wireless medium. It has been pointed out by Lopez et al. [2]
that for WSNs authorization, availability, data freshness, forward security, and self-organization
must be efficiently implemented in addition to confidentiality, authentication, non-repudiation,
and integrity. The security features that must be satisfied by a WSN are listed below.
Confidentiality: The data gathered from sensor nodes must be sent securely to the gateway and
the user.
Integrity: It is the assurance that the data collected by sensor nodes has not been altered in transit.
Mutual Authentication: User, gateway, and the sensor nodes must authenticate each other before
transmitting any data.
Session Key Establishment: Upon successful mutual authentication by all the parties, the session
key must be secretly established between the communicating parties.
Non-Repudiation: It is the assurance that any party in communication cannot deny after sending
or receiving the data.
3. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
95
Availability: Each wireless sensor node must be able to send the data all the time. Therefore, all
the sensor nodes must be kept secure from heavy computations and denial of service attacks.
Authorization: A sensor node must be permitted to perform the computations assigned to it in the
network only if, it is authorized to do so.
Data Freshness: Every node must collect data without delay and the data must not be forged.
Self-Organization: The sensor nodes must be independently able to organize and heal themselves
in abnormal or problematic conditions.
Forward Security: When a new node enters the WSN as a fresh node or in the position of the old
node, it cannot obtain the previous messages. Similarly, when a node exits the network it is
infeasible for it to get the future messages.
1.2 WSN Security Challenges
Designing efficient security protocols for WSNs have been a continuous challenge due to the
following technical limitations.
• Less Computational Capacity - Wireless sensor nodes typically possess a processing capacity
of few MIPS, RAM of few 100s KB and flash memory of less than 1MB. Due to the less
computing capability of wireless sensors, designing and implementing security schemes
which satisfy all the required security functionalities is very challenging.
• Limited Power Supply – Since sensor nodes operate on limited battery power, the security
mechanisms should be selected and implemented such that they avoid heavy computations.
• Unreliable Communication – The data is sent by the sensor nodes through wireless channels
which are unreliable medium and are vulnerable to many threats and attacks. This requires
the implementation of strong security schemes which thwart the attacks on WSN.
These limitations enforce the two major challenges in securing WSNs – threats and the attacks on
WSNs, and difficulties in implementing efficient security measures to counter these threats and
attacks. Dhakne and Chatur [3] have presented an exhaustive survey over attacks made on WSNs
and divided them into five categories – attacks on authentication, attacks on privacy, attacks
based on perspectives, attacks on layers, and other attacks. The detailed classification of attacks
on WSNs has been publicized in Figure 2.
Figure 2. Taxonomy of attacks on WSN
4. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
96
Since wireless sensors are resource-constrained devices, it hasalways challenging to design and
implement efficient security schemes for WSNs satisfying all the security requirements while
simultaneously providing resistance to all the threats and attacks.
2. RELATED WORK
Various security protocols for WSNs based on different cryptographic systems with different
level of security have been proposed by different authors. But the recent focus of the researchers
has been on designing Elliptic Curve Cryptography (ECC) based security mechanisms for WSNs,
since ECC based solutions are suitable for applications involving low computing power devices
like wireless sensors [4]. Therefore in this section, the security protocols for WSNs based on
elliptic curves proposed by different authors have been highlighted.
Choi et al. [5] presented an ECC based authentication mechanism for WSNs which addressed the
security flaws of session key attacksensor energy exhausting attack, and stolen smart card attack,
in the protocol given by Shi and Gong [6].
Wu et al. [7] designed a mutual authentication scheme for the mobile network, which provides
forward security and resistance against insider attack, de-synchronization attack, forgery attack,
replay attack, and known-key attack.
Amin et al. [8] suggested a 3-factor key agreement and authentication scheme which was an
improvement over the protocol developed by Farash et al. [9]. They stated that their protocol
provides additional security features of identity change and smartcard revocation phases, at the
same time protecting from stolen smart-card attack, user impersonation attack, session-specific
attack, and password guessing attack.
Y.H. Park and Y. Park [10] suggested a 3-factor ECC based key-agreement and biometric
authentication scheme which provides user anonymity, forward security, intraceability, mutual
authentication, secure password update and can resist from stolen smart card attack, user
impersonation attack, replay attack, man-in-the-middle attack, and off-line password guessing
attack.
Later, Jiang et al. [11] proved that scheme of Amin et al. [8] is prone to lost smart card attack,
KSSTI (known-session specific temporary information) attack, and tracking attack. They also
designed a Rabin Cryptosystem based 3-factor authentication and key establishment protocol
which overcome all the weaknesses of the protocol given by Amin et al.
Jung et al. [12] exposed that the protocol given by Chang et al. [13] cannot protect against
password guessing, session key compromise, and user impersonation. Furthermore, Jung et al.
pointed out that Chang’s protocol puts a high computational load on the gateway. They also
designed an anonymous key establishment and authentication scheme for WSNs overcoming
security flaws of Chang et al. scheme while consuming less computational cost.
Wang et al. [14] proved that Jung’s [12] protocol is exposed to impersonation attack and offline
dictionary attack. They also revealed that Park & Park’s [10] scheme was unable to satisfy user
anonymity and was also weak against an offline dictionary attack. Then they proposed a 3-factor
user authentication scheme for WSNs which overcame the weaknesses of the schemes given by
Jung et al. and Park et al.
5. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
97
Li et al. [15] revealed that Jiang’s [11] protocol lacks user-friendliness, is inapplicable to IoT
environment, and is vulnerable to KSSTI attack. They designed an anonymous 3-factor
authentication scheme for WSNs which can be used for the IoT environment. Moreover, they
claimed that this scheme provides all the necessary security functionalities and is computationally
efficient.
Recently, Zhang et al. [16] suggested an elliptic curve-based key exchange and authentication
mechanism for WSNs which provides mutual authentication, key establishment, key privacy, user
anonymity and resistance from off-line dictionary attack, replay attack, insider attack,
impersonation attack, stolen verifier attack, and compromised sensor node attack. But, this
scheme consumes more total computational time and puts the high computational load on the
gateway, in comparison to the other similar protocols.
3. A BRIEF REVIEW OF ZHANG’S PROTOCOL
In this section, a brief review of Zhang’s protocol has been presented. As mentioned in the related
work discussed in section 2, the protocol of Zhang et al. [16] enforces heavy computations on the
gateway and consumes more total computational time. The three parties involved in the protocol
are the user𝑈, gateway𝐺𝑊𝑁, and the sensor node𝑆𝑖. The protocol has been divided into three
phases – first is the setup phase, second is the registration phase, and last is the authenticated key
exchange phase. In the setup phase, global parameters for the protocols are selected. If a user 𝑈
wants to collect the data from the sensor node 𝑆𝑖 then it has to register with the gateway
node𝐺𝑊𝑁. Moreover,each sensornode𝑆𝑖also registers with the gateway𝐺𝑊𝑁. User registration
and sensor node registration is done in the registration phase using a secure channel. Here, only
the computations done by the gateway node have been analyzed. The detailed protocol can be
referred from [16]. The steps carried out by the gateway in Zhang’s protocol are given below. The
symbols used in these steps are:
𝑙𝑎𝑏𝑒𝑙 – session label; 𝑋, 𝑇, 𝑐1, 𝑠 𝑚, 𝑠 𝑎- values computed by the user; 𝑆 𝐺𝑁 – secret key of the
gateway node; 𝑃 – the base point of elliptic curve;𝐻1, 𝐻3, 𝐻4 - hash computations; 𝐺𝑁 – gateway
identity; 𝑆𝑖 – sensor node identity; 𝑌, 𝐴𝑢𝑡ℎ 𝑆 𝑖
- values computed by the sensor node; 𝑇𝐺𝑁, 𝑇𝑆 𝑖
∗
, 𝑇𝑆 𝑖
–
timestamps; ∆𝑇 – expected transmission delay; 𝜎 𝐺𝑁 - signature of 𝑟𝐺𝑁 signed by the gateway.
1. Upon receiving the message {𝑙𝑎𝑏𝑒𝑙, 𝑋, 𝑇, 𝑐1, 𝑠 𝑚, 𝑠 𝑎} from the user, the gateway node computes
the following:
(i) 𝑉 = 𝑆 𝐺𝑁 𝑇
(ii) 𝑅3
∗
= 𝑠 𝑎 𝑃 − 𝑐1 𝑉 − 𝑠 𝑚 𝑇
(iii) 𝑐1
∗
= 𝐻1(𝑃, 𝑇, 𝑅3
∗
, 𝑋, 𝑙𝑎𝑏𝑒𝑙)
(iv) Checks if 𝑐1 = 𝑐1
∗
(v) 𝐾(𝐺𝑁,𝑆 𝑖) = 𝐻3(𝐺𝑁, 𝑆𝑖, 𝑆 𝐺𝑁)
(vi) 𝐴𝑢𝑡ℎ 𝐺𝑁 = 𝐻4(𝐾(𝐺𝑁,𝑆 𝑖), 𝑋, 𝑙𝑎𝑏𝑙𝑒, 𝑇𝐺𝑁)
2. Upon receiving the message {𝑆𝑖, 𝑌, 𝑇𝑆 𝑖
, 𝐴𝑢𝑡ℎ 𝑆 𝑖
} form the sensor node𝑆𝑖, the gateway performs
the following computations:
(i) Checks if 𝑇𝑆 𝑖
∗
− 𝑇𝑆 𝑖
≤ ∆𝑇
(ii) Computes 𝐾(𝐺𝑁,𝑆 𝑖) = 𝐻3(𝐺𝑁, 𝑆𝑖, 𝑆 𝐺𝑁) and verify the validity of𝐴𝑢𝑡ℎ 𝑆 𝑖
.
(iii) Computes 𝑟𝐺𝑁 = 𝐻1(𝑙𝑎𝑏𝑒𝑙, 𝑋, 𝑇, 𝑐1, 𝑠 𝑚, 𝑠 𝑎, 𝑌)
(iv) Creates the signature 𝜎 𝐺𝑁 = 𝑠𝑖𝑔𝑛 𝑆 𝐺𝑁
(𝑟𝐺𝑁)
6. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
98
The most time-consuming operation in elliptic curve based security schemes is the elliptic curve
point multiplication (ECPM) operation. Moreover, the time consumed by all the operations is
very small as compared to the ECPM operation. Therefore, the count of ECPM operations can be
used for the analysis of computational time. In Zhang’s protocol, the gateway node 𝐺𝑊𝑁 is
required to execute four ECPM operations out of which one ECPM operation is executed in the
step (i) of point no. 1 and three ECPM operations are executed in step (ii) of point no. 1. No
ECPM operation is executed in the computations mentioned in point no.2. A total of ten ECPM
operations are executed by Zhang’s protocol. This means that the gateway node 𝐺𝑊𝑁 bears the
40 % computation overhead of the whole protocol, which is the major drawback of Zhang’s
protocol. The computational overhead on the gateway node 𝐺𝑊𝑁 as well as the total
computational time of the protocol can be reduced by using elliptic curve based signcryption
which has been discussed in the next section.
4. PRELIMINARIES
This section provides an introduction to the basic concepts which have been applied in designing
the proposed protocol.
4.1. Mathematics of Elliptic Curve
For cryptographic applications, the elliptic curves defined by Weierstrass Equation 𝑦2
= 𝑥3
+
𝐴𝑥 + 𝐵 over finite field 𝐹𝑞 are used, where 𝐴, 𝐵 ∈ 𝐹𝑞 are constants such that4𝐴3
+ 27𝐵2
≠ 0.
The main reason for using the Weierstrass Equation for defining elliptic curve is that, frameworks
for implementation are available in many programming languages including java and python. An
elliptic curve symbolized by 𝐸 over 𝐹𝑞 is the set of all the points (𝑥, 𝑦) along with a distinct point
𝑂known as the point on infinity. These points are represented as:
𝐸(𝐹𝑞) = {(𝑥, 𝑦) ∈ 𝐹𝑞 × 𝐹𝑞: 𝑦2
= 𝑥3
+ 𝐴𝑥 + 𝐵} ∪ {𝑂}
The operation and rules for elliptic curve 𝐸(𝐹𝑞) are given below.
• Identity Element – For each point 𝑅 ∈ 𝐸(𝐹𝑞), there subsists an identity element 𝑂 such that
𝑂 + 𝑅 = 𝑅 + 𝑂 = 𝑅
• Point Addition – Let 𝑄, 𝑅 ∈ 𝐹𝑞 be the two points on elliptic curve𝐸, where 𝑄 = (𝑥1, 𝑦1) and
𝑅 = (𝑥2, 𝑦2) and𝑄 ≠ ±𝑅. The addition of 𝑄𝑎𝑛𝑑𝑅 is defined as𝑄 + 𝑅 = (𝑥3, 𝑦3), where 𝑥3
and 𝑦3 are given by:
𝑥3 = 𝜆2
− 𝑥1 − 𝑥2and𝑦3 = 𝜆(𝑥1 − 𝑥3) − 𝑦1
with𝜆 =
𝑦2−𝑦1
𝑥2−𝑥1
if 𝑄 ≠ 𝑅 and 𝜆 =
3𝑥1
2+𝐴
2𝑦1
if 𝑄 = 𝑅
• Point Multiplication – Let 𝑄 ∈ 𝐸(𝐹𝑞) and an integer𝑘. The multiplication of point 𝑄 with 𝑘
is defined by𝑘𝑄 = 𝑄 + 𝑄 + ⋯ + 𝑄(𝑘𝑡𝑖𝑚𝑒𝑠).
• Negative – Let 𝑄 = (𝑥, 𝑦) ∈ 𝐸(𝐹𝑞) then the negative of point 𝑄 is defined as − 𝑄 = (𝑥, −𝑦)
and𝑄 + (−𝑄) = 𝑂. Moreover, −𝑂 = 𝑂.
7. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
99
4.2. Strength of Elliptic Curve Cryptography
The strength of the elliptic curve-based cryptosystem is ensured by the three computationally hard
problems given below. An elliptic curve 𝐸(𝐹𝑞) has been considered in the definition of these
problems.
1. Elliptic Curve Based Discrete Logarithmic Problem (ECDLP) – For known two points𝑄, 𝑅 ∈
𝐸(𝐹𝑞), it is computationally infeasible to get an integer𝑘 so that𝑅 = 𝑘𝑄 [17].
2. Elliptic Curve Based Diffie-Hellman Problem (ECDHP) – Given a point𝑄 ∈ 𝐸(𝐹𝑞), and
consider two other points 𝑅 = 𝑎𝑄 and 𝑆 = 𝑏𝑄 on the same elliptic curve𝐸(𝐹𝑞), where𝑎, 𝑏 ∈
𝐼𝑛𝑡𝑒𝑔𝑒𝑟. Determining a point 𝑇 = 𝑎𝑏𝑄 is computationally hard [18].
3. Elliptic Curve Based Decision Diffie-Hellman Problem (ECDDHP) - Given a point𝑄 ∈
𝐸(𝐹𝑞), and consider three other points𝑅 = 𝑎𝑄,𝑆 = 𝑏𝑄 and𝑇 = 𝑐𝑄. It is computationally
infeasible to conclude that if𝑇 = 𝑎𝑏𝑄 [19].
4.3. Overview of Signcryption
Signcryption which integrates confidentiality and authentication in a single-phase logically was
proposed by Y. Zheng [20]. Zheng showed that encryption consumes 50% less time in
computation and 85% less bandwidth than the signature-then-encryption process which is
traditionally followed. Y. Zheng and H. Imai [21] applied elliptic curves in signcryption and
proposed the first signcryption mechanism based on the elliptic curve. They proved that elliptic
curve signcryption consumes 58% less time and 40% less communication bandwidth than the
signature-then-encryption mechanism based on the elliptic curve. For low computing power
devices (LCPDs) it is wise to use elliptic curve signcryption schemes, since it saves a huge
amount of computational time and communication bandwidth, while also providing many
security attributes including authentication, secure key establishment, confidentiality, non-
repudiation, integrity, unforgeability, and forward security [4]. The elliptic curve signcryption
scheme proposed by Y. Zheng and H. Imai [21] has been publicized in Figure 3 to provide a
glimpse that how elliptic curves can be used in designing signcryption schemes. The process of
signcryption is carried out in three phases – first is the initialization phase, second is the
signcryption phase and, last is the un-signcryption phase. In the initialization phase, the global
public parameters and key pairs are selected. Signcryption phase implements confidentiality and
signature functionality. In the un-signcryption phase decryption and signature verification is
carried out. In Figure 4 the sender is Alice and the receiver is Bob, Msg is the message sent by the
Alice to the Bob, and SECDSS is Shortened Elliptic Curve Digital Signature Standard.
8. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
100
{c, d, s}
Public Parameters are Selected
E: An elliptic curve on GF(pw
)
(p ≥ 2160
and w = 1 or p = 2 and w ≥ 160)
q: A large prime number with order (pw
-1).
G: Random point on E having order q.
HSH: One-way hash function.
KSH: Keyed one-way hash function.
EN: Symmetric encryption
DE: Symmetric decryption
Initialization Phase
Key Pairs of Alice and Bob are Chosen
(i) For Alice
Private key: Random vx < q
Public key: Px = vx G
(ii) For Bob
Private key: Random vy < q
Public key : Py = vy G
Signcryption by Alice
• Randomly selects u < q
• (k, l)=HSH(uPy)
• c = ENk (Msg)
• d = KSHl (Msg, blind_info)
• s = u/(d + vx) mod q
• v = svy mod q
• (k, l) = HSH(vPx + vdG)
When SECDSS1 is used
• (k, l) = HSH (vG + vdPx),
When SECDSS2 is used
• Msg = DEk(c), Accept Msg if
KSHl (Msg, blind_info) = d
Un-signcryption by Bob
Figure 3. Elliptic Curve based Signcryption by Zheng and Imai [21]
5. PROPOSED PROTOCOL
In this section, a novel elliptic curve signcryption based security protocol for wireless sensor
networks has been proposed and elucidated in detail. The proposed security protocol presented
here has three phases – first is setup phase, second is the registration phase, and the third is the
signcryption and key-establishment phase. The symbols and notations utilized in the proposed
protocol are mentioned in Table 1.
5.1. Setup Phase
In the setup phase, global parameters for the system are selected by the gateway. The gateway
also generates its private and public keys in this phase. The steps of the setup phase are:
1. The gateway selects an elliptic curve 𝐸: 𝑦2
= 𝑥3
+ 𝐴𝑥 + 𝐵over the finite field 𝐹𝑞with curve
parameters {𝑞, 𝐴, 𝐵, 𝐺, 𝑛} satisfying 4𝐴3
+ 27𝐵2
≠ 0 and having point at infinity𝑂.
2. The gateway selects a private key 𝑣 𝐺 ∈ 𝑍 𝑛 and generates its public key𝑃𝐺 = 𝑣 𝐺 𝐺.
3. The gateway also selects the hash function𝐻: {0 , 1}∗
→ {0 , 1}𝑙
.
4. All the public parameters { 𝐹𝑞 , 𝐸(𝐹𝑞), 𝑞, 𝐴, 𝐵, 𝐺, 𝑛, 𝑃, 𝐺, 𝐻} are made available to all the
parties in the WSN.
9. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
101
Table 1. Notations and symbols used in proposed protocol.
Symbol Notation
Fq Finite prime field of size q
E Elliptic curve over Fq
A,B Curve parameters for E
G Generator of 𝐸 with order n
q.n Two large prime numbers
IDU User identity
IDG Gateway identity
PWU Password of the user
H Hash computation
TG Time stamp of the gateway
TSi Time stamp of the sensor node
⊕ Exclusive OR
K Established shared key
T Current timestamp
t Average transmission delay
5.2. Registration Phase
A user willing to collect the data from a sensor node 𝑆𝑖, has to register itself to the gateway.
Moreover, the sensor node 𝑆𝑖 has also to register with the gateway node. The registration of the
user to the gateway has been shown in Figure 4. All the messages in the following steps of the
registration phase are sent using a secure channel.
1. The user selects its identity and password as {𝐼𝐷 𝑢, 𝑃𝑊𝑢}.
2. User computes 𝑃𝑢 = 𝐼𝐷 𝑢 𝐺 and transmits the message {𝑃𝑢}to the gateway.
3. On receiving the public key {𝑃𝑢} from the user, the gateway computes the following:
• Generates the key 𝐾 𝐺𝑈 = 𝐻(𝑣 𝐺 𝑃𝑢)
• Creates the ciphertext𝑐1 = 𝐸 𝐾𝐺𝑈(𝐼𝐷 𝐺)
• Calculates the intermediate value𝑟1 = 𝐻(𝑐1 ⊕ 𝐾 𝐺𝑈)
• Calculates another intermediate value 𝑤1 = 𝑣 𝐺/𝑟1
• Computes 𝑇1 = 𝑟1 𝐺
The gateway sends the signcrypted text {𝑐1, 𝑇1, 𝑃G} to the user.
4. Upon receiving {𝑐1, 𝑇1, 𝑃G}from the gateway, the user computes𝐾 𝐺𝑈
∗
= 𝐻(𝐼𝐷 𝑢 𝑃𝐺),𝑑1 =
𝐷 𝐾 𝐺𝑈
∗(𝑐1),𝑟1
∗
= 𝐻(𝑐1 ⊕ 𝐾 𝐺𝑈
∗
), and𝑇1
∗
= 𝑟1
∗
𝐺. If 𝑇1
∗
= 𝑇1then the gateway is successfully
authenticated by the user, and then the user computes 𝐻(𝑃𝑊𝑢)and𝑐 𝑟 = 𝑑1 + 𝐻(𝑃𝑊𝑢).
Finally the user saves the credential𝑐 𝑟.
A sensor node 𝑆𝑖 willing to register itself to the gateway sends the request containing𝐼𝐷𝑆𝑖 to the
gateway. On receiving the request from sensor 𝑆𝑖 gateway computes a secret key 𝐾 𝐺𝑆 𝑖
=
𝐻(𝐼𝐷𝑆𝑖 , 𝐼𝐷 𝐺, 𝑣 𝐺)and send 𝐾 𝐺𝑆 𝑖
to the sensor node.
10. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
102
USER GATEWAY
,u uID PW GID
u uP ID G= Private Key nGv Z
{ }uP Public Key G GP v G=
( )uGU GK H v P=
( )1 GUK Gc E ID=
( )1 1 GUr H c K=
1 1T rG=
{𝑐1, 𝑇1, 𝑃𝐺}
( )* uGU GK H ID P=
( )11 *GUKd D c=
( )1 1* *GUr H c K=
1 1* *T r G=
If 1 1*T T= then Gateway is authenticated.
Compute ( )uH PW
Save credential 1 ( )r uc d H PW= +
5.3. Signcryption and Key Establishment Phase
In this phase mutual authentication, confidentiality, and key establishment functionalities are
implemented. The user, gateway, and the sensor node authenticate each other. After the
successful execution of all the steps of this phase, a secret session key is generated and distributed
securely between the sensor node and the user. Signcryption and key establishment phase has
been demonstrated in Figure 5. The steps are given below.
Figure 4. Registration of user with the gateway.
1. The user selects a private number 𝑥 ∈ 𝑍 𝑛 and computes𝑋 = 𝑥𝐺. It also denote the session
label𝐿 = (𝐼𝐷 𝐺, 𝐼𝐷𝑠𝑖). The user then performs the following computations -
• Retrieve 𝑑1 = 𝑐 𝑟 − 𝐻(𝑃𝑊𝑢)
• Compute the key 𝐾 𝑈𝐺 = 𝐻(𝐼𝐷 𝑈 𝑃𝐺)
• Compute the ciphertext𝑐2 = 𝐸 𝐾𝑈𝐺(𝑑1)
• Compute 𝑟2 = 𝐻(𝑐2 ⊕ 𝐾 𝑈𝐺)
• Calculate𝑤2 = 𝐼𝐷 𝑈/𝑟2 , and𝑇2 = 𝑟2 𝐺.
The user combines the signcrypted text {𝑐2, 𝑇2, 𝑤2}with{𝐿, 𝑋, 𝑃 𝑈} and sends the message
{𝐿, 𝑋, 𝑃 𝑈, 𝑐2, 𝑇2, 𝑤2} to the gateway.
2. Upon receiving the message {, 𝑋, 𝑃 𝑈, 𝑐2, 𝑇2, 𝑤2}from the user, the gateway first generates the
key as 𝐾 𝑈𝐺
∗
= 𝐻(𝑣 𝐺 𝑤2 𝑃 𝑈) and decrypt 𝑐2 as𝑐2
∗
= 𝐷 𝐾 𝑈𝐺
∗(𝑐2). The gateway checks whether
𝑐2
∗
= 𝐼𝐷 𝐺 or not. If not then it terminates the session and if yes then it computes 𝑟2
∗
=
𝐻(𝑐2 ⊕ 𝐾 𝑈𝐺
∗
)and𝑇2
∗
= 𝑟2
∗
𝐺. If 𝑇2 = 𝑇2
∗
then the user is authenticated by the gateway. The
gateway then computes the hash code of the secret key as𝐴 𝐺𝑆 = 𝐻(𝐾 𝐺𝑆 𝑖
), records the
timestamp𝑇𝐺 and sends the message {𝐿, 𝑋, 𝑇𝐺, 𝐴 𝐺𝑆}to the sensor node.
11. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
103
USER GATEWAY SENSOR
{ , }r uC PW ,{ }G iGSv K { }iGSK
Selects private nx Z , Compute X xG=
Label ( ), isGL ID ID=
Compute ( )1 r ud c H PW= −
( )UG U GK H ID P= , ( )12 UGKc E d=
( )22 UGr H c K= ,
2
2
U
w
ID
r
=
22T r G= 2 2 2, , , , ,UL X P c T w ( )2* G UUG vH wK P= , ( )22 ** UGKc D c=
If 2* Gc ID= then
( )22* *UGr H c K= , 22* *T r G=
If 22 *T T= then User authenticated
( )iGS GSA H K= , Timestamp GT
, , ,G GSL X T A
If GT tT− then verify GSA
Select private ny Z , Compute Y yG=
( ), , , ,, i
iSU GS G SX YA TH L TK=
Shared Key K yX=
Session Key ( , , , )KS H L X Y K=
Timestamp iST
, , ,i
i
S S SUID Y T A
If iST tT− , then verify SUA
( )* 23 *UGKE Tc =
3{ , , }Y L c
( )23* UGKc E T= , If 3 3*c c= then
Shared Key K xY=
Session Key ( , , , )KS H L X Y K=
3. Upon receiving the message {𝐿, 𝑋, 𝑇𝐺, 𝐴 𝐺𝑆}from the gateway, the sensor node 𝑆𝑖checks if𝑇 −
𝑇𝐺 ≤ 𝑡, where T is the present time stamp and t is the average transmission delay. If it is true
then node 𝑆𝑖first verifies the correctness of 𝐴 𝐺𝑆 by computing the hash code𝐻(𝐾 𝐺𝑆 𝑖
). If 𝐴 𝐺𝑆is
correct then it selects private number𝑦 ∈ 𝑍 𝑛, computes𝑌 = 𝑦𝐺 and records the current
timestamp𝑇𝑆 𝑖
. It also computes𝐴 𝑆𝑈 = 𝐻(𝐿, 𝐾 𝐺𝑆 𝑖
, 𝑋, 𝑌, 𝑇𝐺, 𝑇𝑆 𝑖
), the shared secret key 𝐾 = 𝑦𝑋
with the user, and the session key𝑆 𝑘 = 𝐻(𝐿, 𝑋, 𝑌, 𝐾). The node𝑆𝑖 sends the message
{𝐼𝐷𝑆 𝑖
, 𝑌, 𝑇𝑆 𝑖
, 𝐴 𝑆𝑈} to the gateway.
4. When the message {𝐼𝐷𝑆 𝑖
, 𝑌, 𝑇𝑆 𝑖
, 𝐴 𝑆𝑈} is received by the gateway it checks if𝑇 − 𝑇𝑆 𝑖
≤ 𝑡,
where T is the present time-stamp and t is the average transmission delay. If it is true then
gateway verifies the correctness of 𝐴 𝑆𝑈 by computing the hash code𝐻(𝐿, 𝐾 𝐺𝑆 𝑖
, 𝑋, 𝑌, 𝑇𝐺, 𝑇𝑆 𝑖
),
if 𝐴 𝑆𝑈 is found correct then the gateway computes𝑐3 = 𝐸 𝐾 𝑈𝐺
∗(𝑇2
∗
). The gateway then sends
the message {𝑌, 𝐿, 𝑐3} to the user.
5. Upon receiving {𝑌, 𝐿, 𝑐3} from the gateway, the user computes 𝑐3
∗
= 𝐸 𝐾 𝑈𝐺
(𝑇2)and if 𝑐3
∗
=
𝑐3 then it authenticates the gateway. It computes the shred secret key 𝐾 = 𝑥𝑌and session
key𝑆 𝑘 = 𝐻(𝐿, 𝑋, 𝑌, 𝐾).
The established shared key K between the user and the sensor node 𝑆𝑖 can be used for the
upcoming communication.
Figure 5. Signcryption and key establishment phase of the proposed protocol.
12. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
104
6. ANALYSIS OF SECURITY FUNCTIONS OF THE PROPOSED PROTOCOL
In this section of the paper, an analysis of the security functionalities provided by the proposed
protocol has been carried out. The two dimensions of analyzing the security functionalities are,
the security attributes satisfied by the proposed protocol and the resistance provided from
different attacks. The following reasonable assumptions have been considered to sustain security
analysis.
A1: Secure channel is used for registration of the sensor node as well as the user, to the gateway.
A2: An adversary can obtain common system parameters from a corrupted node.
A3: The private number 𝑥selected by the user and the private number 𝑦 selected by the sensor
node are fresh for every session.
A4: The encryption algorithm is strong enough that an adversary is unable to decode the
ciphertext.
A5: Given 𝑅 and𝑄, the adversary is unable to compute 𝑝in 𝑅 = 𝑝𝑄, due to the strength of
ECDLP.
6.1. Analysis of Security Attributes
The proposed elliptic curve signcryption protocol satisfies anonymity, confidentiality, secure key
establishment, mutual authentication, key privacy, untraceability and forward security.
6.1.1.User Anonymity
User identity must be kept secret because if it is exposed then any unauthorized party can trace
the login pattern of the user [12]. In the proposed elliptic curve signcryption protocol, the identity
of the user is kept secret and not transmitted in any of the messages. The user’s public key 𝑃 𝑈 is
transmitted, and according to assumption A5, due to the strength of ECDLP the adversary cannot
find 𝐼𝐷 𝑈 given 𝑃 𝑈 and G. Therefore, the proposed protocol provides strong user anonymity.
6.1.2.Confidentiality
The four messages have been exchanged in the signcryption and key establishment phase of our
protocol. The very first message is {𝐿, 𝑋, 𝑃 𝑈, 𝑐2, 𝑇2, 𝑤2} in which the components
𝑋, 𝑃 𝑈, 𝑐2, 𝑇2 𝑎𝑛𝑑𝑤2 contain the secret information. Retrieving secret values of 𝐼𝐷 𝑈, 𝑥, and 𝑟2 from
𝑋, 𝑃 𝑈, and 𝑇2 respectively is infeasible due to the security of ECDLP, as mentioned in the
assumption A5. The ciphertext𝑐2 cannot be decoded by an adversary without knowing the
key𝐾 𝑈𝐺. Moreover, to deduce𝐾 𝑈𝐺, the adversary needs identity 𝐼𝐷 𝑈of the user, which cannot be
known as the proposed protocol provides user anonymity. The component 𝑤2 is obtained by
dividing the 𝐼𝐷 𝑈 by𝑟2 which are privately generated. The second message is {𝐿, 𝑋, 𝑇𝐺, 𝐴 𝐺𝑆} in
which 𝑋 and 𝐴 𝐺𝑆 covers secret values𝑥, and 𝐾 𝐺𝑆 𝑖
respectively. The secret 𝑥 cannot be obtained
from 𝑋 due to the security of ECDLP and 𝐾 𝐺𝑆 𝑖
cannot be obtained from𝐴 𝐺𝑆, due to the property
of random oracles. The third message is {𝐼𝐷𝑆𝑖, 𝑌, 𝑇𝑆𝑖, 𝐴 𝑆𝑈} in which the components 𝑌 and 𝐴 𝑆𝑈
protects the secret 𝑦 and 𝐾 𝐺𝑆 𝑖
respectively since, the secret 𝑦 cannot be obtained from 𝑌 due to the
strength of ECDLP and 𝐾 𝐺𝑆 𝑖
cannot be obtained form 𝐴 𝑆𝑈 due to the property of random oracles.
The fourth message is {𝑌, 𝐿, 𝑐3} which contains the components 𝑌 and 𝑐3 protecting secret
information. Again, the confidential information in 𝑌 and 𝑐3 is secure as per assumptions A5 and
A4 respectively. Therefore, the proposed protocol provides confidentiality of secret information.
13. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
105
6.1.3. Secure Key Establishment
In our protocol, after executing all the steps the key 𝐾 is generated and shared securely between
the sensor and the user. In establishing the secure key, the values 𝑋 and 𝑌 are transmitted between
the user and the sensor. As per assumption A5, an adversary cannot obtain private values 𝑥 and 𝑦
from 𝑋 and 𝑌 respectively. Hence, the protocol successfully achieves a secure key establishment
between the sensor node and the user.
6.1.4. Key Privacy
The private keys 𝑥 and 𝑦 of the user and the gateway respectively along with the shared key 𝐾
established in the protocol, are kept secret and adversary cannot access them. As per assumption
A5, an adversary cannot obtain private values 𝑥 and 𝑦 from 𝑋 and 𝑌 respectively, and in turn
cannot generate key𝐾. Thus, the proposed signcryption based protocol provides key privacy.
6.1.5. Mutual Authentication
The proposed signcryption based protocol implements mutual authentication between the two pair
of parties, first the user and the gateway, second the gateway and the sensor node.
In mutual authentication between the gateway and the user, the user is authenticated by the
gateway if𝑇2 = 𝑇2
∗
, where 𝑇2is the authentication information sent by the user and 𝑇2
∗
is
computed by the gateway. Similarly, the gateway is authenticated by the user if𝑐3
∗
= 𝑐3,
where𝑐3
∗
is computed by the gateway and 𝑐3 is computed by the user.
In mutual authentication between the sensor node and the gateway, the gateway computes 𝐴 𝐺𝑆 =
𝐻(𝐾 𝐺𝑆𝑖) and sends 𝐴 𝐺𝑆 to the sensor node. Upon receiving 𝐴 𝐺𝑆 from the gateway, the sensor
node computes𝐴 𝐺𝑆
∗
which is the hash code of the shared key 𝐾 𝐺𝑆𝑖 stored with it, and if𝐴 𝐺𝑆
∗
=
𝐴 𝐺𝑆then the gateway is successfully authenticated by the sensor node. Similarly, the sensor node
sends 𝐴 𝑆𝑈 = 𝐻(𝐿, 𝐾 𝐺𝑆𝑖, 𝑋, 𝑌, 𝑇𝐺, 𝑇𝑆 𝑖
) to gateway, and upon receiving 𝐴 𝑆𝑈the gateway then
verifies the correctness of 𝐴 𝑆𝑈 by computing the hash code of {𝐿, 𝐾 𝐺𝑆 𝑖
, 𝑋, 𝑌, 𝑇𝐺, 𝑇𝑆 𝑖
} and then
authenticates the sensor node. In this manner the protocol achieves mutual authentication between
the two pair of parties.
Furthermore, the authentication data 𝑇2, 𝑐3, 𝐴 𝐺𝑆and 𝐴 𝑆𝑈generated in the process of mutual
authentication is unforgeable. The authentication data𝑇2 depends upon 𝑟2 which in turn depends
upon 𝐼𝐷 𝑈 which is kept secret. In order to forge𝑐3 the adversary needs 𝐾 𝑈𝐺
∗
which depends upon
random private secret 𝑣 𝐺 of the gateway. Finally,𝐴 𝐺𝑆and 𝐴 𝑆𝑈 are the hash codes of the key 𝐾 𝐺𝑆𝑖
which is shared between the sensor and the gateway over a protected channel. Therefore, the
authentication data generated in all the messages of the protocol is unforgeable.
6.1.6. Forward Secrecy
Even if the adversary somehow obtains the secret key𝐾, it cannot get the messages sent in the
past sessions since the private values of 𝑥 and 𝑦 selected randomly by the user and the sensor
respectively are fresh for every session. Moreover, if a sensor node joins the network in place of
some other one then it cannot get the past messages due to unavailability of private values 𝑥 and
𝑦 of past sessions. Thus the proposed protocol provides forward security.
14. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
106
6.1.7. Untraceability
It is the assurance that an opponent cannot trace the sessions of the user by analyzing the
messages in the protocol. In the proposed protocol private random number 𝑥 is used, which is
freshly generated in every session. This makes the user to use different values of 𝑋, 𝑐2, 𝑇2 and 𝑤2
for different sessions in its messages. Thus, the proposed protocol satisfies untraceability.
6.2. Analysis of Resistance from Attacks
The security protocol for WSNs must be able to thwart the attacks attempted over the WSN
system. In this subsection, the strength of the proposed WSN protocol from different attacks has
been analyzed. The following adversary model given by Wang et al. [14] has been considered in
this analysis.
1. An 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦 𝐴 has the capability to intercept, modify, resend, and delete the message after
eavesdropping the open communication channel.
2. An 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴 can obtain the long term session key.
3. An 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴 can get the password of the user or its parameters, but not both.
4. An 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴 is capable of getting the data from an unattended sensor node.
6.2.1 Resistance from Replay Attack
In replay attack, an 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴 records the legitimate message from a party and replays it later
to the other party to produce an unauthorized effect. The analysis of the replay attack for the
proposed protocol can be broken into two parts. First is the analysis of the replay attack between
the user and the gateway, and the second is the analysis of the replay attack between the gateway
and the sensor node.
If an 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴 replays the past recorded message {𝐿, 𝑋, 𝑃 𝑈, 𝑐2, 𝑇2, 𝑤2} to the gateway then,
the gateway performs the computations in step2 of signcryption and key establishment phase and
sends the message {𝐿, 𝑋, 𝑇𝐺, 𝐴 𝐺𝑆} to the sensor node, which in turn performs the computations
mentioned in step 3 of this phase and sends the message {𝑌, 𝐿, 𝑐3} to the 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴. But,
𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴 cannot generate the shared key 𝐾 = 𝑥𝑌 correctly since, it does not know the private
random number𝑥 of the user. If an 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴 replays the past message {𝑌, 𝐿, 𝑐3} to the user
then also the shared key generated by the user will not match with the key generated by the sensor
node since the fresh value of private random number𝑥 will be used by the user in generating the
shared key𝐾 = 𝑥𝑌. Thus in both these cases, the shared key of the sensor node and the user will
not match and the attack will fail.
When an 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴 sends the previous recorded message {𝐿, 𝑋, 𝑇𝐺, 𝐴 𝐺𝑆}to the sensor node
then the sensor node will ignore the it, since time stamp has been used by the protocol to thwart
the replay attack. Similarly, if an 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴 tries to befool the gateway by sending the
message {𝐼𝐷𝑆 𝑖
, 𝑌, 𝑇𝑆𝑖, 𝐴 𝑆𝑈} then also this message will be rejected as the timestamp used in this
messages is the older one.
In this way, the proposed protocol successfully thwart replay attack.
15. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
107
6.2.2 Resistance from Offline Dictionary Attack
Even if an attacker somehow acquires the password 𝑃𝑊𝑢 of the user, it is not able to create
correct credential 𝑐 𝑟 to authenticate itself to the gateway and gateway will terminate the session.
The credential 𝑐 𝑟depends upon the identity 𝐼𝐷 𝐺 and the private key 𝑣 𝐺of the gateway, which
cannot be obtained by the𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦𝐴. So, our protocol is secure from an offline dictionary
attack.
6.3.3 Resistance from Insider Attack
The user sends the message {𝐿, 𝑋, 𝑃 𝑈, 𝑐2, 𝑇2, 𝑤2} to the gateway. From this message, the gateway
cannot extract any secret information, especially the password of the user. Therefore the proposed
protocol can counter insider attack.
6.3.4. Resistance from Stolen Verifier Attack
The gateway stores the verifier table which does not reveal sensitive information i.e. even if an
attacker obtains this table it cannot make any attack [16]. Hence, our protocol is safe against
stolen-verifier attack.
6.3.5. Resistance from Impersonation Attack
In impersonation, an opponent pretends to be a legitimate party in to obtain confidential
information from the other genuine party. In the proposed protocol for WSNs, an 𝐴𝑑𝑣𝑒𝑟𝑠𝑎𝑟𝑦 𝐴
is unable to impersonate the user to the gateway, because to authenticate itself to the gateway it
requires the identity of the user 𝐼𝐷 𝑈which is kept secret. Similarly, an attacker is unable to
impersonate the sensor node to the gateway since it cannot access the key𝐾 𝐺𝑆 𝑖
. Moreover, the
attacker fails in impersonating the gateway to the user and gateway to the sensor node, since it
cannot obtain 𝑣 𝐺 and 𝐾 𝐺𝑆 𝑖
respectively. So, the proposed protocol can counter impersonation
attacks.
7. PERFORMANCE ANALYSIS
In this section, the performance of the proposed signcryption based WSN security protocol has
been analyzed by measuring computational cost and the communication bandwidth required for
the protocol. Furthermore, a comparison of costs and security functionalities has been made to
show that the proposed security protocol is more efficient to the computational time as compared
to the related protocols mentioned in [5, 7, 11, 14, 15 and 16]. For all the protocols it has been
assumed that 160 bit ECC has been used by all the parties in the communication. In addition to
this, it is presumed that the proposed protocol uses AES-128 algorithm for encryption/decryption
and SHA-1 algorithm for producing the hash code of the input. The two main reasons for
choosing AES-128 algorithm for encryption/decryption are – first 128-bit key will not put more
computational load on the wireless sensors which is a low computing power device and second,
the cryptographic support for implementing AES-128 is available in wireless sensors [4].
7.1. Analysis of Computational Time and Communication Cost
The computational time consumed by the protocol can be calculated by counting the key
operations and then multiplying this count with the time taken by a single operation. On a 64-bit
2.5 GHz i7 processor having 8 GB RAM, a single elliptic curve point multiplication (ECPM),one
16. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
108
hash computation, and one encryption/decryption take 0.427576 ms, 0.005174 ms, and,
0.0214835 ms respectively [7]. The time consumed by other operations is very less and therefore
has been ignored in the analysis. It can be observed that the time consumed by a single ECPM
operation is highest in comparison to the other operations. Based on this fact, the computational
time for each protocol has been calculated for all the three parties in the communication and is
demonstrated in Table 2. The total computational times of all the protocols have been shown in
Table 3. The graphical representation of this comparison of computational time has been shown
in Figure 6 (a). The bandwidth consumed by each protocol has been computed by calculating the
size of messages sent by the three parties – the user, the gateway, and the sensor, and then adding
them. The comparison of bandwidth consumed by each protocol has been shown in Table 3, and a
graphical representation of the same has been shown in Figure 6 (b).
Table 2. Comparison of computational time consumed by the user, the sensor, and the gateway.
e-Encryption/Decryption, m-Elliptic Curve Point Multiplication, h-Hash Computation, N-Number of
rounds, TU-Time consumed by the user, TG- Time consumed by the gateway, TS- Time consumed by the
sensor node
7.2. Comparison of Security Functionalities
As discussed in section 5, the proposed protocol provides mutual authentication, anonymity,
confidentiality, secure key establishment, key privacy, untraceability, and forward security at the
same time providing resistance against replay attack, insider attack, offline dictionary attack,
stolen verifier attack, and impersonation attack. A comparative analysis of the security functions
of the proposed signcryption based protocol with the protocols mentioned in [5, 7, 11, 14, 15, 16]
has been shown in Table 4.
17. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
109
0
1
2
3
4
5
Time(ms)
User Gateway Sensor Total
0
1000
2000
3000
4000
5000
Bandwidth(bits)
Total Bandwidth
Table 3. Comparison of total computational time and bandwidth.
Protocol Total Time (ms) Bandwidth (bits)
[5] 2.32808 3072
[7] 1.93076 3168
[11] 0.98450 1856
[14] 2.76364 3968
[15] 1.39138 2912
[16] 4.32750 2976
Proposed 3.56345 3136
8. DISCUSSION
In this section, a brief discussion of the comparisons and results mentioned in section 6 has been
made. The proposed elliptic curve signcryption protocol for WSNs has been compared with the
protocols in [5, 7, 11, 14, 15 and 16]. From Table 4 it can be observed that the proposed protocol
and the protocol given by Zhang et al. [16] are the only two protocols which provide all the
necessary security functionalities. And from Table 3 it has been revealed that the computational
time consumed by the proposed signcryption-based protocol is 3.56345 ms while the time taken
by Zhang’s protocol is 4.32750ms. Furthermore, the number of ECPM operations on the gateway
in the proposed protocol is 2, while in the Zhang’s protocol 4 ECPM operations are executed on
the gateway. Due to this, the time consumed at the gateway in the proposed protocol is 0.91881
ms and the time consumed at the gateway in Zhang’s protocol is 1.73617 ms. Therefore, the
proposed protocol puts the less computational load on the gateway which makes it better for the
WSNs. The bandwidth of the proposed protocol is slightly more than Zhang’s protocol. It can be
concluded that the proposed protocol is more computational time efficient as compared to all the
other protocols mentioned in [5, 7, 11, 14, 15 and 16] at the same time providing a same or
greater level of security. The novelty of the proposed signcryption-based security protocol is
projected from the fact that it consumes least computational time at the same time satisfying all
the required security functionalities.
Figure 6 (a). Comparison of computational time. Figure 6 (b). Comparison of bandwidth.
18. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
110
Table 4: Comparison of security functions of different protocols.
Protocol
Security features Resistance against attacks
ANY
CNF
FWS
SKE
KEP
MUA
UNT
RPL
USI
STV
SNI
ODY
INS
[5] × ✓ ✓ ✓ ✓ ✓ × ✓ ✓ × ✓ × ×
[7] × ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓
[11] × ✓ ✓ ✓ × ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓
[14] × ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓
[15] × ✓ ✓ ✓ × ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓
[16] ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓
Proposed ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓ ✓
ANY-Anonymity, CNF-Confidentiality, FWS-Forward Secrecy, SKE-Secure key establishment, KEP-Key
Privacy, MUA-Mutual authentication, UNT-Untraceability, RPL-Replay attack, USI- User impersonation,
STV-Stolen verifier attack, SNI-Sensor node impersonation, ODY-Offline dictionary attack, INS-Insider
attack, ✓-Fulfilled, × - Not fulfilled.
9. CONCLUSION
WSNs are used widely in many critical applications, and therefore securing WSNs has been on
priority for the research community. In this article, a novel elliptic curve signcryption based
security protocol for WSNs has been presented which successfully provides user anonymity,
confidentiality, mutual authentication, and secure key establishment at the same time taking less
computational time than the other related schemes. It has been revealed that the proposed
protocol also provides security from an offline dictionary attack, insider attack, impersonation
attack, replay attack, and stolen verifier attack. In addition to providing the required security
functionalities, our signcryption based protocol consumes least computational time for the
gateway in comparison to the other protocols while providing same or higher security level,
which makes it suitable to be used for security and privacy critical applications of WSNs.
REFERENCES
[1] M. Kocakulak, and I. Butun, “An overview of Wireless Sensor Networks towards internet of
things,”in Proc. of the IEEE 7th Annual Computing and Communication Workshop and Conference
(CCWC), Las Vegas, USA, Dec 2016, pp. 1-6.
[2] J. Lopez, R. Roman, and C. Alcaraz, “Analysis of Security Threats, Requirements, Technologies and
Standards in Wireless Sensor Networks,” in Foundations of Security Analysis and Design V. FOSAD
2009, FOSAD 2007, FOSAD 2008. Lecture Notes in Computer Science Volume 5705,A. Aldini,G.
Barthe, R. Gorrieri, Eds., Springer, Berlin, Heidelberg, 2009, pp. 289-338.
[3] A. Dhakne, and P. Chatur, “Detailed Survey on Attacks in Wireless Sensor Network,” inProc. of the
International Conference on Data Engineering and Communication Technology. Advances in
Intelligent Systems and Computing, Singapore, 2017, pp. 319-331.
19. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
111
[4] A.K. Singh, and B.D.K.Patro, “Security of Low Computing Power Devices: A Survey of
Requirements, Challenges & Possible Solutions,” Cybernetics and Information Technologies, Vol. 19,
No. 1, 2019, pp. 133-164.
[5] Y. Choi, D. Lee, J. Kim, J. Jung, J. Nam, and D. Won, “Security Enhanced User Authentication
Protocol for Wireless Sensor Networks Using Elliptic Curves Cryptography,” Sensors, Vol. 14, 2014,
pp. 10081-10106.
[6] W. Shi, and P. Gong, “A new user authentication protocol for wireless sensor networks using elliptic
curves cryptography,”International Journal of Distributed Sensor Networks, 2013pp. 1-7. doi.
10.1155/2013/730831.
[7] F. Wu, L. Xu, S. Kumari, X. Li, A.K. Das, M.K. Khan, M. Karuppiah, and R. Baliyan, R,“A novel
and provably secure authentication and key agreement scheme with user anonymity for global
mobility networks,”Security and Communication Networks, Vol. 9, 2016, pp. 3527-3542.
[8] R. Amin, S.K.H. Islam, G.P. Biswas, M.K. Khan, L. Leng, and N. Kumar, “Design of anonymity
preserving three-factor authenticated key exchange protocol for wireless sensor network,”Computer
Networks,Vol.2016, 2016, pp. 1-22.
[9] M.S. Farash, M. Turkanovic´, S. Kumari, and M. Hölbl, “An efficient user authentication and key
agreement scheme for heterogeneous wireless sensor network tailored for the internet of things
environment,”Ad Hoc Networks, Vol. 36, 2016, pp. 152-176.
[10 ]Y. Park, and Y.H. Park, “Three-Factor User Authentication and Key Agreement Using Elliptic Curve
Cryptosystem in Wireless Sensor Networks,” Sensors, Vol.16, No. 2123, 2016, pp. 1-17.
[11] Q. Jiang, S. Zeadally, J. Ma, and D. He, “Lightweight three factor authentication and key agreement
protocol for internet integrated wireless sensor networks,”IEEE Access, Vol. 5, 2017,pp. 3376–3392.
[12] J. Jung, J. Moon, D. Lee, and D. Won, “Efficient and Security Enhanced Anonymous Authentication
with Key Agreement Scheme in Wireless Sensor Networks,” Sensors, Vol. 17, No. 644, 2017, pp. 1-
21.
[13] I.P. Chang, T.F. Lee, T.H. Lin, and C.M. Liu, “Enhanced Two-Factor Authentication and Key
Agreement Using Dynamic Identities in Wireless Sensor Networks,” Sensors, Vol.15,2015, pp.
29841-29854.
[14] C. Wang, G. Xu, and J. Sun, “An Enhanced Three-Factor User Authentication Scheme Using Elliptic
Curve Cryptosystem for Wireless Sensor Networks,” Sensors, Vol.17, No. 2946, 2017, pp.
[15] X. Li, J. Niu, S. Kumari, F. Wu, A.K. Sangaiah, K. Kwang, and R. Choo, “Three-factor Anonymous
Authentication Scheme for Wireless Sensor Networks in Internet of Things Environments,”Journal of
Network and Computer Applications, Vol. 103, 2017, pp. 194-204.
[16] K. Zhang, K. Xu, andF. Wei, “A Provably Secure Anonymous Authenticated Key Exchange Protocol
Based on ECC for Wireless Sensor Networks,”Wireless Communications and Mobile Computing,
Vol. 1028, 2018, pp. 1-9.
[17] K.E. Lauter, and K.E. Stange, “The elliptic curve discrete logarithm problem and equivalent hard
problems for elliptic divisibility sequences,” in Selected Areas in Cryptography, Springer, , 2009, pp.
309-327.
[18] I. Shparlinski, “Computational Diffie-Hellman Problem,” in Encyclopedia of Cryptography and
Security,H.C.A.Van Tilborg, and S. Jajodia, Eds., Springer, 2011.
20. International Journal of Computer Networks & Communications (IJCNC) Vol.11, No.5, September 2019
112
Anuj Kumar Singh is pursuing Ph.D. in Computer Science and Engineering from Dr.
A.P.J.Abdul Kalam Technical University, Lucknow (India). He is also working as
Assistant Professor in the Department of Computer Science & Engineering at Amity
University Haryana, Gurgaon (India). He passed M.Tech degree with honors from
Panjab University, Chandigarh. He has more than 15 years of teaching experience in
technical education. He has published 23 research papers in journals and conferences.
Dr.B.D.K.Patro earned Ph.D. degree in Computer Science from Institute of Computer
and Information Sciences, Dr.B.R.Ambedkar University, Agra. He is an Associate
Professor of Computer Science & Engineering at RajkiyaEngineeirng College,
Kannauj (India). He has more than 24 years of experience to teach the undergraduate
and postgraduate courses. He has guided 02 Ph.D, guiding 03 Ph.D candidates and he
supervised 12 M.Tech and many Undergraduate projects. He has published more than
30 research papers in journals and conferences.
.
[19] D. Boneh, “The Decision Diffie-Hellman problem,” in Algorithmic Number Theory, ANTS. Lecture
Notes in Computer Science, Volume 1423, J.P. Buhler, Ed., Springer, 1998.
[20] Y. Zheng, “Digital signcryption or how to achieve cost(signature & encryption) ≪ cost(signature) +
cost(encryption),”in Advances in Cryptology —CRYPTO 1997, Lecture Notes in Computer Science,
Volume 1294, B.S. Kaliski , Ed., Springer, 1997.
[21] Y. Zheng, and H. Imai, “How to Construct Efficient Signcryption Schemes on Elliptic
Curves,”Information Processing Letters, Vol. 68, No 5,1998, pp. 227 – 233.
AUTHORS