Directed Diffusion协议的安全性分析及改进

Journal of Systems Engineering and Electronics ›› 2009, Vol. 31 ›› Issue (7): 1767-1775.

Directed Diffusion协议的安全性分析及改进

庞辽军^1,2, 李慧贤³, 柳毅⁴, 焦李成², 王育民¹

1. 西安电子科技大学计算网络与信息安全教育部重点实验室, 陕西, 西安, 710071;
2. 西安电子科技大学智能信息处理研究所, 陕西, 西安, 710071;
3. 西北工业大学计算机学院, 陕西, 西安, 710072;
4. 广东工业大学计算机学院, 广东, 广州, 510006

收稿日期:2008-04-24 修回日期:2008-12-01 出版日期:2009-07-20 发布日期:2010-01-03
作者简介:庞辽军(1978- ),男,博士后,副教授,主要研究方向为无线传感器网络安全,安全协议设计与分析.E-mail:ljpang@mail.xidian.edu.cn
基金资助:
国家自然科学基金(60803151);国家自然科学基金委员会—广东联合基金重点项目(U0835004);陕西省自然科学基金(2007F37);教育部计算机网络与信息安全重点实验室(西安电子科技大学)开放基金(2008CNIS-07);西北工业大学“翱翔之星计划”(2008年);西北工业大学基础研究基金(NPU-FFR-JC200819);中国博士后科学基金(20070410376);高等学校学科创新引智计划(B08038)资助课题

Security analyses of the Directed-Diffusion protocol and its improvement

PANG Liao-jun^1,2, LI Hui-xian³, LIU Yi⁴, JIAO Li-cheng², WANG Yu-min¹

1. Key Lab of Computer Networks and Information Security of the Ministry of Education, Xidian Univ., Xi’an 710071, China;
2. Inst. of Intelligent Information Processing, Xidian Univ., Xi’an 710071, China;
3. School of Computer Science and Engineering, Northwestern Polytechnical Univ., Xi’an 710072, China;
4. Computer Faculty, Guangdong Univ. of Technology, Guangzhou 510006, China

Received:2008-04-24 Revised:2008-12-01 Online:2009-07-20 Published:2010-01-03

摘要/Abstract

摘要： 针对现有无线传感器网络路由协议存在的安全问题,提出了一种改进的Directed Diffusion路由协议。该协议采用对称加密、消息完整性校验码和短签名技术来实现对协议消息分组的保密性、新鲜性和完整性等安全属性,因而能够在存在主动或被动攻击者的情况下,具有对虚假路由信息、Sybil、确认欺骗等常见路由攻击的抵抗能力。通过增强无线传感器网络路由协议Directed Diffusion的安全性,可以有效地节约网络节点的能量,维持网络服务的持续可用性。通过比较和分析,所提的改进的Directed Diffusion协议是一个有效的安全路由协议,能够在仅增加少量通信和计算复杂度的情况下实现安全路由建立过程。

Abstract: Aiming at the security problem of the existing routing protocols in wireless sensor networks,an improved Directed-Diffusion protocol is proposed.In this protocol,some technologies,such as symmetric encryption,message integrity check code,and short signature,are used to implement the security properties of each protocol message packet,such as privacy,fresh,and integrity.Therefore,in this case,the proposed routing protocol can defend main route attacks, such as spoofed routing information,Sybil attack,and acknowledgement spoofing,in despite of the active adversary or the passive adversary.To raise the security level of the Directed-Diffusion routing protocol in wireless sensor networks is quite useful for saving the energy of the network nodes and maintaining the continuous usability.Through comparisons and analyses,the proposed Directed-Diffusion protocol is a comparatively efficient and secure one,which can achieve the secure route establishment at the cost of only a little performance in communication and computation.

中图分类号:

TP393.08

庞辽军, 李慧贤, 柳毅, 焦李成, 王育民. Directed Diffusion协议的安全性分析及改进[J]. Journal of Systems Engineering and Electronics, 2009, 31(7): 1767-1775.

PANG Liao-jun, LI Hui-xian, LIU Yi, JIAO Li-cheng, WANG Yu-min. Security analyses of the Directed-Diffusion protocol and its improvement[J]. Journal of Systems Engineering and Electronics, 2009, 31(7): 1767-1775.

参考文献

[1] 覃伯平,周贤伟,杨军,等.基于无线传感器网络路由协议的安全机制研究[J].传感技术学报,2006,19(4):1226-1229.
[2] Gao X,Zhaoyan Fan.Architectural design of a sensory node controller for optimized energy utilization in sensor networks[J].IEEE Trans,on Instrumentation and Measurement,2006,55(2):415-428.
[3] Stephan O,Qingwen xu.Information assurance In wireless sensor networks[C]//Proc.of the 19* IEEE international Parallel and Distributed Processing Symposium,IPDPS,2005.
[4] Intanagonwiwat C,GovindanR,Estrin D.Directed diffusions a scalable and robust communication paradigm for sensor networks[C]//Proc.of the ACM MobiCom,Boston,MA,2000:56-67.
[5] Shah R C,Rabaey J.Energy aware routing for low energy Ad Hoc sensor networks[C]//IEEE Wireless Communications and Networking Conference,WCNC,Orlando,FL,2002.
[6] Wu Shibo,Seluk C K.GPERi geographic power efficient routing in sensor networks[C]//Proc.of the 12th IEEE International Conference on Net-work Protocols,ICNP,2004:1092-1048.
[7] Deb B,Bhatnagar S,Nath B.RelForM:Reliable information forwarding using multiple paths in sensor network[C]//Proc.of the 28th Annual IEEE Conf.on Local Computer Networks (JLCN),2003.
[8] 庞辽军,焦李成,王育民.无线传感器网络安全路由设计与分析[J].传感技术学报,2008,21(9):1629-1634.
[9] 周贤伟,覃伯平.基于能量优化的无线传感器网络安全路由算法[J].电子学报.2007,35(1):54-57.
[10] 苏忠,林闻,封富君,等.无线传感器网络密钥管理的方案和协议[J].软件学报,2007,18(5):1228-1231.
[11] Boneh D,Franklin M.Identity-based encryption from the weil pairing[C]//Proc.of CRYPTO,2001,213-229.
[12] Boneh D,Lynn B,Shacham H.Short signatures from the Weil pairing[C]//Proc.of Cryptology-Asiacrypt,2001:514-532.
[13] Wan C Y,Campbell A T,Krishnamurthy L.PSFQ:a reliable transport protocol for wireless sensor networks[J].IEEE Journal on Selected Areas in Communications,2005,23(4):862-872.