TY - JOUR
T1 - A pairwise key predistribution scheme for wireless sensor networks
AU - Du, Wenliang
AU - Deng, Jing
AU - Han, Yunghsiang S.
AU - Varshney, Pramod K.
AU - Katz, Jonathan
AU - Khalili, Aram
PY - 2005/5
Y1 - 2005/5
N2 - To achieve security in wireless sensor networks, it is important to be able to encrypt and authenticate messages sent between sensor nodes. Before doing so, keys for performing encryption and authentication must be agreed upon by the communicating parties. Due to resource constraints, however, achieving key agreement in wireless sensor networks is nontrivial. Many key agreement schemes used in general networks, such as Diffie-Hellman and other public-key based schemes, are not suitable for wireless sensor networks due to the limited computational abilities of the sensor nodes. Predistribution of secret keys for all pairs of nodes is not viable due to the large amount of memory this requires when the network size is large. In this paper, we provide a framework in which to study the security of key predistribution schemes, propose a new key predistribution scheme which substantially improves the resilience of the network compared to previous schemes, and give an in-depth analysis of our scheme in terms of network resilience and associated overhead. Our scheme exhibits a nice threshold property: when the number of compromised nodes is less than the threshold, the probability that communications between any additional nodes are compromised is close to zero. This desirable property lowers the initial payoff of smaller-scale network breaches to an adversary, and makes it necessary for the adversary to attack a large fraction of the network before it can achieve any significant gain.
AB - To achieve security in wireless sensor networks, it is important to be able to encrypt and authenticate messages sent between sensor nodes. Before doing so, keys for performing encryption and authentication must be agreed upon by the communicating parties. Due to resource constraints, however, achieving key agreement in wireless sensor networks is nontrivial. Many key agreement schemes used in general networks, such as Diffie-Hellman and other public-key based schemes, are not suitable for wireless sensor networks due to the limited computational abilities of the sensor nodes. Predistribution of secret keys for all pairs of nodes is not viable due to the large amount of memory this requires when the network size is large. In this paper, we provide a framework in which to study the security of key predistribution schemes, propose a new key predistribution scheme which substantially improves the resilience of the network compared to previous schemes, and give an in-depth analysis of our scheme in terms of network resilience and associated overhead. Our scheme exhibits a nice threshold property: when the number of compromised nodes is less than the threshold, the probability that communications between any additional nodes are compromised is close to zero. This desirable property lowers the initial payoff of smaller-scale network breaches to an adversary, and makes it necessary for the adversary to attack a large fraction of the network before it can achieve any significant gain.
KW - Key predistribution
KW - Security
KW - Wireless sensor networks
UR - http://www.scopus.com/inward/record.url?scp=23244467182&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=23244467182&partnerID=8YFLogxK
U2 - 10.1145/1065545.1065548
DO - 10.1145/1065545.1065548
M3 - Review article
AN - SCOPUS:23244467182
SN - 1094-9224
VL - 8
SP - 228
EP - 258
JO - ACM Transactions on Information and System Security
JF - ACM Transactions on Information and System Security
IS - 2
ER -