In this paper, we first employ the cryptographic technique which used to solve the problem of secure comparison for finding maximum/minimum in wireless sensor networks. In our scheme, we use the symmetric privacy homomorphism purposed by Domingo-Ferrer. It is feasible to process operations over the ciphertext in a wireless sensor network. Our protocol has some properties as follows:
Providing end-to-end privacy: if the adversaries are semi-honest and only compromise the same kind of nodes (aggregator or sensing node), no private information of uncompromised nodes is disclosed. If the adversary compromise aggregators and sensing nodes, it only effect in localizing the possible damage. In terms of security, the result of our scheme is better than the preceding scheme in [8].
Efficiency: our scheme can work with data aggregation and reduce energy consumption.
We have proved that our scheme is correct and provide data privacy. For the future work, there are two purposes we desire to achieve. First, we want to expand our scheme to defeat against the malicious adversary. Second, we expect to minimize the damage of node compromised attack.
34
Reference
[1]. D. Liu, P. Ning. Security for wireless sensor networks: introduction. Advances in Information Security, Volume28, pp. 1-7, Springer, 2007.
[2]. D. Culler, D. Estrin, and M. Srivastava, Overview of Sensor Networks, IEEE Computer, 37(8), pp. 41-46, August 2004.
[3]. S. Madden, M. J. Franklin, J. M. Hellerstein, and W. Hong. TAG: a tiny aggragation service for ad-hoc sensor networks. In Proceedings of the fifth Annual Symposium on Operation Systems Design and Implementation (OSDI’02), 2002.
[4]. B. Przydatek, D. Song, and A. Perrig. SIA: Secure information aggregation in sensor networks. In Proceedings of the 1st International Conference on Embedded Networked Sensor Systems (SenSys’03), pp. 255-265, ACM Press, 2003.
[5]. Y. Yang, X. Wang, S. Zhu, and G. Cao. SDAP: A secure hop-by-hop data aggregation protocol for sensor networks. In Proceedings of the 7thACM International Symposium on Mobile Ad Hoc Networking and Computing (MobiHoc’06), pp.
356-367, ACM Press, 2006.
[6]. J. Girao, M. Schneider, and D. Westhoff. CDA: Concealed data aggregation in wireless sensor networks. In Proceedings of the ACM Workshop on Wireless Security (Wise’04), 2004.
[7]. C. Castelluccia, E. Mykletun, and G.. Tsudik. Efficient aggregation of encrypted data in wireless sensor networks. In Proceedings of the Second Annual International Conference on Mobile and Ubiquitous Systems, pp. 109-117, IEEE Press, 2005.
[8] M. Acharya, J Girao, and D. Westhoff. Secure comparison of encrypted data in wireless sensor networks. In Proceeding of the Third International Symposium on Modeling and Optimization in Mobile, Ad Hoc, and Wireless Networks (WiOpt’05), pp. 47-53, IEEE Press, 2005.
35
[9]. P. Jadia and A. Mathuria. Efficient secure aggregation in sensor networks. In Proceddings of the 11th International Conference on High Performance Computing (HiPC’04), Lecture Notes in Computer Science 3296, pp. 40-49, Springer, 2004.
[10]. H. Chan, A. Perrig, and D. X. Song. Secure hierarchical in-network aggregation in sensor networks. In Proceedings of the 13th ACM Conference on Computer and Communications Security (CCS’06), pp. 278-287, ACM Press, 2006.
[11]. W. He, X. Liu, H. Nguyen, K. Nahrstedt, and T. F. Abdelzaher. PDA:
Privacy-preserving data aggregation in wireless sensor networks. In Proceedings of the 26th IEEE International Conference on Computer Communication (INFOCOM’07), pp. 2045-2053, IEEE Press, 2007.
[12]. D. Liu and P. Ning, Establishing pairwise keys in distributed sensor networks. In Proceedings of the 10th ACM Conference on Computer and Communications Security (CCS’03), pp. 52-61, ACM Press, 2003.
[13]. C. Bekara, M. Laurent-Maknavicius, and K. Bekara. SAPC: A secure aggregation protocol for cluster-based wireless sensor networks. In Proceedings of the Third International Conference on Mobile Ad-Hoc and Sensor Networks (MSN’07), Lecture Notes in Computer Science 4864, pp. 784-798, Springer, 2007.
[14]. K. Kifayat, M. Merabti, Q. Shi, and D. Llewellyn-Jones. Applying secure data aggregation techniques for a structure and density independent group based key management protocol. In Proceedings of the Third International Symposium on Information and Assurance and Security (IAS’07), pp. 44-49, IEEE Press, 2007.
[15] L. Eschenauer and V. D. Gligor. A key-management scheme for distributed sensor networks. In Proceedings of the 9th ACM Conference on Computer and Communications Security (CCS’02), pp. 41-47, ACM Press, 2002.
[16] C. K. Chu, and W. G.. Tzeng. Conditional Oblivious Cast Schemes. In Proceedings of the 9th International Conference on Theory and Practice of Public Key
36
Cryptography (PKC’06), Lecture Notes in Computer Science 3958, pp. 443-457, Springer, 2006.
[17] C. Intanagonwiwant, D. Estrin, R. Govindan, and J. Heidemann. Impact of network density on data aggregation in wireless sensor networks. In Proceedings of the 22nd International Conference on Distributed Computing Systems (ICDCS’02), pp.
457-458, IEEE Press, 2002.
[18] B. Krishnamachari, D. Estrin, and S. Wicker. The impact of data aggregation in wireless sensor networks. In Proceedings of the 22nd International Conference on Distributed Event-Based Systems, Workshops (ICDCSW’02), pp. 575-578, IEEE Press, 2002.
[19] J. Domingo-Ferrer. A provably secure additive and multiplicative privacy homomorphism. In Proceedings of the 5th International Conference on Information Security (ISC’02), Lecture Notes in Computer Science 2433, pp. 471-483, Springer, 2002.
[20] K. Yuen, B. Li, B. Liang. Distributed minimum energy data gathering and aggregation in sensor networks. In Proceedings of 2006 IEEE International Conference on Communications (ICC’06), pp. 3536-3541, IEEE Press, 2006.
[21] A. Perrig, R. Szewczyk, V. Wen, D. Culler, and J. D. Tygar. SPINS: Security protocols for sensor networks. In Proceedings of the 7th Annual International Conference on Mobile Computing and Networking (MOBICOM’01), pp. 189-199, ACM Press, 2001.
[22] D. Westhoff, J. Girao, and M. Acharya. Concealed data aggregation for reverse multicast traffic in sensor networks: encryption, key distribution, and routing adaptation. In Proceedings of 2005 IEEE Transaction on Mobile Computing (ICC’05), pp. 1417-1431, IEEE Press, 2006
37
Appendix A
In the following, we give an example for explanation.
Numerical Example for Secure Comparison
For simplification, this example focuses on aggregating the encrypted data. Assume there are two participants sx and sy with private readings vx and vy, respectively. We will compare two data in encrypted form with following parameters:
Case 1: vx > vy , vx = 5 = 1012 = X2X1X0, vy = 3 = 0112 = Y2Y1Y0
For illustration, we choose unrealistic small values:
Public parameters: d = 2, a modulus g = 28 Secret parameters: K = (x, q) , x = 3 and q = 7
The public aggregation function MAX is f(vx, vy) = max{vx, vy}
38 The sensing node decrypts f ’ by computing
the sensing node sets p = -1 and then AG discards the ciphertext of vx.Case 2: vx = vy , vx = 3 = 0112 = X2X1X0, vy = 3 = 0112 = Y2Y1Y0
and sends to AG with additional information (the ciphertext of ―1‖ (24,7) ).
39 The sensing node decrypts f ’ by computing