研究生: 阮明科
Nguyen - Minh Khoa
論文名稱: End-to-End Data Authentication Using Digital Signature in Wireless Sensor Networks
End-to-End Data Authentication Using Digital Signature in Wireless Sensor Networks
指導教授: 馮輝文
Huei-Wen Ferng
口試委員: 張宏慶
Hung-Chin Jang
Bih-Hwang Lee
Jung-Shyr Wu
鄭 傑
Jie Zheng
學位類別: 碩士
系所名稱: 電資學院 - 資訊工程系
Department of Computer Science and Information Engineering
論文出版年: 2011
畢業學年度: 99
語文別: 英文
論文頁數: 26
外文關鍵詞: wireless sensor networks, cryptography, digital signature, authentication, security, End-to-end
Guaranteeing end-to-end data security in wireless sensor networks (WSNs) is important and has drawn much attention of researchers over past years. Because an attacker may take control of compromised sensor nodes to inject bogus report into WSNs, enhancing data authenticity becomes a must in WSNs. Although LEDS, which is a symmetric key-based protocol, was proposed recently to take care of the end-to-end data security, it still suffers from some drawbacks, including inefficient report generation and collection, no guarantee on enough legitimate sensor nodes participating in report generation, improper bogus report filtering, and unavoidable fraud commitment. To get rid of aforementioned drawbacks in LEDS, an efficient security protocol to guarantee end-to-end data authentication using digital signature is proposed in this thesis. Via analytical analysis, the effectiveness and efficiency of our proposed protocol is examined. From the obtained results, we show that our proposed protocol significantly outperforms LEDS in term of both security strength and protocol overhead.

Abstract i Contents i List of Tables iii List of Figures iv 1 Introduction 1 2 Related work 3 3 System and Threat Models 5 4 Proposed Authentication Protocol 7 4.1 Deployment and Node Initialization . . . . . . . . . . . . . . . . . . . . . . . . . . 7 4.2 Report Generation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8 4.3 Report Collection at the CH . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 4.4 En-Route Filtering . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 4.5 Sink Verification . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 5 Security Analysis of The Proposed Protocol 14 5.1 Security Strength of the Proposed Protocol Regarding Data Authenticity . . . . . 14 5.2 Expected Filtering Position of the Bogus Reports in the Proposed Protocol . . . . 15 5.3 Security Strength of the Proposed Protocol Regarding Data Availability . . . . . . 16 6 Performance Analysis of The Proposed Protocol 20 6.1 Key Storage Overhead . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20 6.2 Computation Overhead . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21 6.3 Communication Overhead . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21 7 Conclusions 23

