past probabilistic authentication of sensor timestamps
play

PAST : Probabilistic Authentication of Sensor Timestamps Ashish - PowerPoint PPT Presentation

Aug 25, 2022 •131 likes •356 views

PAST : Probabilistic Authentication of Sensor Timestamps Ashish Gehani SRI 1 INTRODUCTION : What is a sensor? Example sensor: MICA mote Figure 1: Mote in a vineyard 2 INTRODUCTION : What is a sensor network? Sensors measure the

  1. PAST : Probabilistic Authentication of Sensor Timestamps Ashish Gehani SRI 1

  2. INTRODUCTION : What is a sensor? • Example sensor: MICA mote Figure 1: Mote in a vineyard 2

  3. INTRODUCTION : What is a sensor network? • Sensors measure the environment Target Phenomenon Sensor Storage Server Base Station 3

  4. MOTIVATION : Are the keys safe? • Key compromise likely: – Sensors exposed since: ∗ Deployed in public, remote locations ∗ Physically reachable – Base station exposed since: ∗ Sensors use radio ∗ Power (range) is limited • Tamper-resilience is expensive: – Limited protection smart-card: $15 – IBM 4758 Secure Co-processor: $2,000 – Sensor: $1 4

  5. MOTIVATION : What is the problem? • Spurious readings → Scientific / judicial / financial consequences • Adversary can: – Tamper with sensors – Tamper with base stations • Trusted timestamps distinguish tainted data 5

  6. RELATED WORK : • 1999 : Bellare, Miner (UCSD) Forward secure authentication Uses public key cryptography Drains power rapidly, Slow • 2004 : Przydatek, Song, Perrig (CMU) Sensor network setting O ( n ) verification of n th reading • 2005 : Ouyang, Le, Ford, Makedon (Dartmouth) Initial key split among base stations 6

  7. GOALS : Which threats to address? • Time of sensor compromise known → Distinguish tainted data • Base station compromised → Prevent forgery of sensor timestamps • Adversary generates wireless noise → Tolerate unpredictable delays • Multiple sensors collude → Prevent masquerading • Fraction of sensors / base stations compromised → False authentication still hard 7

  8. CONSTRAINTS : How powerful is a node? • Base station: – Serves many sensors – Significant compute power, memory, bandwidth – CerfCube solar panels generate 60 − 120 Watts • MICA1 mote: – 8-bit microcontroller, 4 MHz, 4 KB RAM – Flash memory: 128 KB Instructions, 512 KB Data – 2 AA batteries, 2.5 Ah @ 3V 8

  9. CONSTRAINTS : How long does a mote last? • Sensing, computing → 75 hour life @ 0.1 W • Expected life is years → Sleep mode @ 30 µ W • TinySec on 29 byte packet: – Symmetric encryption: 2 ms – MAC: 3 ms • Public key algorithms: → Orders of magnitude more expensive → Significant reduction in mote life 9

  10. CONSTRAINTS : How fast is a mote? • RSA (512, 768, 1024 bits) : 3.8, 8.0, 14.5 sec • Reading: 16 bit timestamp, 16 bit data → 32 readings / 1024 bit RSA → 0.5 sec / reading • Signed hash → Transmit separate data, signature → @ 40 Kb/s : 25.6 sec → Amortize over many readings But . . . mote memory is small 10

  11. PAST : Overview 4 Reading verified using other data from same sensor Base Station Target Phenomenon Sensor 1 Reading generated at sensor 2 All readings 3 Successive sent to closest readings forwarded base station to different base stations 11

  12. PAST : Sensor block output d t j s Source Destination Index Timestamp Hash Notary Witness Notary Witness 1 1 2 2 Reading Reading 1 2 = Encrypted with key shared by sensor ’Source’ and base station ’Destination’ 12

  13. PAST : Testimony verification • Notary ( b d ) decrypts block • To validate j th witness w ij : b d → b i : { s, i, j, x } b i → b d : w ′ = h ( w ′ (Blinding) ij ⊕ x ) b d : w ′ ? = h ( w ij ⊕ x ) b i - i th block’s notary, s - Source sensor address, i - Block index, j - Witness index, x - Nonce • Probability of witness verification = Probability notary is not subverted 13

  14. PAST : FIFO • Witness generated by hash composition → Subverted nodes can’t forge earlier witness α Elements α r α h ( n− ) r h( ) n−1 2 r h ( ) n−2 Tail Head 14

  15. PAST : Witness generation • Distinct forward-secure witness sets ( w ij = h j ( r i ) ) → Trust is distributed α α α w r r α r α h ( n− ) h ( n− ) h ( ) α−1 1 Witness Set 2 2 2 2 w r r r r 2 r h ( ) h ( ) h ( ) h ( ) α−3 α−2 α−1 h ( ) n−3 2 n−2 w r r r r r r r r h( ) h( ) h( ) h( ) h( ) h( ) h( ) h( ) α α 1 α−2 α−1 α n−2 n−1 1 r r r r r r r α−1 α α+1 1 2 n−1 n Sensor Reading Block 15

  16. CONCLUSION : • Forward-secure timestamp authentication • Tolerates compromised: – Sensors – Base stations • O (1) timestamp verification • High certainty with: – Low power consumption – Low storage overhead 16

  17. More? 17

  18. ANALYSIS : Variable threshold • Adversary can deny true witness • Adversary can not provide false witness 18

  19. ANALYSIS : Varied number of witnesses 19

  20. ANALYSIS : Storage overhead 20

  21. ANALYSIS : Sybil Attack • Defence : Trust distributed Counter-attack : Adversary masquerades • Sensor, notary share key → Sensor can’t masquerade as other sensor • Block opaque to gateway → Gateway can’t masquerade as sensor / notary • Different keys used for notaries → Notary can’t masquerade as sensor 21

Recommend

Timestamps in Security Protocols One method of handling this kind of problem is timestamps

Timestamps in Security Protocols One method of handling this kind of problem is timestamps

Timestamps in Security Protocols One method of handling this kind of problem is timestamps Proper use of timestamps can limit the time during which an exposed key is dangerous But timestamps have their own problems Lecture 6 Page 1

359 views • 9 slides
Authentication Scenarios 2. Users share a password with a trusted authority (authentication

Authentication Scenarios 2. Users share a password with a trusted authority (authentication

Authentication Scenarios 2. Users share a password with a trusted authority (authentication servers) Kerberos Challenge-response Symm.Key What do we learn from previous attacks? Timestamps: are valid only in a small time window

334 views • 22 slides
Contextual Access and Multi-Factor Authentication Lessons learned on getting past single-factor

Contextual Access and Multi-Factor Authentication Lessons learned on getting past single-factor

Conference 2018 Contextual Access and Multi-Factor Authentication Lessons learned on getting past single-factor authentication! Panelists Corey Scholefield - Team Lead, Identity Services Wendy Blake Director, Network and Technical Services

519 views • 33 slides
D R a f t Learning from the Past: Tools and Techniques for Timeline Analysis Andreas Schuster

D R a f t Learning from the Past: Tools and Techniques for Timeline Analysis Andreas Schuster

D R a f t Learning from the Past: Tools and Techniques for Timeline Analysis Andreas Schuster andreas.schuster@telekom.de Agenda What can we learn from the past? Timestamps Classic data sources Formats How to find more

649 views • 20 slides
AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

SECURITY TOPICS PART 2 AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is who they say they are and therefore permitted to access the requested resources: getting entrance to a computer lab

833 views • 44 slides
HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the process of verifying the identity of the communicating principals to one another Usually sub-divided into Entity authentication Authentication

288 views • 10 slides
Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a precondition How to authenticate: Something you know Password, Secrets Something you have Smart Card, Token Something you are Biometrie

607 views • 4 slides
Probabilistic modeling of sensor artifacts in critical care Norm Aleks and Stuart J. Russell

Probabilistic modeling of sensor artifacts in critical care Norm Aleks and Stuart J. Russell

Probabilistic modeling of sensor artifacts in critical care Norm Aleks and Stuart J. Russell U.C. Berkeley Computer Science Division Michael G. Madden N.U.I. Galway Dept. of Computer Science Kristan Staudenmayer, Mitchell Cohen, Diane

914 views • 68 slides
Introduction to Mobile Robotics Probabilistic Sensor Models Wolfram Burgard, Diego Tipaldi,

Introduction to Mobile Robotics Probabilistic Sensor Models Wolfram Burgard, Diego Tipaldi,

Introduction to Mobile Robotics Probabilistic Sensor Models Wolfram Burgard, Diego Tipaldi, Michael Ruhnke, Bastian Steder 1 Sensors for Mobile Robots Contact sensors: Bumpers Proprioceptive sensors Accelerometers (spring-mounted

991 views • 36 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

613 views • 27 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

1.66k views • 27 slides
A2: Broken Authentication and Session Management But first Authentication, Authorization,

A2: Broken Authentication and Session Management But first Authentication, Authorization,

A2: Broken Authentication and Session Management But first Authentication, Authorization, Sessions Authentication Determining user identity Multiple ways What you know (password) What you have (phone, RSA SecureID, Yubikey)

1.57k views • 28 slides
Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password Token-based authentication Third party authentication Local Authentication How to store and verify password? Clear Data can be hacked

615 views • 14 slides
The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch

The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch

The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch Security Engineer kbabioch@suse.de New authentication standards ... 2 Some authentication technologies ... 3 - Authentication theory -

1.28k views • 88 slides
(Still) Exploiting TCP Timestamps Veit N. Hailperin 1 1 scip AG Hack in Paris, June 2015 Veit N.

(Still) Exploiting TCP Timestamps Veit N. Hailperin 1 1 scip AG Hack in Paris, June 2015 Veit N.

(Still) Exploiting TCP Timestamps Veit N. Hailperin 1 1 scip AG Hack in Paris, June 2015 Veit N. Hailperin (scip AG) (Still) Exploiting TCP Timestamps HiP 2015 1 / 47 About Me Security Consultant & Researcher @ scip AG @fenceposterror

623 views • 47 slides
Outline Introduction Authentication Basic authentication mechanisms CS 239

Outline Introduction Authentication Basic authentication mechanisms CS 239

Outline Introduction Authentication Basic authentication mechanisms CS 239 Authentication on a single machine Computer Security Authentication across a network February 21, 2007 Lecture 9 Lecture 9 Page 1 Page 2 CS 236,

302 views • 8 slides
I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform Agenda Authentication Inbound authentication Outbound authentication Single Sign-on Definitions Stage Process Method Physical

781 views • 48 slides
HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been proposed for applications including: Encryption and authentication For detecting malicious alterations of design components For

645 views • 15 slides
TCP Options for Low Latency: Maximum ACK Delay and Microsecond Timestamps Neal Cardwell Yuchung

TCP Options for Low Latency: Maximum ACK Delay and Microsecond Timestamps Neal Cardwell Yuchung

TCP Options for Low Latency: Maximum ACK Delay and Microsecond Timestamps Neal Cardwell Yuchung Cheng Eric Dumazet IETF 97: Seoul, Nov 2016 Motivation: lower latency, higher throughput Datacenters with commodity 10Gbps Ethernet: RTT <100

1.16k views • 10 slides
1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

Authentication Protocols Guevara Noubir College of Computer and Information Science Northeastern University noubir@ccs.neu.edu Outline Overview of Authentication Systems [Chapter 9] Authentication of People [Chapter 10]

396 views • 17 slides
THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication

THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication

THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication overview Current state of Authentication The future of authentication MY JOURNEY 2012-2015 2004-2011 2015-Present 1998-2004 Staff at MIT

453 views • 34 slides
User Authentication Passport Jason Situ Passport What is it? Passport is authentication

User Authentication Passport Jason Situ Passport What is it? Passport is authentication

User Authentication Passport Jason Situ Passport What is it? Passport is authentication middleware for Node. It is designed to serve a singular purpose: authenticate requests. Supports a comprehensive set of authentication mechanisms called

808 views • 16 slides
Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and

Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and

Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and Schroeder Authentication in general Bishop: Authentication is the binding of an identity to a principal. Network-based authentication mechanisms

1.6k views • 43 slides
HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest

HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest

HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest mechanisms called challenge-response entity authentication exchange cleartext bitstrings directly, i.e., no cryptographic primitives are used A PUF

1.08k views • 38 slides

More recommend