Page 2 Lecture Notes in Computer Science 2865 Edited by G. Goos ...

More documents

Recommendations

Info

A New Framework for Building Secure Collaborative Systems 171Decentralized Keymanagement in Ad Hoc NetworkdState of the ArtKey management has been the thrust of several research initiatives in the ad hocnetworking domain (e.g., [1, 6] et al). Each of these approaches seeks to establish apublic key infrastructure within the constraints of ad hoc networks; each approach isdiscussed below.“Securing Ad Hoc Networks” [10] was one of the first notable publications to proposea public key management service for ad hoc networks. The service itself encapsulatesa public/private key pair K/k. The private key, k, is used to sign other nodes'public keys; the public key, K, is used to verify the signature. The service employs a(n, t+1) threshold scheme to distribute the private key and the digital signing processamong n nodes. Each of the n nodes is denoted as a server node, as it has a specialrole in the signing service. Combiner nodes - which may be a subset of the servernodes or altogether different nodes - are also required to combine each server's partialsignature. For example, to sign a certificate, each of the n server nodes must generatea partial signature using its share of the private (k 1, k 2, … k n) to compute a partialsignature of the certificate. Once generated, each server node sends its partial signatureto the combiner; the combiner then computes the entire signature. To its credit[10] was quite progressive at its inception, as its design is largely proactive andcapable of handling a dynamic network state. Nonetheless, the service has remnantsof its wired predecessor, namely, a trusted authority, and specialized server and combinernodes. Although the threshold scheme employed allows t < n servers to becompromised without sacrificing the service, its largely centralized approachencapsulates relatively few points of failure and attack.“Providing Robust and Ubiquitous Security Support for Ad Hoc Networks [6] presentsa natural extension to [1], wherein the signing service is distributed to any noden the network. For example, if a network member requires a certificate, it need onlybe in the proximity of any t+1 nodes. The service is otherwise similar to [6]. Despitethe improved distribution, [6] still requires a trusted party at initialization. Further,because any node in the network may participate in the sharing, a malicious nodemay masquerade as t+1 bogus nodes and reconstruct the private key.More recently, Hubaux et al have proposed a self organizing public key infrastructurein [1]. Unlike the previous two publications, [1] does not require a trusted authorityor any specialized nodes; instead, each node issues its own certificates to othernodes. Each node maintains a limited repository of other nodes' certificates. When anode wishes to validate a certificate of another node, the nodes combine their certificaterepositories; the validating node then examines the merged certificate repositoryfor falsified certificates. If none are found, the certificate is accepted; otherwise it isrejected. The primary drawback of [1] is its initialization time. In long-lived ad hocnetworks, such overhead may be admissable; it is likely to be prohibitive in moretransient settings.Although each of the above paradigms is effective in its own right, they are allbased on a common assumption, namely, point-to-point communication. Public keyinfrastructures enable nodes with authentic public encryption keys that they may useto establish secure communication with one another. However, many ad hoc networksare collaborative, many-to-many environments. In these settings, public key cryptographyis computationally intensive, as each group message must be encrypted n-1
172 H.-P. Bischof, A. Kaminsky, and J. Bindertimes. Group key management paradigms which provide a shared symmetric key thatis shared among all group members, have been used throughout the wired networkingdomain to secure broadcast and many-to-many communication environments; however,very few attempts have been made to adapt group key management infrastructuresto an ad hoc setting.Dominant group key management paradigms include the well-known CLIQUESproject [8], Kim et al [5], and several others. Each of these protocols is based on thegeneralized Diffie-Hellman problem, which requires every network member to contributeto the generation of the shared group key. Because they were developed forwired environments, many of these approaches require point-to-point and broadcastmediums, synchronous messaging, and static network topologies. Unfortunately, thewireless, amorphous, transient, many-to-many nature of ad hoc networks precludesmany of the assumptions on which the above protocols were developed. We, therefore,introduce a new approach to key management that can effectively functionwithin the constraints of an ad hoc network environment.Looking ForwardThe ad hoc network environment we envision is transient, dynamic in structure andmembership, proximal, and broadcast-based. We also assume that network nodeswish to collaborate, that is, our primary goal is to ensure secure many-to-many communication.As a result, our paradigm is fully decentralized (i.e., it lacks server orotherwise specialized nodes), lightweight, and best-suited for small, spontaneousnetworks. The first protocol we present is not authenticated; the second is an extensionof the first that includes authentication mechanisms.The nucleus of our first protocol is a tuple-like entity, inspired by Gelerntner's tuplesin [2], that is effectively a hash table shared among all members of the group.Each member of the group has an entry in the hash table, which includes that member'scontribution to the group key.The following atomic operations may be performed on the tuple:• take() - removes the tuple from the space, such that no other group member maymodify its contents.• read() - reads the current contents of the tuple• write() - writes the tuple into the space, overwriting the previous tupleAlthough the tuple spaces are often implemented as a centrally-based service, thetuples used in this context are fully distributed: each member hosts its own entry inthe tuple. Nodes may host more than one entry if replication is desired in the interestof availability.Group GenesisGroup genesis requires two or more parties to be present.1. Group members agree on a cyclic group, G, of order q, and a generator, α in G;each member then chooses a secret share, N i∈ G.2. The first member, M 1, instantiates a Tuple Space and places a new tuple in thespace. The tuple initially contains M i's contribution and the current cardinal value.M ithen sends a broadcast message to the group stating that tuple has been created.
Page 2 and 3:
Lecture Notes in Computer Science 2
Page 4 and 5:
Samuel Pierre Michel BarbeauEvangel
Page 6:
PrefaceAd Hoc Networks are wireless
Page 9 and 10:
Program CommitteeG. Alonso, ETHZ, S
Page 11 and 12:
XTable of ContentsResisting Malicio
Page 13 and 14:
2 H. Dubois-Ferrière, M. Grossglau
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
Page 21 and 22:
10 H. Dubois-Ferrière, M. Grossgla
Page 23 and 24:
SAFAR: An Adaptive Bandwidth-Effici
Page 25 and 26:
14 J. Doshi and P. Kilambiour proto
Page 27 and 28:
16 J. Doshi and P. Kilambipacket th
Page 29 and 30:
18 J. Doshi and P. Kilambibandwidth
Page 31 and 32:
20 J. Doshi and P. Kilambi5 Simulat
Page 33 and 34:
22 J. Doshi and P. Kilambiquery its
Page 35 and 36:
24 J. Doshi and P. Kilambi4. David
Page 37 and 38:
26 P. Narayan and V.R. SyrotiukThe
Page 39 and 40:
28 P. Narayan and V.R. Syrotiuk2.2
Page 41 and 42:
30 P. Narayan and V.R. Syrotiukrand
Page 43 and 44:
32 P. Narayan and V.R. Syrotiukenti
Page 45 and 46:
34 P. Narayan and V.R. SyrotiukDSRA
Page 47 and 48:
36 P. Narayan and V.R. Syrotiuk7. A
Page 49 and 50:
38 L. Qin and T. Kunzthese two prot
Page 51 and 52:
40 L. Qin and T. Kunzsidered broken
Page 53:
42 L. Qin and T. KunzP = Prdlog( )
Page 57 and 58:
46 L. Qin and T. KunzFig. 5. Averag
Page 59 and 60:
48 L. Qin and T. Kunz6. J. Broch et
Page 61 and 62:
50 M. Diha and S. Pierrethe propose
Page 63 and 64:
52 M. Diha and S. Pierre3. All proc
Page 65 and 66:
54 M. Diha and S. Pierre3.3 Perform
Page 67 and 68:
56 M. Diha and S. PierreCmip/Cprop0
Page 69 and 70:
58 M. Diha and S. PierreThe tunneli
Page 71 and 72:
Proactive QoS Routing in Ad Hoc Net
Page 73 and 74:
62 Y. Ge, T. Kunz, and L. LamontFig
Page 75 and 76:
64 Y. Ge, T. Kunz, and L. Lamontits
Page 77 and 78:
66 Y. Ge, T. Kunz, and L. Lamonttha
Page 79 and 80:
68 Y. Ge, T. Kunz, and L. Lamontwhi
Page 81 and 82:
70 Y. Ge, T. Kunz, and L. Lamontver
Page 83 and 84:
Delivering Messagesin Disconnected
Page 85 and 86:
74 R. Shah and N.C. Hutchinson3.1 T
Page 87 and 88:
76 R. Shah and N.C. Hutchinsonset c
Page 89 and 90:
78 R. Shah and N.C. HutchinsonTable
Page 91 and 92:
80 R. Shah and N.C. HutchinsonOracl
Page 93 and 94:
82 R. Shah and N.C. Hutchinsonthe r
Page 95 and 96:
Extending Seamless IP Multicast Edg
Page 97 and 98:
86 P.M. Ruiz et al.Section 4 presen
Page 99 and 100:
88 P.M. Ruiz et al.Access NetworkCo
Page 101 and 102:
90 P.M. Ruiz et al.Access NetworkR
Page 103 and 104:
92 P.M. Ruiz et al.MIGAccess Networ
Page 105 and 106:
94 P.M. Ruiz et al.10.90.81-hop-750
Page 107 and 108:
A Uniform Continuum Model for Scali
Page 109 and 110:
98 E.W. Grundke and A.N. Zincir-Hey
Page 111 and 112:
100 E.W. Grundke and A.N. Zincir-He
Page 113 and 114:
102 E.W. Grundke and A.N. Zincir-He
Page 115 and 116:
Probabilistic Protocols for Node Di
Page 117 and 118:
106 G. Alonso et al.A node discover
Page 119 and 120:
108 G. Alonso et al.frequency alloc
Page 121 and 122:
110 G. Alonso et al.- D is a diagon
Page 123 and 124:
112 G. Alonso et al.and therefore,
Page 125 and 126:
114 G. Alonso et al.complicated. Fo
Page 127 and 128:
Towards Adaptive WLAN Frequency Man
Page 129 and 130:
118 F. Gamba, J.-F. Wagen, and D. R
Page 131 and 132: 120 F. Gamba, J.-F. Wagen, and D. R
Page 139 and 140: Analyzing Split Channel Medium Acce
Page 141 and 142: 130 J. Deng, Y.S. Han, and Z.J. Haa
Page 151 and 152: Preventing Replay Attacks for Secur
Page 153 and 154: 142 J. Zhen and S. SrinivasTraffic
Page 155 and 156: 144 J. Zhen and S. SrinivasFig. 2.
Page 157 and 158: 146 J. Zhen and S. Srinivasbeginnin
Page 159 and 160: 148 J. Zhen and S. Srinivasthe time
Page 161 and 162: 150 J. Zhen and S. Srinivas16. Y. H
Page 163 and 164: 152 M. Just, E. Kranakis, and T. Wa
Page 175 and 176: A New Framework for Building Secure
Page 177 and 178: 166 H.-P. Bischof, A. Kaminsky, and
Page 181: 170 H.-P. Bischof, A. Kaminsky, and
Page 187 and 188: 176 G. Calinescuof the UDG 2-hops a
Page 189 and 190: 178 G. CalinescuSection 3 describe
Page 191 and 192: 180 G. CalinescuWhen receiving a pa
Page 193 and 194: 182 G. CalinescuRyvxFig. 3. The unn
Page 195 and 196: 184 G. Calinescu< nodeID, pieceID,
Page 197 and 198: 186 G. Calinescu7. Heinz Breu and D
Page 199 and 200: 188 S.O. Krumke et al.desirable in
Page 201 and 202: 190 S.O. Krumke et al.2.2 Bicriteri
Page 203 and 204: 192 S.O. Krumke et al.1. From the g
Page 205 and 206: 194 S.O. Krumke et al.The following
Page 207 and 208: 196 S.O. Krumke et al.1. Let α =6l
Page 209 and 210: 198 S.O. Krumke et al.for any given
Page 211 and 212: 200 S. PatilIDEA uses the concept o
Page 213 and 214: 202 S. PatilAfter flooding the quer
Page 215 and 216: 204 S. Patil5 Simulation ModelSourc
Page 217 and 218: 206 S. PatilAvg. Aggregate Energy C
Page 219 and 220: 208 S. PatilTable 1. Probability of
Page 221 and 222: 210 S. Patilergy consumption of the
Page 223 and 224: 212 T. Chu and I. Nikolaidisenergy
Page 225 and 226: 214 T. Chu and I. Nikolaidisaim at
Page 227 and 228: 216 T. Chu and I. Nikolaidis12: end
Page 229 and 230: 218 T. Chu and I. Nikolaidis1.8E+09
Page 231 and 232: 220 T. Chu and I. Nikolaidis2.0E+10
Page 233 and 234:
222 T. Chu and I. Nikolaidisattack
Page 235 and 236:
224 F.J. Molina, J. Barbancho, and
Page 237 and 238:
Page 239 and 240:
Page 241 and 242:
Page 243 and 244:
Page 245 and 246:
Page 247 and 248:
236 G. Calinescu and P.-J. Wan3.5 4
Page 249 and 250:
238 G. Calinescu and P.-J. Wanmum s
Page 251 and 252:
240 G. Calinescu and P.-J. WanFrom
Page 253 and 254:
242 G. Calinescu and P.-J. Wan5 Alg
Page 255 and 256:
244 G. Calinescu and P.-J. WanThe n
Page 257 and 258:
246 G. Calinescu and P.-J. Wan9. A.
Page 259 and 260:
248 C.J. Colbourn, V.R. Syrotiuk, a
Page 261 and 262:
Page 263 and 264:
Page 265 and 266:
Page 267 and 268:
Page 269 and 270:
Page 271 and 272:
260 S. Bhadra and A. Ferreirathe mo
Page 273 and 274:
262 S. Bhadra and A. FerreiraIn thi
Page 275 and 276:
264 S. Bhadra and A. FerreiraDefini
Page 277 and 278:
266 S. Bhadra and A. FerreiraThis s
Page 279 and 280:
268 S. Bhadra and A. FerreiraTheore
Page 281 and 282:
270 S. Bhadra and A. Ferreira4. T.
Page 283 and 284:
272 M.K. Denko and Q.H. MahmoudAn i
Page 285 and 286:
274 M.K. Denko and Q.H. Mahmoud3.1
Page 287 and 288:
276 M.K. Denko and Q.H. Mahmoud5. D
Page 289 and 290:
278 B. Macabéo, S. Pierre, and A.
Page 291 and 292:
280 B. Macabéo, S. Pierre, and A.
Page 293 and 294:
282 A. Benslimane and A. BachirIn [
Page 295 and 296:
284 A. Benslimane and A. BachirFig.
Page 297 and 298:
286 A. Benslimane and A. Bachir5 Co
Page 299 and 300:
288 L. Hughes, K. Shumon, and Y. Zh
Page 301 and 302:
Page 303 and 304:
Page 305 and 306:
3BerlinHeidelbergNew YorkHong KongL
Page 307 and 308:
Series EditorsGerhard Goos, Karlsru
Page 310 and 311:
Organizing CommitteeConference Co-c
Page 312 and 313:
Table of ContentsSpace-Time Routing
Page 314:
Author IndexAlonso, G. 104Bachir, A
show all

Page 2 Lecture Notes in Computer Science 2865 Edited by G. Goos ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?