| DC 欄位 |
值 |
語言 |
| DC.contributor | 資訊工程學系 | zh_TW |
| DC.creator | 洪捷 | zh_TW |
| DC.creator | Chieh Hong | en_US |
| dc.date.accessioned | 2016-1-22T07:39:07Z | |
| dc.date.available | 2016-1-22T07:39:07Z | |
| dc.date.issued | 2016 | |
| dc.identifier.uri | http://ir.lib.ncu.edu.tw:88/thesis/view_etd.asp?URN=102522039 | |
| dc.contributor.department | 資訊工程學系 | zh_TW |
| DC.description | 國立中央大學 | zh_TW |
| DC.description | National Central University | en_US |
| dc.description.abstract | 近年來,無線感測網路的應用日益廣泛,舉凡生活防災到安全議題上都可以看見其蹤跡。但也由於無線感測網路通常都建置在開放式或無人監控的環境之下,使得攻擊者可以很容易取得其中的感測器並將惡意程式碼植入其中,藉此傳遞不正確的資料讓使用者做出錯誤的決策或分析。
有學者提出使用遠端認證 (Remote Attestation) 的方式讓基地台驗證感測器的完整性,以確認其是否遭受破壞。許多相關論文在分析無線感測網路安全性時只著重分析基地台與單個感測器間的情況,但是無線感測網路通常都是一個基地台管理大量的感測器。根據我們的分析發現,使用一對一的完整性驗證協定並無法保證一對多的應用情況下仍然安全。
在本論文中,我們首先提出一種名為『節點恢復』(Node Recovery) 之新型式攻擊,並以這個新攻擊為觀點去分析一些現存一對多感測器完整性驗證對策的缺陷。最後,我們提出一項機率式的一對多型式之感測器完整性驗證協定,其不僅可以抵禦前述節點恢復攻擊,並能有效率的進行整體無線感測網路完整性驗證。 | zh_TW |
| dc.description.abstract | Wireless Sensor Networks (WSNs) have been increasingly developed in many mission-critical applications, such as military and healthcare monitoring systems. Sensor nodes are usually equipped with limited computational resources and become attractive target for various security risks, one of which is malicious code injection attack. An attacker can alter the internal memory state of a sensor node; the compromised nodes can violate the safety and privacy of the users and send foraged data to a base station. Therefore, a mechanism for verifying the trustworthiness of the sensor nodes is highly desirable.
Many researchers have proposed several methods to check the integrity of the sensor nodes in WSNs. Remote attestation is a common promising protection mechanism used for verifying the integrity of a sensor node′s memory state. The remote attestation is based on challenge-response technique. A verifier can attest the sensor node′s integrity by verifying a cryptographic checksum of the node′s memory state. However, most remote attestation schemes are suitable only for the one-hop communication between the verifier and the prover.
This research first identifies a new attack model, namely node recovery attack, which enables an attacker to recover a compromised sensor node; consequently, the verifier is convinced that the recovered node is not compromised. We analyze various countermeasures applied in two WSN architectures and show that these countermeasures are subject to the node recovery attack. A probabilistic remote attestation scheme is proposed to resist the node recovery attack. | en_US |
| DC.subject | 無線感測網路 | zh_TW |
| DC.subject | 遠端認證 | zh_TW |
| DC.subject | 完整性 | zh_TW |
| DC.subject | WSN | en_US |
| DC.subject | Remote Attestation | en_US |
| DC.subject | Integrity | en_US |
| DC.title | 叢集無線感測網路之機率式遠端認證協定 | zh_TW |
| dc.language.iso | zh-TW | zh-TW |
| DC.title | Probablistic Remote Attestation for Cluster-based WSN | en_US |
| DC.type | 博碩士論文 | zh_TW |
| DC.type | thesis | en_US |
| DC.publisher | National Central University | en_US |