Cover image for Secure Sensor Cloud

Secure Sensor Cloud

Author Vimal Kumar , Amartya Sen , Sanjay Madria
Release Date: 2018/12/01
Topic:
0%
77
Chapters
0-1
Hours read
0k
Total Words
    Start Reading Now    
       Add to Wishlist       
View table of contents

Book Description

The sensor cloud is a new model of computing paradigm for Wireless Sensor Networks (WSNs), which facilitates resource sharing and provides a platform to integrate different sensor networks where multiple users can build their own sensing applications at the same time. It enables a multi-user on-demand sensory system, where computing, sensing, and wireless network resources are shared among applications. Therefore, it has inherent challenges for providing security and privacy across the sensor cloud infrastructure. With the integration of WSNs with different ownerships, and users running a variety of applications including their own code, there is a need for a risk assessment mechanism to estimate the likelihood and impact of attacks on the life of the network. The data being generated by the wireless sensors in a sensor cloud need to be protected against adversaries, which may be outsiders as well as insiders. Similarly, the code disseminated to the sensors within the sensor cloud needs to be protected against inside and outside adversaries. Moreover, since the wireless sensors cannot support complex and energy-intensive measures, the lightweight schemes for integrity, security, and privacy of the data have to be redesigned.

The book starts with the motivation and architecture discussion of a sensor cloud. Due to the integration of multiple WSNs running user-owned applications and code, the possibility of attacks is more likely. Thus, next, we discuss a risk assessment mechanism to estimate the likelihood and impact of attacks on these WSNs in a sensor cloud using a framework that allows the security administrator to better understand the threats present and take necessary actions. Then, we discuss integrity and privacy preserving data aggregation in a sensor cloud as it becomes harder to protect data in this environment. Integrity of data can be compromised as it becomes easier for an attacker to inject false data in a sensor cloud, and due to hop by hop nature, privacy of data could be leaked as well. Next, the book discusses a fine-grained access control scheme which works on the secure aggregated data in a sensor cloud. This scheme uses Attribute Based Encryption (ABE) to achieve the objective. Furthermore, to securely and efficiently disseminate application code in sensor cloud, we present a secure code dissemination algorithm which first reduces the amount of code to be transmitted from the base station to the sensor nodes. It then uses Symmetric Proxy Re-encryption along with Bloom filters and Hash-based Message Authentication Code (HMACs) to protect the code against eavesdropping and false code injection attacks.

Table of Contents

  1. Preface
  2. Acknowledgments
  3. Introduction
    1. Wireless Sensing Devices and Wireless Sensor Networks
    2. Sensor Cloud
      1. Sensor Cloud Layered Architecture
      2. Virtual Sensors
      3. Sensor Cloud Delivery Models
    3. Secure Sensor Cloud
  4. Preliminaries
    1. Security Risk Assessment
      1. Risk Assessment Methodologies
    2. Cryptographic Operations
      1. Homomorphic Encryption
      2. Paillier Encryption
      3. Elliptic Curve Cryptography
      4. Key Policy Attribute-Based Encryption
      5. Proxy Re-Encryption
    3. Other Mathematical Primitives
      1. Bilinear Maps
      2. Shamir's Secret Sharing
      3. Bloom Filter
  5. Sensor Cloud Architecture and Implementation
    1. Virtual Sensors
    2. Sensor Cloud Architecture
      1. Client-Centric Layer
      2. Middleware Layer
      3. Sensor-Centric Layer
    3. Software Design
    4. QoS in Sensor Cloud
    5. Implementation
      1. System Setup
      2. Middleware Implementation Details
      3. Backend Base Station Server Implementation Details
      4. Data Streaming for Multi-user Environment
      5. Virtual Sensor Implementation
      6. Time Model for Virtual Sensors
    6. Summary
  6. Risk Assessment in a Sensor Cloud
    1. Introduction
    2. Risk Assessment Framework for WSN in a Sensor Cloud
      1. Attack Graphs for Wireless Sensor Networks
      2. Quantitative Risk Assessment by Modeling Attack Graphs Using Bayesian Networks (1/2)
      3. Quantitative Risk Assessment by Modeling Attack Graphs Using Bayesian Networks (2/2)
      4. Time Frame Estimations
    3. Use Case Scenario Depicting the Risk Assessment Framework
      1. Attack Graph for Confidentiality
      2. Time Frame Estimations
    4. Discussions
      1. Complexity Analysis and Scalability
      2. Risk Assessment vs. Intrusion Detection Systems
    5. Summary
  7. Secure Aggregation of Data in a Sensor Cloud
    1. Introduction
    2. Related work
    3. Secure Hierarchical Data Aggregation Algorithm
      1. Modified ECDSA Signature Algorithm
      2. EC Elgamal Encryption
    4. Privacy and Integrity Preserving Data Aggregation (PIP)
      1. The PIP Algorithm
      2. Numerical Example
    5. Summary
  8. Access Control of Aggregated Data in Sensor Clouds
    1. Introduction
    2. Related Work
    3. Models
      1. System Model
      2. Adversary Model
    4. Access Control Policy
    5. Overview of the Scheme
    6. Access Control Scheme
      1. System Setup
      2. Access Control Secret Key Generation
      3. Data Aggregation Key Generation
      4. Data Aggregation Key Establishment
      5. Data Aggregation
    7. Discussion
    8. Revocation of Users
    9. Modifying Access at Runtime
      1. Encryption Scheme for Modifying Access at Runtime
      2. Protocol for Modifying Access at Runtime
    10. Security Analysis
    11. Summary
  9. Efficient and Secure Code Dissemination in Sensor Clouds
    1. Introduction
    2. Related Work
    3. System Model and Assumptions
    4. Proposed Approach
    5. The EC-BBS Proxy Re-Encryption Scheme
    6. Detecting Common Functions
    7. Proposed Algorithm
      1. Pre-Deployment Phase
      2. Pre-Dissemination
      3. Code Dissemination
      4. Activity on the Nodes
    8. A Discussion on Security
      1. Confidentiality of Code
      2. Integrity of Code
    9. Summary
  10. Bibliography (1/3)
  11. Bibliography (2/3)
  12. Bibliography (3/3)
  13. Authors' Biographies
  14. Blank Page (1/3)
  15. Blank Page (2/3)
  16. Blank Page (3/3)
13.58.252.8