It has become clear in the recent days that WSNs have the potential to revolutionize the entire process of information gathering and processing over the next decade. However, security, intrusion tolerance, and high availability are critical issues that must be addressed before this potential can be realized. Our goal is build secure and highly available WSNs that continue to operate correctly in a hostile computing environemnt, even if the security of some of the nodes has been compromised. There are four subareas we are addressing with in this project. First, we have designed, implemented, and experimented with a protocol called INSENS (INtrusion-tolerant routing protocol for wireless SEnsor NetworkS). INSENS provides support for discovering the topology of a wireless sensor network and building secure routing mechanisms in the presence of passive and active security attacks and compromised sensor nodes.

Second, we have extended our work on INSENS to secure wireless sensor networks against denial-of-service attacks on base stations, search and destroy attacks against base stations, and tolerate base station failures. Third, we have addressed the issue of scalability in building a large wireless sensor network comprised of tens of thousands of sensor nodes. In particular, we have proposed a novel technique to distribute trust in building a hierarchical wireless sensor network, and provided support for secure, in-network data processing. Finally, we have proposed a novel technique to address a replay-style, denial-of-service attack in secure and reliable end-to-end communication in wireless sensor networks. This technique is based on one-way hash chains, and can potentially be used in the design of the next-generation, secure network protocols and algorithms.

This project is a collaboration between Prof. Rick Han and myself.

Publications

• J. Deng, R. Han, and S. Mishra. Inrusion Tolerance and Anti-Traffic Analysis Strategies in Wireless Sensor Networks. To appear in the 2004 IEEE International Conference on Dependable Systems and Networks (DSN 2004), Florence, Italy (June 2004).
• J. Deng, R. Han, and S. Mishra. A Robust and Light-Weight Routing Mechanism for Wireless Sensor Networks. To appear in the 1st Workshop on Dependability Issues in Wireless Ad Hoc Networks and Sensor Networks (DIWANS 2004), Florence, Italy (June 2004). (To be held in conjuction with DSN 2004).

• J. Deng, R. Han, and S. Mishra. Security Support for In-Network Processing in Wireless Sensor Networks. In the 2003 ACM Workshop on Security of Ad Hoc and Sensor Networks (SASN '03), Fairfax, VA (October 2003).

• J. Deng, R. Han, and S. Mishra. INSENS: Intrusion-Tolerant Routing in Wireless Sensor Networks. Poster paper. In the 23rd IEEE International Conference on Distributed Computing Systems (ICDCS 2003), Providence, RI (May 2003).
• J. Deng, R. Han, and S. Mishra. A Performance Evaluation of Intrusion-Tolerant Routing in Wireless Sensor Networks. In the 2nd IEEE International Workshop on Information Processing in Sensor Networks (IPSN 2003), Palo Alto, CA (April 2003).
• J. Deng, R. Han. and S. Mishra. Enhancing Base Station Security in Wireless Sensor Networks.  Technical Report CU-CS 951-03. Department of Computer Science. University of Colorado, Boulder, CO. November 2002.
• J. Deng, R. Han and S. Mishra. INSENS: Secure and Intrusion Tolerant Routing for Wireless Sensor Networks. Technical Report CU-CS 939-02. Department of Computer Science. University of Colorado, Boulder, CO. November 2002.