Title: MAC aggregation protocols resilient to DoS attacks

Authors: Vladimir Kolesnikov; Wonsuck Lee

Addresses: Bell Labs, Alcatel-Lucent, 600 Mountain Avenue, Murray Hill, NJ 07974, USA. ' Bell Labs, Alcatel-Lucent, 600 Mountain Avenue, Murray Hill, NJ 07974, USA

Abstract: In smart grid, sensor measurements are often sent to a control node over a hop-by-hop network of sensors themselves. To prevent en route accidental and malicious data corruption, each message is authenticated with a MAC, keyed with a symmetric key known to the generating sensor and the control node. MACs represent a significant overhead: a typical 128-bit MAC may often authenticate a 10-bit temperature reading. To mitigate these overheads, MAC aggregation methods were proposed. However, previously proposed MAC aggregation schemes are not resilient to Denial-of-Service (DoS) attacks, where a rogue node or a man-in-the-middle attacker can easily disrupt the entire set of MACs, and hence prevent using any of the transmitted data. In this work we propose a new way of MAC aggregation, which will allow the relay sensors to greatly reduce transmission overhead due to MACs, while achieving full unforgeability, and, simultaneously, much stronger resilience to DoS attacks.

Keywords: MAC aggregation; medium access control; denial of service; DoS attacks; unforgeability; security; smart grid; BEMS; network security.

DOI: 10.1504/IJSN.2012.050028

International Journal of Security and Networks, 2012 Vol.7 No.2, pp.122 - 132

Published online: 24 Oct 2012 *

Full-text access for editors Access for subscribers Purchase this article Comment on this article