Issue No.09 - September (2007 vol.6)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/TMC.2007.1008
In a large scale sensor network, it is infeasible to assign a unique Transport Layer Key (TLK) for each pair of nodes to provide the end-to-end security due to the huge memory cost per node. Thus conventional key establishment schemes follow a key pre-distribution approach to establish a Link Layer Key (LLK) infrastructure between neighboring nodes and rely on multi-hop paths to provide the end-to-end security. Their drawbacks include the vulnerability to the node compromise attack, large memory cost and energy inefficiency in the key establishment between neighboring nodes. In this paper, we propose a novel key establishment scheme, called LAKE, for sensor networks. LAKE uses a t-degree tri-variate symmetric polynomial to facilitate the establishment of both TLKs and LLKs between sensor nodes in a two-dimensional space, where each node can calculate direct TLKs and LLKs with some logically neighboring nodes and rely on those nodes to negotiate indirect TLKs and LLKs with other nodes. Any two end nodes can negotiate a TLK on demand directly or with the help of only one intermediate node, which can be determined in advance. As for the LLK establishment, LAKE is more secure under the node compromise attack with much less memory cost than conventional solutions. Due to the location-based deployment, LAKE is also energy efficient in that each node has direct LLKs with most neighbors without spending too much energy on the establishment of indirect LLKs with neighbors through multi-hop routing.
Sensor networks, transport layer, link layer, key establishment, node compromise
Yun Zhou, Yuguang Fang, "A Two-Layer Key Establishment Scheme for Wireless Sensor Networks", IEEE Transactions on Mobile Computing, vol.6, no. 9, pp. 1009-1020, September 2007, doi:10.1109/TMC.2007.1008