Issue No. 11 - November (2010 vol. 9)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/TMC.2010.127
Nils Ole Tippenhauer , ETH Zurich, Zurich
Srdjan Čapkun , ETH Zurich, Zurich
Ghassan O. Karame , ETH Zurich, Zurich
Mario Čagalj , University of Split, Split
Despite years of intensive research, the main deterrents of widely deploying secure communication between wireless nodes remains the cumbersome key setup process. In this paper, we address this problem and we introduce Integrity (I) regions, a novel security primitive that enables message authentication in wireless networks without the use of preestablished or precertified keys. Integrity regions are based on the verification of entity proximity through time-of-arrival ranging techniques. IRegions can be efficiently implemented with ultrasonic ranging, in spite of the fact that ultrasound ranging techniques are vulnerable to distance enlargement and reduction attacks. We further show how IRegions can be used for key establishment in mobile peer-to-peer wireless networks and we propose a novel automatic key establishment approach, largely transparent to users, by leveraging on IRegions and nodes' mobility. We analyze our proposals against a multitude of security threats and we validate our findings via extensive simulations.
Authentication, key establishment, distance bounding, node mobility, wireless networks.
Nils Ole Tippenhauer, Srdjan Čapkun, Ghassan O. Karame, Mario Čagalj, "Integrity Regions: Authentication through Presence in Wireless Networks", IEEE Transactions on Mobile Computing, vol. 9, no. , pp. 1608-1621, November 2010, doi:10.1109/TMC.2010.127