可及时确定受攻击节点无线传感器网络数据聚合方案.docVIP

可及时确定受攻击节点无线传感器网络数据聚合方案 　　摘要： 　　无线传感器网络（WSN）中，当传感器节点受到攻击导致网络数据和传输受到干扰，及时确定受攻击的传感器节点并采取相应措施以保障整个网络的安全性尤为重要。因此，提出一种可及时确定受攻击节点的无线传感器网络数据聚合方案。首先使用状态公钥加密和对称公钥加密结合伪随机函数和消息认证码对数据进行两次加密；其次，在簇头节点进行认证，将假数据过滤后，解密，并将假数据节点编号发送给基站；最后在基站进行解密认证，恢复明文数据。该方案的提出解决了由于受攻击节点导致的错误聚合值问题，而且还实现了及时过滤假数据并确认受攻击的传感器节点。理论分析表明，提出的基于安全的单向函数、消息认证码和椭圆曲线上的离散对数难问题的方案是安全的，并大大降低了网络的通信成本和计算成本。仿真实验表明，该方案的计算成本、通信成本和确认受攻击节点时间比使用状态公钥加密的无线传感器网络安全聚合方案分别降低了至少19.96% 、36.81%和28.10%。 　　关键词： 　　无线传感器网络； 数据聚合； 消息认证码； 伪随机函数； 同态加密 　　中图分类号： 　　TP309.7 　　文献标志码：A 　　Abstract： 　　In Wireless Sensor Network （WSN）， when the compromised sensor nodes disturb network data and transmission are subject to interference， it is particularly important to determine the compromised sensor nodes in time and take appropriate measures to ensure the security of the entire network. Therefore， a data aggregation scheme for wireless sensor network was proposed to timely determine the compromised sensor nodes. First， the state public key encryption， the symmetric public key encryption， the pseudo random function and the message authentication code were used to encrypt the plaintext twice. Secondly， the cluster head node authenticated the ciphertext and filtered false data. Then， the cluster head node decrypted the ciphertext， and the numbers of the compromised nodes were sent to the base station. At last， the base station decrypted the ciphertext to recover the plaintext and authenticated the data. The proposed scheme solves the problem of the error aggregation value problem caused by the compromised nodes， filters the false data in time and determines the compromised sensor nodes. The analysis shows that the proposed scheme is secure under the secure oneway hash function， the message authentication code and the assumption of the Discrete Logarithm Problem （DLP）， and also greatly reduces the communication cost and computational cost. Simulation result shows that， compared with the secure aggregation scheme for WSN using stateful public ke