Abstract
Wireless sensor networks are vulnerable to sensor worm attacks in which the attacker compromises a few nodes and makes these compromised nodes initiate worm spread over the network, targeting the worm infection of the whole nodes in the network. Several defense mechanisms have been proposed to prevent worm propagation in wireless sensor networks. Although these proposed schemes use software diversity technique for worm propagation prevention under the belief that different software versions do not have common vulnerability, they have fundamental drawback in which it is difficult to realize the aforementioned belief in sensor motes. To resolve this problem, we propose on-demand software-attestation based scheme to defend against worm propagation in sensor network. The main idea of our proposed scheme is to perform software attestations against sensor nodes in on-demand manner and detect the infected nodes by worm, resulting in worm propagation block in the network. Through analysis, we show that our proposed scheme defends against worm propagation in efficient and robust manner. Through simulation, we demonstrate that our proposed scheme stops worm propagation at the reasonable overhead while preventing a majority of sensor nodes from being infected by worm.
Highlights
Since sensor nodes are usually deployed in unattended manner, they could be physically captured by an attacker
If different software versions can have common vulnerability, these schemes will not work because the shared vulnerability can be exploited for worm to spread between two adjacent nodes
(i) Fraction of Infectious Nodes is the fraction of infectious nodes when all worm propagations are blocked in the network
Summary
Since sensor nodes are usually deployed in unattended manner, they could be physically captured by an attacker. More active defense mechanisms without this drawback should be required rather than passive techniques such as software diversity To achieve this requirement, we propose on-demand software-attestation based scheme to actively defend worm propagation in sensor network. The faction of infected nodes does not exceed 7.86% and 23.26% when the size of the attestee list stored in a node is 200 and 100, respectively These results indicate that our proposed scheme restrains a majority of sensor nodes from being infected at the reasonable attestation overhead.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
