用于高级计量基础设施的PUF和基于id的密钥分发安全框架

2014 IEEE International Conference on Smart Grid Communications (SmartGridComm) Pub Date : 2014-11-01 DOI:10.1109/SmartGridComm.2014.7007768

Vahe Seferian, R. Kanj, A. Chehab, A. Kayssi

{"title":"用于高级计量基础设施的PUF和基于id的密钥分发安全框架","authors":"Vahe Seferian, R. Kanj, A. Chehab, A. Kayssi","doi":"10.1109/SmartGridComm.2014.7007768","DOIUrl":null,"url":null,"abstract":"A major challenge for advanced metering infrastructures is to achieve secure, scalable and efficient communication system between meters and the utility. Traditional identity-based cryptosystems offer scalability and security but can be computationally expensive and are complicated when it comes to private key distribution. In this paper we propose a framework based on merging physical unclonable functions (PUFs) and ID-based authentication that combines the benefits of symmetric-key cryptography with identity based cryptosystems and eliminates the risk for key compromise on the hardware level. The PUF enables meter-to-utility security at the application layer as well as secure handling of the ID-based keys. The framework relies on ID-based non-interactive key distribution mechanism to enable hop-by-hop authentication at the link layer thereby prohibiting unauthenticated packets from overloading the network. We simulated the proposed framework using an event driven network simulator in the context of wireless AMI mesh networks. The results show that our methodology is able to thwart a DoS attack by eliminating packet drops and reducing the average packet latency by 8-14×.","PeriodicalId":6499,"journal":{"name":"2014 IEEE International Conference on Smart Grid Communications (SmartGridComm)","volume":"58 1","pages":"933-938"},"PeriodicalIF":0.0000,"publicationDate":"2014-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":"{\"title\":\"PUF and ID-based key distribution security framework for advanced metering infrastructures\",\"authors\":\"Vahe Seferian, R. Kanj, A. Chehab, A. Kayssi\",\"doi\":\"10.1109/SmartGridComm.2014.7007768\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"A major challenge for advanced metering infrastructures is to achieve secure, scalable and efficient communication system between meters and the utility. Traditional identity-based cryptosystems offer scalability and security but can be computationally expensive and are complicated when it comes to private key distribution. In this paper we propose a framework based on merging physical unclonable functions (PUFs) and ID-based authentication that combines the benefits of symmetric-key cryptography with identity based cryptosystems and eliminates the risk for key compromise on the hardware level. The PUF enables meter-to-utility security at the application layer as well as secure handling of the ID-based keys. The framework relies on ID-based non-interactive key distribution mechanism to enable hop-by-hop authentication at the link layer thereby prohibiting unauthenticated packets from overloading the network. We simulated the proposed framework using an event driven network simulator in the context of wireless AMI mesh networks. The results show that our methodology is able to thwart a DoS attack by eliminating packet drops and reducing the average packet latency by 8-14×.\",\"PeriodicalId\":6499,\"journal\":{\"name\":\"2014 IEEE International Conference on Smart Grid Communications (SmartGridComm)\",\"volume\":\"58 1\",\"pages\":\"933-938\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2014-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"11\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2014 IEEE International Conference on Smart Grid Communications (SmartGridComm)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SmartGridComm.2014.7007768\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 IEEE International Conference on Smart Grid Communications (SmartGridComm)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SmartGridComm.2014.7007768","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

摘要

先进的计量基础设施面临的主要挑战是在电表和公用事业之间实现安全、可扩展和高效的通信系统。传统的基于身份的密码系统提供可伸缩性和安全性，但在计算上可能很昂贵，并且在私钥分发方面很复杂。在本文中，我们提出了一个基于物理不可克隆功能(puf)和基于id的身份验证合并的框架，该框架结合了对称密钥加密与基于身份的密码系统的优点，并消除了硬件层面上密钥泄露的风险。PUF支持应用层从表到实用程序的安全性，以及对基于id的密钥的安全处理。该框架依靠基于id的非交互密钥分发机制在链路层实现逐跳身份验证，从而防止未经身份验证的数据包使网络过载。我们使用事件驱动网络模拟器在无线AMI网状网络环境中模拟了所提出的框架。结果表明，我们的方法能够通过消除数据包丢失并将平均数据包延迟减少8-14倍来阻止DoS攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

PUF and ID-based key distribution security framework for advanced metering infrastructures

A major challenge for advanced metering infrastructures is to achieve secure, scalable and efficient communication system between meters and the utility. Traditional identity-based cryptosystems offer scalability and security but can be computationally expensive and are complicated when it comes to private key distribution. In this paper we propose a framework based on merging physical unclonable functions (PUFs) and ID-based authentication that combines the benefits of symmetric-key cryptography with identity based cryptosystems and eliminates the risk for key compromise on the hardware level. The PUF enables meter-to-utility security at the application layer as well as secure handling of the ID-based keys. The framework relies on ID-based non-interactive key distribution mechanism to enable hop-by-hop authentication at the link layer thereby prohibiting unauthenticated packets from overloading the network. We simulated the proposed framework using an event driven network simulator in the context of wireless AMI mesh networks. The results show that our methodology is able to thwart a DoS attack by eliminating packet drops and reducing the average packet latency by 8-14×.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2014 IEEE International Conference on Smart Grid Communications (SmartGridComm)

自引率

0.00%

发文量