Professional Documents
Culture Documents
AbstractWhilst security is generally perceived as an important constituent of communication systems, this paper offers
a viable security-communication-tradeoff particularly tailored
to Advanced Metering Infrastructures (AMIs) in Smart Grid
systems. These systems, often composed of embedded nodes with
highly constrained resources, require e.g. metering data to be
delivered efficiently whilst neither jeopardizing communication
nor security. Data aggregation is a natural choice in such settings,
where the challenge is to facilitate per-hop as well as end-toend security. The prime contribution of this paper is to propose
a secure aggregation protocol that meets the requirements of
Smart Grids, and to analyze its efficiency considering various
system configurations as well as the impact of the wireless
channel through packet error rates. Relying on analysis and
corroborative simulations, unprecedented design guidelines are
derived which determine the operational point beyond which
aggregation is useful as well quantifying the superiority of our
protocol w.r.t. non-aggregated solutions.
I. I NTRODUCTION
Ever since Obamas National Broadband Plan [1], Smart
Grids have moved into the limelight. Said grid is connecting
points of inference (e.g. water meter) and control (e.g. valve)
with a smart decision engine (e.g. the utilitys control center) by means of Machine-to-Machine (M2M) communication
mechanisms.
At national level, advantages are that the efficiency and
effectiveness of the system are significantly increased; thus,
dependency on foreign natural resources, waste and usage at
large is diminished. Advantages for resource suppliers, such as
utility companies, are the ability of (near) real-time monitoring
of the grid infrastructure; thus, faults and outages can be
detected and attended to with minimum delay, energy can
be traded at different tariffs, etc. The end-user profits as an
optimized and (nearly) instantaneous bill can be delivered,
failures can be detected and handled remotely by the utility
or the user him/herself, appliances are used when energy is
cheapest, etc.
As outlined in [1], wireless communication systems play an
integral role in accomplishing this vision. This is realized by
the typically used communication architecture, where embedded radios are installed at each sensor (meter) and actuator
(valve); these communicate wirelessly between each other in
a multihop fashion over a (typically) tree-like topology [2];
until a gateway is reached which could be a DSL line or a
cellular interface.
333
Gateway
Aggregator
Meter
Fig. 1.
334
Encrynted data
End-to-end encryntion
Hon-by-non autnentication
Node aggregator
2
Packet 1
Packet 2
Packet i
Fig. 2.
data and to detect any modification of this data along its path
to the gateway.
In a typical implementation, the overhead OHN related to
the application layer in order to achieve end-to-end security is
at least:
B. Hop-by-Hop Security
End-to-end security is checked at the final destination;
however, before reaching the gateway, the packets must go
through one or more wireless links that are by nature exposed
to attackers. As a result, if no security is provided in order
to restrict the access to the media, only the destination point
will be able to detect altered, dropped or fake packets. This
fact exposes the network to exhaustion attacks since those
packets will waste precious energy at the intermediate nodes
(routers). Consequently, hop-by-hop integrity, authentication
and freshness should also be provided at PHY/MAC layers.
From above reasoning, the protocol requires the use of
timestamps and MICs also at PHY/MAC layers. Then, compared to non-secure protocols, the use of hop-by-hop security
introduces at least the following overhead:
1 It
C. Lossless Aggregation
Since collected/sensed data normally contains just a few bits
of metering information, the payload of PHY/MAC packets
between meters and their aggregator node is usually far from
its maximum allowed or its optimal size. As a result, we
propose to concatenate several packets into a single one at
aggregator nodes. This concatenation or lossless aggregation reduces unnecessary overhead transmission (headers and
MICs). The proposed aggregation process is illustrated in
Figure 2 and its execution is detailed in Algorithm 1.
Algorithm 1 Secure lossless aggregation (at every aggregator
node).
osize = 0
opacket id = 0
createOutputPacket( opacket id )
for every input packet do
if checkMIC() == TRUE then
mac data = getPacketMacData()
if osize + sizeOf( mac data ) > Pa then
createMIC( opacket id )
sendPacket( opacket id )
opacket id = opacket id + 1;
createOutputPacket( opacket id )
osize = 0
end if
aggregateInputPacketPayloadIntoOutputPacket(
mac data, opacket id )
osize = osize + sizeOf( mac data )
if last received packet OR timeout then
createMIC( opacket id )
sendPacket( opacket id )
end if
end if
end for
From the aggregator node to the gateway, intermediate nodes have only to check the MAC/PHY integrity/authentication of every received packet, and forward
the packet with a new MIC and updated headers. Integrity,
335
&
$
,-
/)-
#
,-
.-
&$
# $
%
$0
*+
)
1%
&$#'
()
$$#'
-//
Fig. 3.
'45-6
+5-6
785-6
$
%
&
%
&
' (
)
*!
!"#$
'"/"+,
-
$
(,.
,
-
-
.
3
' (
+&
+&
+)0
11"
2
)0
!"
Fig. 4.
336
TABLE I
C OMPARISON OF BYTES TRANSMITTED BY THE AGGREGATOR NODE WITH AND WITHOUT AGGREGATION .
collected data (bytes)
16
16
16
16
16
16
32
32
32
32
32
32
Pm (bytes)
61
61
61
61
61
61
77
77
77
77
77
77
bytesna
122
183
1159
1891
3233
5917
154
231
1463
2387
4081
7469
bytesa
97 (O = 1)
133 (O = 1)
859 (O = 7)
1391 (O = 11)
2358 (O = 18)
4353 (O = 33)
129 (O = 1)
206 (O = 2)
1238 (O = 10)
2012 (O = 16)
3431 (O = 27)
6269 (O = 49)
1
,
1 P ER (, Nb )
4.25 log10 (Nb ) + 2.2
,
P ER (, Nb ) 1 exp
2
(1)
(bytes)
25
50
300
500
875
1564
25
25
225
375
650
1200
(%)
20.49%
27.32%
25.88%
26.44%
27.06%
26.43%
16.23%
10.82%
15.37%
15.71%
15.92%
16.06%
20
10
% of saving
N
2
3
19
31
53
97
2
3
19
31
53
97
10
(2)
20
30
8
SNR (dB)
10
12
14
Fig. 5. Energy savings of aggregation w.r.t. no aggregation over lossy singlehop wireless channels.
337
TABLE II
E NERGY CONSUMPTION WITH A VARYING SNR.
N
3
3
3
3
2
2
2
2
OHP
OHM
(bytes)
21
21
21
21
21
21
21
21
collected
data (bytes)
SNR
(dB)
Ntx w/o
aggr.
Ntx with
aggr.
Total tx bytes
w/o aggr.
Total tx bytes
with aggr.
Energy consumption
w/o aggr. (mJ)
Energy consumption
with aggr. (mJ)
16
16
16
16
32
32
32
32
0
5
10
15
0
5
10
15
100.77
4.3
1.586
1.157
124.93
4.6
1.62
1.165
207
5.4
1.7
1.1836
201
5.35
1.7
1.1826
18440.9
786.9
290.238
211.731
19239.22
708.4
249.48
179.41
27531
718.2
226.1
157.41
26545
690.15
219.3
152.478
2743.9
117
43.19
31.5
2862.76
105.41
37.12
26.696
4096.6
106.868
33.6436
23.422
3949.896
102.672
32.63
22.6887
ACKNOWLEDGMENT
80
60
40
R EFERENCES
20
0
1 hop
2 hops
3 hops
4 hops
5 hops
6 hops
20
40
60
80
10
12
14
SNR (dB)
Fig. 6.
Difference in energy expenditure between aggregation and no
aggregation for a varying number of hops.
[1] (2009)
National
broadband
plan.
[Online].
Available:
www.broadband.gov/download-plan
[2] C. Dugas, Configuring and managing a large-scale monitoring network:
solving real world challenges for ultra-low powered and long-range
wireless mesh networks, in Int. J. Network Mgmt, 2005.
[3] C. Castelluccia, A. C.-F. Chan, E. Mykletun, and G. Tsudik, Efficient
and provably secure aggregation of encrypted data in wireless sensor
networks, ACM Trans. Sen. Netw., vol. 5, no. 3, pp. 136, 2009.
[4] S. Peter, K. Piotrowski, and P. Langendoerfer, On concealed data
aggregation for wireless sensor networks, 2005.
[5] E. Mykletun, J. Girao, and D. Westhoff, Public key based cryptoschemes for data concealment in wireless sensor networks, in In IEEE
International Conference on Communications. ICC2006, 2006.
[6] H. Chan, A. Perrig, and D. Song, Secure hierarchical in-network
aggregation in sensor networks, in CCS 06: Proceedings of the 13th
ACM conference on Computer and communications security. New
York, NY, USA: ACM, 2006, pp. 278287.
[7] A. Mahimkar, Securedav: A secure data aggregation and verification
protocol for sensor networks, in In Proceedings of the IEEE Global
Telecommunications Conference, 2004, pp. 21752179.
[8] B. Przydatek, D. Song, and A. Perrig, Sia: secure information aggregation in sensor networks, in SenSys 03: Proceedings of the 1st
international conference on Embedded networked sensor systems. New
York, NY, USA: ACM, 2003, pp. 255265.
[9] Y. Yang, X. Wang, S. Zhu, and G. Cao, Sdap: A secure hop-by-hop
data aggregation protocol for sensor networks, ACM Trans. Inf. Syst.
Secur., vol. 11, no. 4, pp. 143, 2008.
[10] S. Ozdemir and Y. Xiao, Secure data aggregation in wireless
sensor networks: A comprehensive overview, Computer Networks,
vol. 53, no. 12, pp. 2022 2037, 2009. [Online]. Available: http://www.sciencedirect.com/science/article/B6VRG-4VXB88W1/2/19d5ff6af92871bd6aff85ac5de4ae8d
[11] E. Mlaih and S. A. Aly, Secure hop-by-hop aggregation of end-to-end
concealed data in wireless sensor networks, CoRR, vol. abs/0803.3448,
2008.
[12] C. Karlof, N. Sastry, and D. Wagner, Tinysec: a link layer security
architecture for wireless sensor networks, in SenSys 04: Proceedings
of the 2nd international conference on Embedded networked sensor
systems. New York, NY, USA: ACM Press, 2004, pp. 162175.
[Online]. Available: http://dx.doi.org/10.1145/1031495.1031515
[13] (2010) The ieee 802.15.4 standard association website. [Online]. Available:
http://web.archive.org/web/20080224051703/standards.ieee.org/
getieee802/download/802.15.4-2006.pdf
[14] A. Wander, N. Gura, H. Eberle, V. Gupta, and S. Shantz, Energy
analysis of public-key cryptography for wireless sensor networks, in
PERCOM, 2005.
[15] R. Zhang, Analysis of energy-delay performance in multi-hop wireless
sensor networks, PhD Thesis, 2009.
338