25C3 - 1.4.2.3
25th Chaos Communication Congress
Nothing to hide
Referenten | |
---|---|
Dan Cvrcek |
Programm | |
---|---|
Tag | Day 2 (2008-12-28) |
Raum | Saal 2 |
Beginn | 17:15 |
Dauer | 01:00 |
Info | |
ID | 2831 |
Veranstaltungstyp | lecture |
Track | Hacking |
Sprache der Veranstaltung | en |
Feedback | |
---|---|
Haben Sie diese Veranstaltung besucht? Feedback abgeben |
Security of MICA*-based wireless sensor networks
Firstly, we mention an initial qualitative risk assessment, carried out by interviewing the operating manager of a large suspension bridge and a contractor responsible for part of a large subway tunnel network who want to use wireless sensor networks. The core of the talk deals with assessing the practical security of the particular COTS system adopted by our team, the Crossbow MICAz motes running TinyOS or XMesh, together with the Stargate gateway: we designed and implemented a variety of attacks on this system and we discuss the security problems we found, together with appropriate fixes where possible. While some of our attacks exploit generally known vulnerabilities, others like selective jamming and power exhaustion through routing table manipulation are original and interesting in their own right. In section we also demonstrate how an attacker can undetectably alter messages in an IEEE 802.15.4 radio environment.
It is available in our paper "Steel, Cast Iron and Concrete: Security Engineering for Real World Wireless Sensor Networks" published in ACNS 2008 (Applied Cryptography and Network Security) conference.