TY - JOUR
T1 - A Clean Slate Approach to Secure Ad Hoc Wireless Networking-Open Unsynchronized Networks
AU - Ponniah, Jonathan
AU - Hu, Yih Chun
AU - Kumar, P. R.
N1 - Funding Information:
This work was supported in party by NSF, AFOSR, and USARO under Contracts CNS-1302182 and CCF-0939370 under Contract FA-9550-13-1-0008 under Contract W911NF-15-1-0279. Recommended by Associate Editor P. Cheng.
Publisher Copyright:
© 2016 IEEE.
PY - 2017/3
Y1 - 2017/3
N2 - Distributed cyberphysical systems depend on secure wireless ad hoc networks to ensure that the sensors, controllers, and actuators (or nodes) in the system can reliably communicate. Such networks are difficult to design because, being inherently complex, they are vulnerable to attack. As a result, the current process of designing secure protocols for wireless ad hoc networks is effectively an arms race between discovering attacks and creating fixes. At no point in the process is it possible to make provable performance and security guarantees. This paper proposes a system-theoretic framework for the design of secure open wireless ad hoc networks, that provides precisely such guarantees. The nodes are initially unsynchronized, and join the network at any stage of the operation. The framework consists of a zero-sum game between all protocols and adversarial strategies, in which the protocol is announced before the adversarial strategy. Each choice of protocol and adversarial strategy results in a payoff. The design imperative is to choose the protocol that achieves the optimal payoff. We propose an "edge-tally supervised" merge protocol that is theoretically significant in three ways. First, the protocol achieves the max-min payoff; the highest possible payoff since the adversarial strategy always knows the protocol a priori. Second, the protocol actually does better and achieves the min-max payoff; it is a Nash equilibrium in the space of protocols and adversarial strategies. The adversarial nodes gain no advantage from knowing the protocol a priori. Third, the adversarial nodes are effectively limited to either jamming or conforming to the protocol; more complicated behaviors yield no strategic benefit.
AB - Distributed cyberphysical systems depend on secure wireless ad hoc networks to ensure that the sensors, controllers, and actuators (or nodes) in the system can reliably communicate. Such networks are difficult to design because, being inherently complex, they are vulnerable to attack. As a result, the current process of designing secure protocols for wireless ad hoc networks is effectively an arms race between discovering attacks and creating fixes. At no point in the process is it possible to make provable performance and security guarantees. This paper proposes a system-theoretic framework for the design of secure open wireless ad hoc networks, that provides precisely such guarantees. The nodes are initially unsynchronized, and join the network at any stage of the operation. The framework consists of a zero-sum game between all protocols and adversarial strategies, in which the protocol is announced before the adversarial strategy. Each choice of protocol and adversarial strategy results in a payoff. The design imperative is to choose the protocol that achieves the optimal payoff. We propose an "edge-tally supervised" merge protocol that is theoretically significant in three ways. First, the protocol achieves the max-min payoff; the highest possible payoff since the adversarial strategy always knows the protocol a priori. Second, the protocol actually does better and achieves the min-max payoff; it is a Nash equilibrium in the space of protocols and adversarial strategies. The adversarial nodes gain no advantage from knowing the protocol a priori. Third, the adversarial nodes are effectively limited to either jamming or conforming to the protocol; more complicated behaviors yield no strategic benefit.
KW - Ad hoc wireless networks
KW - security
UR - http://www.scopus.com/inward/record.url?scp=85016270774&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85016270774&partnerID=8YFLogxK
U2 - 10.1109/TCNS.2016.2572398
DO - 10.1109/TCNS.2016.2572398
M3 - Article
AN - SCOPUS:85016270774
SN - 2325-5870
VL - 4
SP - 37
EP - 48
JO - IEEE Transactions on Control of Network Systems
JF - IEEE Transactions on Control of Network Systems
IS - 1
M1 - 7478115
ER -