ZigBee Device Verification for Securing Industrial Control and Building Automation Systems

Abstract : Improved wireless ZigBee network security provides a means to mitigate malicious network activity due to unauthorized devices. Security enhancement using RF-based features can augment conventional bit-level security approaches that are solely based on the MAC addresses of ZigBee devices. This paper presents a device identity verification process using RF fingerprints from like-model CC2420 2.4 GHz ZigBee device transmissions in operational indoor scenarios involving line-of-sight and through-wall propagation channels, as well as an anechoic chamber representing near-ideal conditions. A trained multiple discriminant analysis model was generated using normalized multivariate Gaussian test statistics from authorized network devices. Authorized device classification and ID verification were assessed using pre-classification Kolmogorov-Smirnov (KS) feature ranking and post-classification generalized relevance learning vector quantization improved (GRLVQI) relevance ranking. A true verification rate greater than 90% and a false verification rate less than 10% were obtained when assessing authorized device IDs. When additional rogue devices were introduced that attempted to gain unauthorized network access by spoofing the bit-level credentials of authorized devices, the KS-test feature set achieved a true verification rate greater than 90% and a rogue reject rate greater than 90% in 29 of 36 rogue scenarios while the GRLVQI feature set was successful in 28 of 36 scenarios.
Type de document :
Communication dans un congrès
Jonathan Butts; Sujeet Shenoi. 7th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2013, Washington, DC, United States. Springer, IFIP Advances in Information and Communication Technology, AICT-417, pp.47-62, 2013, Critical Infrastructure Protection VII. 〈10.1007/978-3-642-45330-4_4〉
Liste complète des métadonnées

Littérature citée [10 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01456892
Contributeur : Hal Ifip <>
Soumis le : lundi 6 février 2017 - 09:45:43
Dernière modification le : dimanche 29 avril 2018 - 13:48:02
Document(s) archivé(s) le : dimanche 7 mai 2017 - 12:42:27

Fichier

978-3-642-45330-4_4_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Clay Dubendorfer, Benjamin Ramsey, Michael Temple. ZigBee Device Verification for Securing Industrial Control and Building Automation Systems. Jonathan Butts; Sujeet Shenoi. 7th International Conference on Critical Infrastructure Protection (ICCIP), Mar 2013, Washington, DC, United States. Springer, IFIP Advances in Information and Communication Technology, AICT-417, pp.47-62, 2013, Critical Infrastructure Protection VII. 〈10.1007/978-3-642-45330-4_4〉. 〈hal-01456892〉

Partager

Métriques

Consultations de la notice

130

Téléchargements de fichiers

77