ZigBee/ZigBee PRO Security Assessment Based on Compromised Cryptographic Keys
|dc.contributor.editor||Fatos Xhafa, Leonard Barolli, Hiroaki Nishino and Markus Aleksy|
|dc.identifier.citation||Radmand, P. and Domingo, M. and Singh, J. and Arnedo, J. and Talevski, A. and Petersen, S. and Carlsen, S. 2010. ZigBee/ZigBee PRO Security Assessment Based on Compromised Cryptographic Keys, in Xhafa, F. and Barolli, L. and Nishino, H. and Aleksy, M. (ed), 5th International Conference on P2P, Parallel, Grid, Cloud and Internet Computing (3PGCIC 2010), Nov 4 2010, pp. 465-470. Fukuoka, Japan: IEEE.|
Sensor networks have many applications in monitoring and controlling of environmental properties such as sound, acceleration, vibration and temperature. Due to limited resources in computation capability, memory and energy, they are vulnerable to many kinds of attacks. The ZigBee specification, based on the 802.15.4 standard, defines a set of layers specifically suited to sensor networks. These layers support secure messaging using symmetric cryptographic. This paper presents two different ways for grabbing the cryptographic key in ZigBee: remote attack and physical attack. It also surveys and categorizes some additional attacks which can be performed on ZigBee networks: eavesdropping, spoofing, replay and DoS attacks at different layers. From this analysis, it is shown that some vulnerabilities still in the existing security schema in ZigBee technology.
|dc.publisher||IEEE Computer Society|
|dc.title||ZigBee/ZigBee PRO Security Assessment Based on Compromised Cryptographic Keys|
|dcterms.source.title||Proceedings of the 5th international conference on P2P, parallel, grid, cloud and internet computing (3PGCIC 2010)|
|dcterms.source.series||Proceedings of the 5th international conference on P2P, parallel, grid, cloud and internet computing (3PGCIC 2010)|
|dcterms.source.conference||5th International Conference on P2P, Parallel, Grid, Cloud and Internet Computing (3PGCIC 2010)|
|dcterms.source.conference-start-date||Nov 4 2010|
Copyright © 2010 IEEE This material is presented to ensure timely dissemination of scholarly and technical work. Copyright and all rights therein are retained by authors or by other copyright holders. All persons copying this information are expected to adhere to the terms and constraints invoked by each author's copyright. In most cases, these works may not be reposted without the explicit permission of the copyright holder.
|curtin.department||Digital Ecosystems and Business Intelligence Institute (DEBII)|