Skip to main content
Top

2018 | OriginalPaper | Chapter

Experimental Evaluation of Attacks on TESLA-Secured Time Synchronization Protocols

Authors : Kristof Teichel, Gregor Hildermeier

Published in: Security Standardisation Research

Publisher: Springer International Publishing

Activate our intelligent search to find suitable subject content or patents.

search-config
loading …

Abstract

There is an increasingly relevant class of protocols that employ TESLA stream authentication to provide authenticity for one-way time synchronization. For such protocols, an interdependency between synchronization and security has been found to theoretically enable attackers to render the security measures useless. We evaluate to what extent this attack works in practice. To this end, we use a tailor-made configurable testbed implementation to simulate behaviors of TESLA-protected one-way synchronization protocols in hostile networks. In particular, this lets us confirm vulnerabilities to the attack for two published protocols, TinySeRSync and ASTS. Our analysis also yields a set of countermeasures, with which in-development and future specifications can potentially use TESLA to successfully secure one-way time synchronization.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

  • über 102.000 Bücher
  • über 537 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Maschinenbau + Werkstoffe
  • Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 390 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Maschinenbau + Werkstoffe




 

Jetzt Wissensvorsprung sichern!

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 340 Zeitschriften

aus folgenden Fachgebieten:

  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Versicherung + Risiko




Jetzt Wissensvorsprung sichern!

Footnotes
1
Since we have occasionally run into misunderstandings about this point, we would like to point out explicitly that none of our results in any way concerns the security of TESLA in a vacuum, nor that of any protocol that uses a TESLA-like mechanism to protect a generic data stream. The results apply only to protocols which use a TESLA-like mechanism to protect exactly a one-way time synchronization protocol.
 
Literature
3.
go back to reference Annessi, R., Fabini, J., Zseby, T.: SecureTime: secure multicast time synchronization. ArXiv e-prints, May 2017 Annessi, R., Fabini, J., Zseby, T.: SecureTime: secure multicast time synchronization. ArXiv e-prints, May 2017
4.
5.
go back to reference Fernandez-Hernandez, I., Rijmen, V., Seco-Granados, G., Sim’on, J., Rodríguez, I., David Calle, J.: A navigation message authentication proposal for the Galileo open service. Navig. J. Inst. Navig. 63, 85–102 (2016)CrossRef Fernandez-Hernandez, I., Rijmen, V., Seco-Granados, G., Sim’on, J., Rodríguez, I., David Calle, J.: A navigation message authentication proposal for the Galileo open service. Navig. J. Inst. Navig. 63, 85–102 (2016)CrossRef
6.
go back to reference Hildermeier, G.: Attacking tesla-secured time synchronisation protocols. Master’s thesis, September 2017 Hildermeier, G.: Attacking tesla-secured time synchronisation protocols. Master’s thesis, September 2017
9.
go back to reference Mills, D.L.: Internet time synchronization: the network time protocol. IEEE Trans. Commun. 39(10), 1482–1493 (1991)CrossRef Mills, D.L.: Internet time synchronization: the network time protocol. IEEE Trans. Commun. 39(10), 1482–1493 (1991)CrossRef
10.
go back to reference Perrig, A., Canetti, R., Tygar, J.D., Song, D.: Efficient authentication and signing of multicast streams over lossy channels. In: Proceedings of the 2000 IEEE Symposium on Security and Privacy, S&P 2000, pp. 56–73. IEEE (2000) Perrig, A., Canetti, R., Tygar, J.D., Song, D.: Efficient authentication and signing of multicast streams over lossy channels. In: Proceedings of the 2000 IEEE Symposium on Security and Privacy, S&P 2000, pp. 56–73. IEEE (2000)
11.
go back to reference Perrig, A., Canetti, R., Tygar, J.D., Song, D.: The TESLA broadcast authentication protocol. In: RSA Cryptobytes, vol. 5 (2005) Perrig, A., Canetti, R., Tygar, J.D., Song, D.: The TESLA broadcast authentication protocol. In: RSA Cryptobytes, vol. 5 (2005)
12.
go back to reference Perrig, A., Szewczyk, R., Tygar, J.D., Wen, V., Culler, D.E.: SPINS: security protocols for sensor networks. Wirel. Netw. 8(5), 521–534 (2002)CrossRef Perrig, A., Szewczyk, R., Tygar, J.D., Wen, V., Culler, D.E.: SPINS: security protocols for sensor networks. Wirel. Netw. 8(5), 521–534 (2002)CrossRef
15.
go back to reference Sun, K., Ning, P., Wang, C.: TinySeRSync: secure and resilient time synchronization in wireless sensor networks. In: Proceedings of the 13th ACM Conference on Computer and Communications Security, pp. 264–277. ACM (2006) Sun, K., Ning, P., Wang, C.: TinySeRSync: secure and resilient time synchronization in wireless sensor networks. In: Proceedings of the 13th ACM Conference on Computer and Communications Security, pp. 264–277. ACM (2006)
17.
go back to reference Yin, X., Qi, W., Fu, F.: ASTS: an agile secure time synchronization protocol for wireless sensor networks. In: 2007 International Conference on Wireless Communications, Networking and Mobile Computing, WiCom 2007, pp. 2808–2811. IEEE (2007) Yin, X., Qi, W., Fu, F.: ASTS: an agile secure time synchronization protocol for wireless sensor networks. In: 2007 International Conference on Wireless Communications, Networking and Mobile Computing, WiCom 2007, pp. 2808–2811. IEEE (2007)
Metadata
Title
Experimental Evaluation of Attacks on TESLA-Secured Time Synchronization Protocols
Authors
Kristof Teichel
Gregor Hildermeier
Copyright Year
2018
DOI
https://doi.org/10.1007/978-3-030-04762-7_3

Premium Partner