{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,29]],"date-time":"2026-01-29T21:51:19Z","timestamp":1769723479501,"version":"3.49.0"},"reference-count":47,"publisher":"MDPI AG","issue":"3","license":[{"start":{"date-parts":[[2015,9,7]],"date-time":"2015-09-07T00:00:00Z","timestamp":1441584000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["JSAN"],"abstract":"<jats:p>Wireless sensor networks are a challenging field of research when it comes to security issues. Using low cost sensor nodes with limited resources makes it difficult for cryptographic algorithms to function without impacting energy consumption and latency. In this paper, we focus on key management issues in multi-hop wireless sensor networks. These networks are easy to attack due to the open nature of the wireless medium. Intruders could try to penetrate the network, capture nodes or take control over particular nodes. In this context, it is important to revoke and renew keys that might be learned by malicious nodes. We propose several secure protocols for key revocation and key renewal based on symmetric encryption and elliptic curve cryptography. All protocols are secure, but have different security levels. Each proposed protocol is formally proven and analyzed using Scyther, an automatic verification tool for cryptographic protocols. For efficiency comparison sake, we implemented all protocols on real testbeds using TelosB motes and discussed their performances.<\/jats:p>","DOI":"10.3390\/jsan4030251","type":"journal-article","created":{"date-parts":[[2015,9,8]],"date-time":"2015-09-08T11:59:54Z","timestamp":1441713594000},"page":"251-273","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":15,"title":["Key Management in Wireless Sensor Networks"],"prefix":"10.3390","volume":"4","author":[{"given":"Ismail","family":"Mansour","sequence":"first","affiliation":[{"name":"University Clermont Auvergne, 49 Boulevard Fran\u00e7ois Mitterrand, BP 10448, F-63000 Clermont-Ferrand, France"},{"name":"CNRS, UMR 6158, Campus des C\u00e9zeaux, LIMOS, F-63173 Aubi\u00e8re, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"G\u00e9rard","family":"Chalhoub","sequence":"additional","affiliation":[{"name":"University Clermont Auvergne, 49 Boulevard Fran\u00e7ois Mitterrand, BP 10448, F-63000 Clermont-Ferrand, France"},{"name":"CNRS, UMR 6158, Campus des C\u00e9zeaux, LIMOS, F-63173 Aubi\u00e8re, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Pascal","family":"Lafourcade","sequence":"additional","affiliation":[{"name":"University Clermont Auvergne, 49 Boulevard Fran\u00e7ois Mitterrand, BP 10448, F-63000 Clermont-Ferrand, France"},{"name":"CNRS, UMR 6158, Campus des C\u00e9zeaux, LIMOS, F-63173 Aubi\u00e8re, France"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2015,9,7]]},"reference":[{"key":"ref_1","unstructured":"Hussain, M.A., Khan, P., and Sup, K.K. (2009, January 15\u201318). WSN research activities for military application. Proceedings of the 11th International Conference on Advanced Communication Technology, Phoenix Park, Korea."},{"key":"ref_2","doi-asserted-by":"crossref","first-page":"805","DOI":"10.1016\/S1389-1286(98)00017-6","article-title":"Towards a taxonomy of intrusion-detection systems","volume":"31","author":"Debar","year":"1999","journal-title":"Comput. Netw."},{"key":"ref_3","doi-asserted-by":"crossref","first-page":"56","DOI":"10.1109\/MWC.2007.4396943","article-title":"Intrusion detection techniques in mobile ad hoc and wireless sensor networks","volume":"14","author":"Sun","year":"2007","journal-title":"IEEE Wirel. Commun."},{"key":"ref_4","doi-asserted-by":"crossref","first-page":"120","DOI":"10.1145\/359340.359342","article-title":"A Method for Obtaining Digital Signatures and Public-Key Cryptosystems","volume":"21","author":"Rivest","year":"1978","journal-title":"ACM Commun."},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"469","DOI":"10.1109\/TIT.1985.1057074","article-title":"A Public Key Cryptosystem and a Signature Scheme Based on Discrete Logarithms","volume":"31","year":"1985","journal-title":"IEEE Trans. Inf. Theory"},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"522","DOI":"10.1109\/MDT.2007.178","article-title":"A Survey of Lightweight-Cryptography Implementations","volume":"24","author":"Eisenbarth","year":"2007","journal-title":"IEEE Des. Test Comput."},{"key":"ref_7","unstructured":"Cazorla, M., Marquet, K., and Minier, M. (2013, January 29\u201331). Survey and Benchmark of Lightweight Block Ciphers for Wireless Sensor Networks. Proceedings of the 10th International Conference on Security and Cryptography (SECRYPT 2013), Reykjav\u00edk, Iceland."},{"key":"ref_8","doi-asserted-by":"crossref","unstructured":"Jeong, K., Lee, C., and Lim, J. (2013). Improved differential fault analysis on lightweight block cipher LBlock for wireless sensor networks. EURASIP J. Wirel. Commun. Netw., 2013.","DOI":"10.1186\/1687-1499-2013-151"},{"key":"ref_9","doi-asserted-by":"crossref","unstructured":"Courouss\u00e9, D., Robisson, B., Lanet, J., Barry, T., Noura, H., Jaillon, P., and Lalev\u00e9e, P. (2014, January 28\u201330). COGITO: Code Polymorphism to Secure Devices. Proceedings of the 11th International Conference on Security and Cryptography (SECRYPT 2014), Vienna, Austria.","DOI":"10.5220\/0005113704510456"},{"key":"ref_10","doi-asserted-by":"crossref","first-page":"63","DOI":"10.1016\/j.jnca.2009.10.001","article-title":"Wireless sensor network key management survey and taxonomy","volume":"33","author":"Zhang","year":"2010","journal-title":"J. Netw. Comput. Appl."},{"key":"ref_11","unstructured":"Mansour, I., Chalhoub, G., and Misson, M. (2014). Security for Multihop Wireless Networks, CRC Press."},{"key":"ref_12","unstructured":"Cremers, C. (2008, January 7\u201314). The Scyther Tool: Verification, Falsification, and Analysis of Security Protocols. Proceedings of the 20th International Conference on Computer Aided Verification, Princeton, NJ, USA."},{"key":"ref_13","doi-asserted-by":"crossref","unstructured":"Mansour, I., Chalhoub, G., Lafourcade, P., and Delobel, F. (2014, January 8\u201311). Secure Key Renewal and Revocation for Wireless Sensor Networks. Proceedings of the 39th IEEE Conference on Local Computer Networks (LCN), Edmonton, AB, Cananda.","DOI":"10.1109\/LCN.2014.6925797"},{"key":"ref_14","doi-asserted-by":"crossref","first-page":"224","DOI":"10.3390\/jsan3030224","article-title":"Evaluation of Secure Multi-Hop Node Authentication and Key Establishment Mechanisms for Wireless Sensor Networks","volume":"3","author":"Mansour","year":"2014","journal-title":"J. Sens. Actuator Netw."},{"key":"ref_15","doi-asserted-by":"crossref","unstructured":"Mansour, I., Chalhoub, G., and Lafourcade, P. (2014, January 22\u201324). Secure Multihop Key Establishment Protocols for Wireless Sensor Networks. Proceedings of International Conference on Cryptography and Security Systems, Lublin, Poland.","DOI":"10.1007\/978-3-662-44893-9_15"},{"key":"ref_16","unstructured":"Mehta, M., Huang, D., and Harn, L. (2005, January 7\u20139). RINK-RKP: A scheme for key predistribution and shared-key discovery in sensor networks. Proceedings of the 24th IEEE International on Performance, Computing, and Communications Conference, Phoenix, AZ, USA."},{"key":"ref_17","unstructured":"Park, J., Kim, Z., and Kim, K. (2005, January 7). State-based key management scheme for wireless sensor networks. Proceedings of IEEE International Conference on Mobile Adhoc and Sensor Systems, Washington, DC, USA."},{"key":"ref_18","unstructured":"Park, J., Kim, Z., and Kim, K. (2003, January 27\u201330). Random key assignment for secure wireless sensor networks. Proceedings of the 1st ACM workshop on Security of Ad Hoc and Sensor Networks, Washington, DC, USA."},{"key":"ref_19","unstructured":"Cheng, Y., Malik, M., Xie, B., and Agrawal, D. (2007, January 6\u20138). Enhanced Approach for Random Key Pre-Distribution in Wireless Sensor Networks. Proceedings of International Conference on Communication, Networking and Information Technology, Amman, Jordan."},{"key":"ref_20","doi-asserted-by":"crossref","first-page":"35","DOI":"10.1016\/j.adhoc.2006.05.011","article-title":"An Improved Key Distribution Mechanism for Large-Scale Hierarchical Wireless Networks Key Distribution","volume":"5","author":"Cheng","year":"2007","journal-title":"AD HOC Netw. J."},{"key":"ref_21","doi-asserted-by":"crossref","first-page":"233","DOI":"10.1109\/TDSC.2005.37","article-title":"On the distribution and revocation of cryptographic keys in sensor networks","volume":"2","author":"Chan","year":"2005","journal-title":"IEEE Trans. Dependable Secur. Comput."},{"key":"ref_22","unstructured":"Chan, H., Perrig, A., and Song, D. (2003, January 11\u201314). Random key predistribution schemes for sensor networks. Proceedings of IEEE Symposium on Security and Privacy, Berkeley, CA, USA."},{"key":"ref_23","first-page":"16","article-title":"A Scheme for Key Revocation in Wireless Sensor Networks","volume":"1","author":"Chattopadhyay","year":"2012","journal-title":"Int. J. Adv. Comput. Eng. Commun. Technol."},{"key":"ref_24","first-page":"10","article-title":"A Cluster-Based Random Key Revocation Protocol for Wireless Sensor Networks","volume":"6","author":"Jiang","year":"2008","journal-title":"J. Electron. Sci. Technol. China"},{"key":"ref_25","unstructured":"Dini, G., and Savino, I. (2006, January 26\u201329). An efficient key revocation protocol for wireless sensor networks. Proceedings of International Symposium on a World of Wireless, Mobile and Multimedia Networks, Buffalo, NY, USA."},{"key":"ref_26","first-page":"1859","article-title":"A Node Revocation Scheme Using Public-Key Cryptography in Wireless Sensor Networks","volume":"26","author":"Chuang","year":"2010","journal-title":"J. Inf. Sci. Eng."},{"key":"ref_27","doi-asserted-by":"crossref","unstructured":"Wang, Y., Ramamurthy, B., and Zou, X. (2007, January 24\u201328). KeyRev: An Efficient Key Revocation Scheme for Wireless Sensor Networks. Proceedings of International Conference on Communications, Glasgow, UK.","DOI":"10.1109\/ICC.2007.213"},{"key":"ref_28","first-page":"2909","article-title":"Revocation and Self-Healing of keys in Hierarchical Wireless Sensor Network","volume":"2","author":"Purohit","year":"2011","journal-title":"Int. J. Comput. Sci. Inf. Technol."},{"key":"ref_29","doi-asserted-by":"crossref","unstructured":"Wang, C., Hong, T., Horng, G., and Wang, W. (2006, January 8\u201311). A Key Renewal Scheme under the Power Consumption for Wireless Sensor Networks. Proceedings of the 4th International Conference on Photonics, Networking and Computing, Kaohsiung, Taiwan.","DOI":"10.2991\/jcis.2006.314"},{"key":"ref_30","first-page":"300","article-title":"Lightweight Key Renewals for Clustered Sensor Networks","volume":"5","author":"Wang","year":"2010","journal-title":"J. Netw."},{"key":"ref_31","unstructured":"Jolly, G., Kus\u00e7u, M., Kokate, P., and Younis, M. (July, January 30). A Low-Energy Key Management Protocol for Wireless Sensor Networks. Proceedings of the Eighth IEEE International Symposium on Computers and Communications, Kiris-Kemer, Turkey."},{"key":"ref_32","unstructured":"Standards for Efficient Cryptography Group SEC 1: Elliptic Curve Cryptography. Available online:http:\/\/www.secg.org\/2000."},{"key":"ref_33","doi-asserted-by":"crossref","unstructured":"Liu, A., and Ning, N. (2008, January 22\u201324). TinyECC: A Configurable Library for Elliptic Curve Cryptography in Wireless Sensor Networks. Proceedings of 7th International Conference on Information Processing in Sensor Networks, St. Louis, MI, USA.","DOI":"10.1109\/IPSN.2008.47"},{"key":"ref_34","unstructured":"Shoup, V. A Proposal for an ISO Standard for Public Key Encryption. Available online:http:\/\/eprint.iacr.org\/2001\/112."},{"key":"ref_35","doi-asserted-by":"crossref","unstructured":"Daemen, J., and Rijmen, V. (2002). The Design of Rijndael: AES\u2014The Advanced Encryption Standard, Springer-Verlag.","DOI":"10.1007\/978-3-662-04722-4_1"},{"key":"ref_36","unstructured":"Manica, N., Saloni, M., and Toldo, P. (2008). WSN\u2014Secure comunications with AES algoritms."},{"key":"ref_37","doi-asserted-by":"crossref","unstructured":"Blake, I.F., Seroussi, G., and Smart, N.P. (1999). Elliptic Curves in Cryptography, Cambridge University Press.","DOI":"10.1017\/CBO9781107360211"},{"key":"ref_38","unstructured":"Miller, V.S. (1986). Use of Elliptic Curves in Cryptography, Springer-Verlag New York, Inc."},{"key":"ref_39","doi-asserted-by":"crossref","first-page":"279","DOI":"10.1007\/978-0-387-46276-9_12","article-title":"Distance Bounding Protocols: Authentication Logic Analysis and Collusion Attacks","volume":"Volume 30","author":"Poovendran","year":"2007","journal-title":"Secure Localization and Time Synchronization for Wireless Sensor and Ad Hoc Networks"},{"key":"ref_40","doi-asserted-by":"crossref","first-page":"30","DOI":"10.1016\/j.ic.2014.07.004","article-title":"Modeling and Verifying Ad Hoc Routing Protocols","volume":"238","author":"Arnaud","year":"2010","journal-title":"Inf. Comput."},{"key":"ref_41","unstructured":"Pura, M.L., Patriciu, V.V., and Bica, I. (2010, January 20\u201322). Formal Verification of Secure Ad Hoc Routing Protocols Using AVISPA: ARAN Case Study. Proceedings of the 4th Conference on European Computing Conference, Bucharest, Romania."},{"key":"ref_42","doi-asserted-by":"crossref","unstructured":"Armando, A., Basin, D., Boichut, Y., Chevalier, Y., Compagna, L., Cuellar, J., Drielsma, P.H., He\u00e1m, P.C., Kouchnarenko, O., and Mantovani, J. (2005, January 6\u201310). The AVISPA Tool for the Automated Validation of Internet Security Protocols and Applications. Proceedings of 17th International Conference, CAV 2005, Edinburgh, Scotland, UK.","DOI":"10.1007\/11513988_27"},{"key":"ref_43","unstructured":"Blanchet, B. (2004, January 9\u201312). Automatic Proof of Strong Secrecy for Security Protocols. Proceedings of IEEE Symposium on Security and Privacy, Oakland, CA, USA."},{"key":"ref_44","unstructured":"Cremers, C.J.F., Lafourcade, P., and Nadeau, P. (2009). Formal to Practical Security, Springer Berlin Heidelberg."},{"key":"ref_45","unstructured":"Mansour, I., Lafourcade, P., and Chalhoub, G. Scyther code of our authentication protocols. Available online:http:\/\/sancy.univ-bpclermont.fr\/~lafourcade\/scyther-jsan-code.tar."},{"key":"ref_46","doi-asserted-by":"crossref","unstructured":"Mansour, I., and Chalhoub, G. (2012, January 28\u201330). Evaluation of different cryptographic algorithms on wireless sensor network nodes. Proceedings of International Conference on Wireless Communications in Unusual and Confined Areas, Clermont Ferrand, France.","DOI":"10.1109\/ICWCUCA.2012.6402500"},{"key":"ref_47","unstructured":"IoT-LAB. Available online:https:\/\/www.iot-lab.info\/."}],"container-title":["Journal of Sensor and Actuator Networks"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2224-2708\/4\/3\/251\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T20:48:05Z","timestamp":1760215685000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2224-2708\/4\/3\/251"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015,9,7]]},"references-count":47,"journal-issue":{"issue":"3","published-online":{"date-parts":[[2015,9]]}},"alternative-id":["jsan4030251"],"URL":"https:\/\/doi.org\/10.3390\/jsan4030251","relation":{},"ISSN":["2224-2708"],"issn-type":[{"value":"2224-2708","type":"electronic"}],"subject":[],"published":{"date-parts":[[2015,9,7]]}}}