Diagnosing Anomalies and Identifying Faulty Nodes in Sensor Networks

In this paper, an anomaly detection approach that fuses data gathered from different nodes in a distributed sensor network is proposed and evaluated. The emphasis of this work is placed on the data integrity and accuracy problem caused by compromised or malfunctioning nodes. The proposed approach utilizes and applies Principal Component Analysis simultaneously on multiple metrics received from various sensors. One of the key features of the proposed approach is that it provides an integrated methodology of taking into consideration and combining effectively correlated sensor data, in a distributed fashion, in order to reveal anomalies that span through a number of neighboring sensors. Furthermore, it allows the integration of results from neighboring network areas to detect correlated anomalies/attacks that involve multiple groups of nodes. The efficiency and effectiveness of the proposed approach is demonstrated for a real use case that utilizes meteorological data collected from a distributed set of sensor nodes

[1]  A. Perera,et al.  On-line novelty detection by recursive dynamic principal component analysis and gas sensor arrays under drift conditions , 2003, IEEE Sensors Journal.

[2]  Özgür B. Akan,et al.  Spatio-temporal correlation: theory and applications for wireless sensor networks , 2004, Comput. Networks.

[3]  J. E. Jackson,et al.  Control Procedures for Residuals Associated With Principal Component Analysis , 1979 .

[4]  In-Beum Lee,et al.  Sensor fault identification based on kernel principal component analysis , 2004, Proceedings of the 2004 IEEE International Conference on Control Applications, 2004..

[5]  Edward J. Coyle,et al.  An energy efficient hierarchical clustering algorithm for wireless sensor networks , 2003, IEEE INFOCOM 2003. Twenty-second Annual Joint Conference of the IEEE Computer and Communications Societies (IEEE Cat. No.03CH37428).

[6]  Mohammad Ilyas,et al.  Handbook of Sensor Networks: Compact Wireless and Wired Sensing Systems , 2004 .

[7]  Ramesh Govindan,et al.  The impact of spatial correlation on routing with compression in wireless sensor networks , 2008, TOSN.

[8]  S. Joe Qin,et al.  Subspace approach to multidimensional fault identification and reconstruction , 1998 .

[9]  Symeon Papavassiliou,et al.  Architecture and Modeling of Dynamic Wireless Sensor Networks , 2004, Handbook of Sensor Networks.

[10]  Dawn Song,et al.  SIA: Secure information aggregation in sensor networks , 2007, J. Comput. Secur..

[11]  T. La Porta,et al.  On supporting distributed collaboration in sensor networks , 2003, IEEE Military Communications Conference, 2003. MILCOM 2003..

[12]  Elaine Shi,et al.  Designing secure sensor networks , 2004, IEEE Wireless Communications.

[13]  E. Pfannerstill Object recognition and correlation methods for traffic flow analysis , 2005, Proceedings. 2005 IEEE Intelligent Transportation Systems, 2005..

[14]  J. Edward Jackson,et al.  A User's Guide to Principal Components. , 1991 .

[15]  Ahmed Helmy,et al.  Correlation analysis for alleviating effects of inserted data in wireless sensor networks , 2005, The Second Annual International Conference on Mobile and Ubiquitous Systems: Networking and Services.

[16]  Kazuhiko Kato,et al.  Anomaly Detection Using Layered Networks Based on Eigen Co-occurrence Matrix , 2004, RAID.

[17]  Dawn Xiaodong Song,et al.  SIA: secure information aggregation in sensor networks , 2003, SenSys '03.

[18]  Deborah Estrin,et al.  The impact of data aggregation in wireless sensor networks , 2002, Proceedings 22nd International Conference on Distributed Computing Systems Workshops.

[19]  Hung-Lung Huang,et al.  Application of Principal Component Analysis to High-Resolution Infrared Measurement Compression and Retrieval , 2001 .

[20]  Elaine Shi,et al.  The Sybil attack in sensor networks: analysis & defenses , 2004, Third International Symposium on Information Processing in Sensor Networks, 2004. IPSN 2004.

[21]  Haiyun Luo,et al.  Statistical en-route filtering of injected false data in sensor networks , 2005, IEEE J. Sel. Areas Commun..

[22]  Dimitrios Gunopulos,et al.  Distributed deviation detection in sensor networks , 2003, SGMD.

[23]  I. Jolliffe Principal Component Analysis , 2002 .

[24]  Ossama Younis,et al.  HEED: a hybrid, energy-efficient, distributed clustering approach for ad hoc sensor networks , 2004, IEEE Transactions on Mobile Computing.

[25]  Christophe Diot,et al.  Diagnosing network-wide traffic anomalies , 2004, SIGCOMM.

[26]  J.A. Stankovic,et al.  Denial of Service in Sensor Networks , 2002, Computer.