Sage Journals: Discover world-class research

Abstract

In wireless sensor networks, the characteristics of the openness and vulnerability can lead to communication failure and node capture more easily. To cope with the deviation problem caused by the compromised nodes, this paper proposes a situation data fusion mechanism which can enhance reliability and integrality. It makes a reliability assurance scheme, which not only establishes a project distinguishing purposive and purposeless acts, but also builds a trust awareness rule based on historical trust and the correlations among current nodes. Furthermore, the data integrality is ensured in three stages, respectively. Firstly, in event detection stage, the proposed mechanism detects events and pretreats data to improve accuracy through most trust majority rule after collecting data. Moreover, during data fusion stage, data filtration is adopted to extract credible data. Additionally, the fusion weights of transactions depend on trust, so that they will change with the passage of time. As a result, the final fusion data will be closer to real value. Finally, in consistency detection stage, the detection rule with lower communication traffic is utilized to judge whether the centers are credible. Theory analyses and simulation results verify that the new mechanism can reduce the deviation. Meanwhile, reliability and stability have been validly enhanced.

1. Introduction

Owing to the wide coverage, the sharp increase of network flow, the huge amounts of data [1], and the frequent interactions and communications among network resources, future wireless sensor networks need situation data fusion mechanism to manage. Situation awareness [2, 3], such as security and survival situation awareness, regards data fusion as center, so that its model depends on fusion model [4, 5]. Its system structure can be classified into 5 sections: detection, perception, prediction, evaluation, and decision. Those networks with limited sources and store capacities, such as P2P, MANETs, and ad hoc, joining data fusion, can lead to the characteristics of openness, dynamics, and vulnerability, which can easily cause communication failure and node capture. The captured issues affecting the output of aggregators can be classified into two categories: (1) information is falsified in the process of transmission and (2) after information arrives at node, data is falsified by node. Encryption and authentication techniques can deal with the problem in transit, while this paper mainly considers how to fuse the situation data after nodes are compromised. The adversaries want to cause the deviation between fusion value and real value by 3 ways in [6]: (1) fabricating terminal data to misadvise higher center, (2) falsifying or tampering fusion data of center, and (3) hiding information and not telling other nodes related information.

It is an effective measurement building trust model to reduce the influence caused by capture attacks. As a result, many methods based on trust come into being, whereas there is a focus on finding a secure and credible aggregation model. At present, many data fusion researches based on trust [7, 8] hardly consider historical and time correlation. They fuse data with the same transaction weight or with fixed weight.

The aggregation method proposed in [9] regards MEDIAN function as reference to fuse data, which is more reliable than MAX, MIN, AVG [10], and SUM fusion function, because adversary can easily affect the SUM, MAX, and MIN value by changing some data reports. The network aggregation scheme in [11, 12] ensures data integrity and reliability, but it depends on SUM, MAX, or MIN and fusion weights are fixed. It cannot cope with sortie attacks and needs to tackle the detectable evil nodes. The aggregation method based on reputation in [13] supposes true and false data number yield to beta distribution, assuming that only terminals can be captured, which is unpractical, because center also can be captured. The average fusion method (AFR) proposed in [10] refers to AVG as benchmark. After handling data, it uses AVG to fuse data. Heterogeneous neuron fusion (BPR) in [14] regards terminals as neurons and considers fusion as the processing of handling neuron data by primary function. But after fusion, the deviation is big. Above methods can respond known attack and hardly consider time and historical correlation, which also lack consistency rule to detect reliability of node.

This paper proposes a fusion mechanism MCMR based on trust, not only supposing that terminals can be captured, but also considering that centers can be compromised. It considers historical and time correlation and draws up situation trust awareness rule on historical trust and current data correlation. The mechanism contains 3 periods: when detecting events, relative nodes upload data reports to centers, and then, centers judge whether events have happened by most trust majority rule MMR. If they ensure that given events have happened, they will pretreat data before fusing data. Next, they fuse data with the transaction fusion weights related to trusts. Finally, during consistency detection, it utilizes consistence detection rule $RSR$ to verify reliability of centers and issues the final value.

This paper is organized as follows. Section 2 introduces the system model. Then, Section 3 introduces situation data fusion mechanism MCMR. In Section 4, we introduce the reliability assurance scheme of mechanism. Section 5 analyzes simulation and evaluates performance. At last, we summarize the paper and point out future directions.

2. System Model

This situation fusion mechanism has 3 steps: event detection, situation data fusion, and consistency detection. At first, the mechanism picks up the relative terminal sensor nodes and central nodes of event. Then, after all relative sensor nodes collect data, they will send data to their upper centers. Next, after centers have fused and tackled data, they will send data to base station. Finally, base station detects consistency of centers and issues the fusion value. The mechanism network model is presented in Figure 1. There are only 3 kinds of nodes in the network: terminal node, center, and base station. The detection coverage of terminal node $r_{i}$ , $i = 1, \dots, 12$ is a circle with radius $R_{1}$ . The detection coverage of center $c_{i}$ , $i = 1, \dots, 4$ is a circle with radius $R_{2}$ . $r_{1}$ , $r_{2}$ , and $r_{5}$ belong to $c_{1}$ . $r_{3}$ , $r_{4}$ , and $r_{6}$ belong to $c_{2}$ . $r_{7}$ , $r_{9}$ , and $r_{10}$ belong to $c_{3}$ . $r_{8}$ , $r_{11}$ , and $r_{12}$ belong to $c_{4}$ . All sensor nodes should cover the area across the board. Meanwhile, all centers should cover all terminal nodes. The base station can communicate with all nodes and tackle and store data. Centers can both gather and tackle data. Terminal nodes can just collect data. Sensor nodes can detect events in detection coverage.

Figure 1

Mechanism network model.

As is shown in Figure 1, events x and y occurred simultaneously. The relative sensor nodes of event y are $r_{6}$ , $r_{8}$ , $c_{2}$ , and $c_{4}$ . The relative sensor nodes of event x are $r_{10}$ , $r_{11}$ , and $c_{4}$ . Hence, node $r_{8}$ detects the events x and y simultaneously. $r_{7}$ and $r_{11}$ are the abnormal nodes. If an event has happened in the coverage of a node, we define the node as relative node to this event. If there are centers among relative sensor nodes, the centers become relative centers, directly, for example, $c_{2}$ , $c_{4}$ to event y. If there are no centers among relative sensor nodes, the centers having the relative terminal nodes will become relative centers, for example, $c_{3}$ to event x. The total collection of all nodes is $N N^{'}$ , which contains all nodes in the network.

3. Situation Trust Data Aggregation Mechanism

3.1. Event Detection

Event detection mainly decides whether the contingent event uploaded by sensors has happened or not. Generally, if an event has happened, we can consider its state as 1, or we will consider its state 0. There are several methods to decide the state of event, such as “AND” rule, “OR” rule, “majority” rule. To “AND” rule, only if a sensor says the state is 1, it judges state as 1. To “OR” rule, only if a sensor says the state is 0, it judges state as 0. To common majority rule (CMR), if more than half of sensors say the state is 1, it judges state as 1. In persistent period t, the arrival number of events yields to the random Poisson distribution, so that several events that occur at the same time can be considered as events occurring in slot time $Δ t \to 0$ . The collection of contingent concurrence events is $E^{'} = [e_{1}, e_{2}, \dots, e_{w^{'}}]$ . The collection of probable relative nodes is $N^{'} = [n_{N_{1}^{'} \times 1}, \dots, n_{N_{e}^{'} \times 1} \dots, n_{N_{w}^{'} \times 1}]$ , where the number of probable relative nodes to event e is $N_{e}^{'}$ , and $w^{'}$ is the number of contingent concurrence events.

In this part, this mechanism judges the state of event by MMR, which is an improved rule of “majority” rule as follows.

First, trust filtration: the filtration function is $f : ϑ (θ_{i, e}) \to [0,1]$ , $i \in N^{'}$ , $e \in E^{'}$ . If $θ_{i, e} > \hat{θ}$ , then $ϑ (θ_{i, e}) = 1$ , or $ϑ (θ_{i, e}) = 0$ and vice versa, where $θ_{i, e} \in [0,1]$ is the trust of node i to event e and $\hat{θ}$ is the threshold of trust filtration.

Second, individual detection: the individual detection function is $f : δ_{i, e} \to [0,1]$ , $i \in N^{'}$ , $e \in E^{'}$ . If node i finds e have happened, then $δ_{i, e} = 1$ , or $δ_{i, e} = 0$ .

Finally, base station decision: decision function is f:

\begin{array}{l} even t_{e} \\ = {\begin{cases} 1, & \sum_{i \in N^{'}} θ_{i, e} δ_{i, e} \times ϑ (θ_{i, e}) > \sum_{i \in N^{'}} θ_{i, e} (1 - δ_{i, e} \times ϑ (θ_{i, e})), \\ 0, & others, \end{cases} \end{array}

(1)

where

i \in N^{'}

e \in E^{'}

. If

even t_{e} = 1

, the base station will decide that e has happened, or it will judge that e has not happened. If the terminal node has the same individual detection result as base station decision result and its trust filtration result is 1, it will come into relative node collection

N = [n_{N_{1} \times 1}, \dots, n_{N_{e} \times 1} \dots, n_{N_{w} \times 1}]

, where the total number of relative nodes to event e is

N_{e}

and w is the number of events. The concurrence event collection is

E = [e_{1}, e_{2} \dots, e_{w}]

. The event detection is given in Procedure 1.

Procedure 1: Event detection $(E^{'}, \hat{θ})$ .

Input: the collection $E^{'}$ and trust filtration threshold $\hat{θ}$

Output: the state of event $e \in$ $E^{'}$ : ${event}_{e}$

(1) for $e = 1, \dots, w^{'}$ do

(2) for $i = 1, \dots, N_{e}^{'}$ do

(3) if $θ_{i, e} > \hat{θ}$ then

(4) $ϑ (θ_{i, e}) = 1$

(5) else

(6) $ϑ (θ_{i, e}) = 0$

(7) end if

(8) end for

(9) if i finds e have happened then

(10) $δ_{i, e} = 1$

(11) else

(12) $δ_{i, e} = 0$

(13) end if

(14) if $\sum_{i = 1}^{N} θ_{i, e} δ_{i, e} \times ϑ (θ_{i, e}) > \sum_{i = 1}^{N} θ_{i, e} (1 - δ_{i, e} \times ϑ (θ_{i, e}))$ then

(15) ${event}_{e} = 1$

(16) else

(17) ${event}_{e} = 0$

(18) end if

(19) end for

In system model, $E = [e_{1}, e_{2}] = [x, y]$ , $w = 2$ , because there are 2 events concurrently, event x and event y. The relative node collection can be expressed as $N = [n_{N_{1} \times 1}, n_{N_{2} \times 1}]$ , $n_{N_{1} \times 1} = {[r_{10}, r_{11}, c_{4}]}^{T}$ , $n_{N_{2} \times 1} = {[r_{6}, r_{8}, c_{2}, c_{4}]}^{T}$ .

In event detection, because of the application of MMR, the probability of misrepresentation attack success reduces.

Proposition 1.

If the probability of evil nodes eliminated by MMR is $l > 0$ , the average probability of attack success of MMR, $P_{F M}$ , is smaller than that of common majority rule (CMR), $P_{F G}$ ; concisely, $P_{F M} \leq P_{F G}$ .

Proof.

To w concurrence events, the false detection probability [15] can be expressed as

\begin{matrix} P_{f} = P {\frac{1}{w} \sum_{k = 1}^{w} N_{k}^{2} > η} = 1 - P {\sum_{k = 1}^{w} N_{k}^{2} \leq w η}, \end{matrix}

(2)

where

N_{k}^{2}

is the noise variance, η is the threshold, and

\sum_{k = 1}^{w} N_{k}^{2}

obeys the Chi-square distribution with degree of freedom w. The cumulative distribution function is

χ_{w}^{2} (\cdot)

, and, therefore, we know the true detection probability is

1 - p_{f} > 0.5

p_{f} = 1 - χ_{w}^{2} (w η)

. If H is the number of nodes joining CMR and the number of malicious nodes is

X \leq H

, we can know the number of nodes joining MMR is

F = H - X \cdot l

0 < F < H

. To MMR, we get the average probability of attack success:

\begin{matrix} P_{FM} = {\sum_{\begin{matrix} r = F / 2 \\ F = H - X \cdot l \end{matrix}}^{F} (\begin{pmatrix} F \\ r \end{pmatrix}) {(1 - p)}^{F - r} {(p)}^{r} |}_{p = p_{f}}, \\ P_{FM} = \sum_{\begin{matrix} r = F / 2 \\ F = H - X \cdot l \end{matrix}}^{F} (\begin{pmatrix} F \\ r \end{pmatrix}) {(χ_{w}^{2} (w η))}^{F - r} {(1 - χ_{w}^{2} (w η))}^{r} . \end{matrix}

(3)

To CMR, we can also obtain the average probability of attack success:

\begin{matrix} P_{FG} = \sum_{r = H / 2}^{X} (\begin{pmatrix} H \\ r \end{pmatrix}) {(χ_{w}^{2} (w η))}^{H - r} {(1 - χ_{w}^{2} (w η))}^{r} . \end{matrix}

(4)

When $X < H / 2$ , $P_{FM} = P_{FG} = 0$ .

When $X = H / 2$ , $P_{FM} = 0 < P_{FG} = (\begin{smallmatrix} H \\ r \end{smallmatrix}) {(1 - p)}^{H - r} {(p)}^{r}$ .

When $H / 2 < X \leq H$ and $l > 0$ , $F = H - X \cdot l < H$ . Because $f (F) = \sum_{r = 0}^{F / 2 - 1} (\begin{smallmatrix} F \\ r \end{smallmatrix}) {(1 - p)}^{F - r} {(p)}^{r}$ is a diminishing function and the bigger F is, the smaller $f (F)$ is, so we know

\begin{array}{l} 1 - \sum_{r = 0}^{F / 2 - 1} (\begin{pmatrix} F \\ r \end{pmatrix}) {(1 - p)}^{F - r} {(p)}^{r} < 1 - \sum_{r = 0}^{H / 2 - 1} (\begin{pmatrix} H \\ r \end{pmatrix}) {(1 - p)}^{H - r} {(p)}^{r} \\ ⟹ \sum_{r = F / 2}^{F} (\begin{pmatrix} F \\ r \end{pmatrix}) {(1 - p)}^{F - r} {(p)}^{r} \\ < \sum_{r = H / 2}^{H} (\begin{pmatrix} H \\ r \end{pmatrix}) {(1 - p)}^{H - r} {(p)}^{r} \\ ⟹ P_{FM} < P_{FG} . \end{array}

(5)

Therefore, $P_{FM} \leq P_{FG}$ .

3.2. Data Resilient Aggregation

Data fusion is intended to know the concrete data of event. If the event is fire emergency, the data may be the temperature and smoke scope. Fusion methods in [9, 10, 13, 14, 16] presented how to fuse data but did not pretreat data before data fusion. Situation data fusion proposed in this paper considers how to pretreat data, which contains 3 stages: prior judgment, data filtration, and data fusion.

The first stage is prior judgment: when there are several events that happened simultaneously. It processes event data in chronological order. If several events have occurred, the base station will preferentially tackle event with biggest prior. Other events with lower prior will wait until that has been finished. If only one event has happened, it can enter data filtration directly.

Definition 2 (prior judgment rule).

To concurrence events in E, there is priority [17] collection $ρ = {[ρ_{1}, \dots, ρ_{e}, \dots, ρ_{w}]}_{1 \times w}$ , $ρ_{e} \in (0,1)$ . The mechanism selects and handles the event with biggest prior weight preferentially, according to formula $\max I_{e \in E}$ , where $I_{e} = ρ_{e} / \sum_{i \in E} ρ_{i}$ .

In system model, to events x and y, if $I_{x} < I_{y}$ , the mechanism will handle event y, preferentially.

The second stage is data filtration: pretreatment of event data.

Definition 3 (data filtration rule).

To current event e, if all relative nodes in $n_{N_{e} \times 1}$ belong to L relative centers, L centers will constitute collection $C_{e} = {A_{1}, \dots, A_{v}, \dots, A_{L}}$ . If node $i \in n_{N_{e} \times 1}$ belongs to relative center $A_{v} \in C_{e}$ , $v = 1, \dots, L$ , it can come into collection $O_{v, e}, v = 1, \dots, L$ . To arbitrary node i in $O_{v, e}$ , if it meets condition 1: $| dat a_{i} - dat a_{O_{v, e} med} | < Δ d$ , $i \in O_{v, e}$ , it can enter next stage, data fusion, where $dat a_{i}$ is the detection data of node i, and $Δ d$ is the correlation threshold, and $dat a_{O_{v, e} med}$ is the median data of $dat a_{i}$ , $i \in O_{v, e}$ . Meanwhile, the center $A_{v} \in C_{e}$ rejects these nodes not meeting “condition 1,” with the probability $1 - ε$ . In other words, these nodes not meeting “condition 1” can enter data fusion, with the probability ε.

To the center $A_{v} \in C_{e}$ , after data filtration, the nodes in $O_{v, e}$ meeting “condition 1” constitute node collection $F_{v, e}$ , and those nodes in $O_{v, e}$ which can enter data fusion will constitute node collection $H_{v, e}$ . We record the size of $O_{v, e}$ as $m_{v, e}$ . To the relative center $A_{v} \in C_{e}$ , if there are $M_{v, e}$ nodes meeting “condition 1,” $F_{v, e}$ will have $M_{v, e}$ elements. We round $M_{v, e} + (m_{v, e} - M_{v, e}) ε$ to the nearest integer, and $H_{v, e}$ will have round $(M_{v, e} + (m_{v, e} - M_{v, e}) ε)$ elements. The error frequency of node i in collection $O_{v, e}$ is $nu m_{i}$ , $i \in O_{v, e}$ . To event e, the data filtration procedure of center $A_{v} \in C_{e}$ is given in Procedure 2.

Procedure 2: Data filtration ( $O_{v, e}, {data}_{O_{v, e} med}, Δ d, ε$ ).

Input: $dat a_{O_{v, e} med}$ , the collection $O_{v, e}$ , threshold $Δ d$ , and ε

Output: the collection $H_{v, e}$

(1) for $i = 1, \dots$ , size( $O_{v, e}$ ) do

(2) if $| dat a_{i} - dat a_{O_{v, e} med} | \geq Δ d$ then

(3) center $A_{v} \in C_{e}$ lets node i into $H_{v, e}$ with probability

$1 - ε$ and reduces the trust of node $i \in$ $O_{v, e}$

(4) else

(5) center $A_{v} \in C_{e}$ lets node i into $H_{v, e}$

(6) end if

(7) end for

In system model, to event y, we can get $C_{e} = {c_{2}, c_{4}} = {A_{1}, A_{2}}$ , $L = 2$ , $O_{1, y} = {c_{2}, r_{6}}$ , $O_{2, y} = {c_{4}, r_{8}}$ , $dat a_{O_{1, y} med} = (dat a_{c_{2}} + dat a_{r_{6}}) / 2$ , $dat a_{O_{2, y} med} = (dat a_{c_{4}} + dat a_{r_{8}}) / 2$ . To event y, there is no abnormal node, and we suppose $H_{1, y} = O_{1, y}$ , $H_{2, y} = O_{2, y}$ .

The third stage is data fusion: the data fusion rule is as follows.

Definition 4 (data fusion rule).

The data yields to uniform distribution, according to equilibrium theory, multiplying data inverse function, $γ_{i} : f (dat a_{i}) = \sqrt{2 π} σ \exp {(dat a_{i} - u)^{2} / 2 σ^{2}}$ , where the real value is u. This can get the data in unified form. To current event e, according to the $dat a_{i}$ and the trust $θ_{i, e}$ of node $i \in H_{v, e}$ , relative center $A_{v} \in C_{e}$ can get fusion value:

\begin{matrix} d_{A_{v}, e} = \frac{\sum_{i \in H_{v, e}}^{} θ_{i, e} dat a_{i}}{\sum_{i \in H_{v, e}}^{} θ_{i, e}} . \end{matrix}

(6)

Generally, based on the trusts

θ_{A_{v}, e}

A_{v} \in C_{e}

, the mechanism can compute the center fusion value:

\begin{matrix} B A d_{e} = \frac{\sum_{A_{v} \in C_{e}}^{} θ_{A_{v}, e} d_{A_{v}, e}}{\sum_{A_{v} \in C_{e}}^{} θ_{A_{v}, e}} . \end{matrix}

(7)

In system model, to event y, we can get

d_{A_{1}, y} = (θ_{c_{4}, y} dat a_{c_{4}} + θ_{r_{8}, y} dat a_{r_{8}}) / (θ_{c_{4}, y} + θ_{r_{8}, y})

d_{A_{2}, y} = (θ_{c_{2}, y} dat a_{c_{2}} + θ_{r_{6}, y} dat a_{r_{8}}) / (θ_{c_{2}, y} + θ_{r_{6}, y})

, and

B A d_{y} = (θ_{A_{1}, y} d_{A_{1}, y} + θ_{A_{2}, y} d_{A_{2}, y}) / (θ_{A_{1}, y} + θ_{A_{2}, y})

3.3. Consistency Detection

Definition 5 (consistency detection rule (RSR)).

After base station accepts the fusion value of relative centers in $C_{e}$ , it will begin to check consistency of centers, by selecting λ terminal nodes belonging to relative centers in $C_{e}$ to send data, randomly. λ nodes compose collection $S_{e}$ . They shape the fusion data $B S d_{e} = med [dat a_{i}]$ , $i \in S_{e}$ . If $| B S d_{e} - B A d_{e} | < Δ data$ , the station will think that all centers in $C_{e}$ are reliable, where $Δ data$ is the correlation threshold. And then, it regards $B A d_{e}$ as final fusion value. Otherwise, the consistency detection is failed, and the base station will repeat the operation to detect consistency. In excess of the maximum number κ of replication, it will cut down trusts of centers not meeting condition 2: $| B A d_{e} - med [d_{A_{v} e}] | < Δ data, A_{v} \in C_{e}$ , and regards $B S d_{e}$ as final fusion value, where $d_{A_{v} e}$ is the data of $d_{A_{v} e}, A_{v} \in O_{v, e}$ , and $med [d_{A_{v} e}]$ is the median of all $d_{A_{v} e}, A_{v} \in C_{e}$ . The error frequency of each center $A_{v}$ is $nu m_{A_{v} e}$ , respectively. To event e, the consistency detection procedure is as Procedure 3.

Procedure 3: Consistency detection $Δ data$ , λ, κ, $med [d_{A_{v}, e}], B A d_{e}$ , $C_{e}$ .

Input: $Δ data, λ, κ, med [d_{A_{v} e}], BA d_{e}$ , and the collection $C_{e}$

Output: adjust the trust of relative center $A_{v} \in$ $C_{e}$

(1) for $k = 1, \dots, κ$ do

(2) base station selects λ terminal nodes of centers in $C_{e}$ to send

data randomly

(3) λ nodes send data to base station

(4) station computes $BS d_{e} = median (dat a_{i}, i \in$ $S_{e})$

(5) if $| BS d_{e} - BA d_{e} | < Δ data$ then

(6) base station considers all centers in $C_{e}$ are reliable and

regards $BA d_{e}$ as final fusion value

(7) end if

(8) if $k = = κ$

(9) station regards $BS d_{e}$ as final fusion value

(10) for $k = 1, \dots, size (C_{e})$ do

(11) if $| BA d_{e} - med [d_{A_{v} e}] | < Δ data, A_{v} \in$ $C_{e}$

(12) station reduces the trust of center $A_{v} \in$ $C_{e}$

(13) end if

(14) end for

(15) end if

(16) end for

In system model, to event y, at the consistency detection stage, the base station will select λ terminal nodes from the lower level nodes $r_{3}$ , $r_{4}$ , $r_{6}$ , $r_{8}$ , $r_{11}$ , and $r_{12}$ to detect the consistency of $c_{2}$ , $c_{4}$ .

Presently, most researches hardly have considered consistency detection. This mechanism has used consistency detection $RSR$ to detect the consistency of center. Compared with general overall search detection $(GAS)$ , $RSR$ has lower complexity and workload. If the number of nodes joining data fusion is S and the sampling number of nodes in consistency detection is I, we can see the complexity of GAS is $O (S^{2} + S / 2)$ and that of RSR is $O (I S + S / 2)$ . The ratio of the former to the latter is $S / I$ . We know the reliability of GAS is close and lesser than 1 and that of RSR is $1 - (\begin{smallmatrix} k \\ i \end{smallmatrix}) \cdot (\begin{smallmatrix} n - k \\ m - i \end{smallmatrix}) / (\begin{smallmatrix} n \\ m \end{smallmatrix})$ . The mechanism flow chat is like Figure 2.

Figure 2

Mechanism flow chat.

4. Reliability Assurance Scheme of Mechanism

In order to ensure its reliability, this mechanism especially builds reliability assurance scheme from two aspects as follows: (i)

establishing trust awareness rule on historical value and current data correlation;

(ii)

building project distinguishing purposive acts and nonpurposive acts.

4.1. Trust Awareness Rule of Mechanism

According to historical trust and current data correlation, the mechanism adjusts trust. If several events occur at the same time, the trust renewal will refer to prior judgment. If there is a new event, it will wait until current event has finished. Owing to evil acts of terminal node, the trust will be reduced by 0.1, but for that of center the trust will be decreased by 0.2. The initial trust of terminal sensor node is 0.8, but that of central node is 1. If the current event is not in the coverage of nodes, the mechanism will retain their trusts. All trusts return initial states, every executing fusion 20 times. In several stages, trust updating is as follows. (i)

To event e, owing to the existence of concealed attack, in event detection, to all relative nodes, only relative nodes in N having the same event detection result as their center will retain their trusts; however, others will reduce by $Δ θ$ . The other irrelative nodes will retain their intrinsic states.

(ii)

To event e, owing to the existence of concealed attack, in event detection, only relative nodes in N having the same event detection result as their center will retain their trusts; however, others will reduce by $Δ θ$ . The other irrelative nodes retain their intrinsic states. To event e, according to the error frequencies, the mechanism will reduce trusts of relative nodes not meeting “condition 1” in data fusion. Because of the error frequency $nu m_{i}$ , $i \in O_{v, e}$ of each node i in collection $O_{v, e}$ , the trust of node i will be updated as $θ_{i e} = θ_{i e} - 0.1 nu m_{i}$ .

(iii)

To event e, in consistency detection, the base station compares $B A d_{e}$ with $B S d_{e}$ . If $| B S d_{e} - B A d_{e} | < Δ data$ , it will retain the trusts of relative centers in $C_{e}$ . If $B A d_{e}$ and $B S d_{e}$ do not always meet the condition $| B S d_{e} - B A d_{e} | < Δ data$ and the repeat count exceeds the maximum number κ, the system will cut down trusts of relative centers in $C_{e}$ not meeting condition 2: $| B A d_{e} - med [d_{A_{v} e}] | < Δ data, A_{v} \in C_{e}$ . Owing to the error frequency $nu m_{A_{v}}$ of each center $A_{v}, A_{v} \in C_{e}$ , the trust of $A_{v}$ will be adjusted to $θ_{A_{v} e} = θ_{A_{v} e} - 0.2 nu m_{A_{v} e}$ .

(iv)

After the mechanism has released the final fusion value, it begins to adjust trust. To all nodes having joined the fusion of current event e, the association degree of arbitrary two nodes between i, $i \in H_{v, e}$ and q, $q \in H_{v, e}$ is $ξ_{i q}$ . If $| dat a_{i} - dat a_{q} | < Δ data$ , $ξ_{i q} = 1$ , or $ξ_{i q} = 0$ . To arbitrary node i, $i \in H_{v, e}$ , its historical trust is ${\tilde{θ}}_{i}$ . Time decay factor is μ. The trust of node i will be updated as

\begin{matrix} θ_{i, e} = μ {\tilde{θ}}_{i} + \frac{(1 - μ)}{M_{v, e} + (m_{v, e} - M_{v, e}) ε} \sum_{q = 1}^{M_{v, e} + (m_{v, e} - M_{v, e}) ε} ξ_{i q} . \end{matrix}

(8)

4.2. Distinguishing the Purposive Acts and Nonpurposive Acts

We call the accidental false actions nonpurposive act, while the false reports based on the equipment failure and compromising nodes we call them purposive act. The probability of normal node appearing m consecutive errors is $(1 - ε)^{m}$ , but that of malicious node is $ε^{m}$ , because of the manipulated data. Hence, the ratio of the former to the latter is about $(ε / 1 - ε)^{m}$ . The probability of malicious node far outweighed that of normal node.

Therefore, it can distinguish the two kinds of acts based on the consecutive error number. Generally, it defines s consecutive errors as the purposive act. s can be adjusted.

5. Performance Evaluation and Simulation Analysis

In order to evaluate the mechanism performance and prove the applicability and reliability, we simulate the situation data fusion mechanism relying on the above theoretical frame. We consider shadow fading and free path loss when communicating in wireless environment. The hardware experiment environment is Intel Core (TM) Duo 2.66 GHz CPU, 2 GB Memory, Windows XP operating system, MATLAB 7.0 simulation platform. Nodes distribute in 110 m*110 m area symmetrically, with cluster-class method in [18]. Nodes distribution is approximate to uniform distribution. The parameter setting is as in Table 1.

Table 1

Parameter setting.

Name	Description	Default
N	The whole number of nodes	100
C	The number of centers	4
R ₁	The sensing radius of terminal	1 m
R ₂	The sensing radius of center	$2 \sqrt{2}$ m
ma_per	The percentage of time when a malicious node starts the attack	100%
w	The number of concurrence events	0
$(- ε, ε)$	The error range of each node	(−0.05, 0.05)
q	The percentage of compromised reports to total reports	0%
$\hat{θ}$	The lowest trust of system	0.3
μ	Time decay factor	1
$Δ d$	Data filtration threshold	5
$Δ data$	Correlation threshold in consistency detection	5
κ	The maximum number of replication in consistency detection	10
λ	The percentage of attacks to total nodes	20%

We analyze overall and local performance. Overall performance: damage degree, stability, and trust situation. Local performance: probability of attack success of MMR in event detection, complexity, and reliability of RSR in consistency detection.

5.1. Overall Performance Evaluation of Mechanism

We chose algorithms which are as follows: average function fusion rule (AFR) [10] and heterogeneous situation neuron fusion rule (BPR) [14]. Comparing MCMR with above two rules, we describe deviation degree and stability in Figures 3 and 4, respectively. Moreover, we operate them to compute data with recommended parameters and primary function.

Figure 3

Situation of damage degree (MADDP).

Figure 4

The mean square error, nodes, and capture ratio.

5.1.1. Average Function Fusion Rule (AFR)

AFR [10] considers average as primary value when fusing data. After that, it computes fusion value by AVG function. AFR may eliminate some malicious nodes but fail to detect adversaries with abnormal data, which can cause reference average increasing, finally provoking sharp deviation. Meanwhile, the fluctuation of error happens. MCMR can reject abnormal data to improve stability.

5.1.2. Heterogeneous Situation Neuron Fusion Rule (BPR)

BPR [14] regards lower nodes as neurons, defining fusion computing as a process from input to output. The input is processed by primary function, geometric mean function. The weights of neurons adjustment and thresholds adjustment based on last value and error both continuously change. Moreover, there is no strategy to cope with sudden data change due to the lack of data filtration and preprocessing. The deviation also uncontrollably fluctuates.

5.1.3. Damage Degree Evaluation

Owing to many uncertain factors, the mechanism may have damage error inevitably. We define damage degree as the deviation between fusion value and real data. The bigger the damage degree is, the bigger the deviation is. The measure norm is mean absolute degree of damage percentage (MADDP). Consider

\begin{matrix} MADDP = \frac{1}{N} \sum_{n = 1}^{N} | \frac{fusio n_{n} - real}{\max (real, fusio n_{n})} |, \end{matrix}

(9)

where

fusio n_{n}

is nth fusion value, real is real value, and N is fusion frequency.

The simulation result is like Figure 3, after simulating MCMR, MFR [9], AFR [10], and BPR [14] for 25 times under attack and no attack environment, respectively. From Figure 3(a), we know when there is no attack, MADDP of MFR will be lowest, being close to 0. There are heaves at 13th and 19th events, because terminals without communication have been selected in consistence detection, thus causing damage degree increasing. From Figure 3(b), we can see when there are attacks, MADDP of MCMR will be lowest. AFR is from 0.2 to 0.5. MFR is from 0 to 0.5, but BPR is from 0.6 to 0.95. Because attacks lie in 3rd, 8th, 13th, 15th, and 18th events, MADDP of these four methods increases. Therefore, when there are attacks, MADDP of MCMR is the lowest. When there is no attack, MADDP of MFR is the lowest.

5.1.4. Stability Evaluation

The mechanism regards the minimum mean square error (MMSE) [19, 20] as norm to evaluate stability. Adversaries want to capture nodes to cause MMSE increasing. MCMR can filter out abnormal ones to reduce MMSE of mechanism. According to MADDP of MCMR, MFR, AFR, and BPR, we can obtain variances under attack environment, respectively, as follows: 0.026, 0.073, 0.144, and 0.652. In summary, we can get the performance comparison as in Table 2.

Table 2

Performance comparison.

Algorithm	MCMR	AFR	BPR	MFR
MADDP with attacks	0~0.1	0.2~0.5	0.6~0.9	0~0.5
MMSE of simulation	0.026	0.144	0.652	0.073

According to the detection error of per node $e_{i} ~ U (- ε, ε)$ , the mean $ε^{2} / 3$ , the variance $4 ε^{2} / 45$ , and the mean square error $ς^{2} = 1 / n \sum_{i = 1}^{n} e_{i}^{2}$ , if the number of nodes joining fusion is n and the capture ratio is α, we can know $\lim_{n \to \infty} F_{n} (ς^{2} \leq ς_{0}^{2}) = \lim_{n \to \infty} P ((ς^{2} - u) / σ \leq (n ς_{0}^{2} - u) / σ)$ yields to normal Gaussian distribution, where $ς_{0} = k ε$ , $u = \sum_{i = 1}^{n} u_{i}^{2}$ , and $σ = \sqrt{\sum_{i = 1}^{n} σ_{i}^{2}}$ , so $\lim_{n \to \infty} F_{n} = Φ (\sqrt{5 n} / 2 * (3 k^{2} - 1) - n α Δ)$ . Owing to the fluctuation and uncertainty of BPR, the experiment compares MMSE of AFR and MCMR on the condition of $n = 50$ , $α = 0.2$ , and $n = 50$ , $α = 0.9$ , respectively. Then, we gain the average performance after operating it 25 times as in Figure 4. As is shown in Figure 4, MMSE of MCMR is relative concentration, and it is from $0.5 ε$ to $1.2 ε$ . We can know it rises with the increasing of compromised ratio. However, MMSE of AFR is at the range of $3 ε ~ 4.6 ε$ .

5.1.5. Trust Situation of Mechanism

The mechanism depends on trust to assign weight during data fusion, and it evaluates trust by historical trust and data correlation. It separates trusts into ABCD levels like Table 3.

Table 3

Trust level^a.

Trust	Trust level	Remark
0–0.3	A	Unlikelihood
0.3–0.5	B	Not very likelihood
0.5–0.8	C	Probable
0.8–1.0	D	Reliable

^aIf the trust level of node is A, it will be eliminated. Only nodes trust level higher than B can access.

The simulation visualizes the misrepresentation and data outlier as in Figure 5. Figure 5(a) shows trust situation after simulating 25 events without attack by MCMR. The gray areas in the upper left are the learning process. Figure 5(b) is trust situation after simulating 25 events with misrepresentations by MCMR. There are always misrepresentations in 14th and 21st nodes, so their trusts reduce from 0.8 to 0.3, gradually. And finally, after their trusts are lower than $\hat{θ}$ , they will be out. Figure 5(c) displays data outlier distribution situation of 25 events, orderly. The gray areas represent attacks that are not serious in these areas, but the black areas represent attacks that are serious. Figure 5(d) is trust situation after simulating 25 events with outlier distribution in Figure 5(c) by MCMR. Because there are several consecutive errors in the 7th and 10th nodes and sporadic errors in others, such as 23rd, 30th, 31st, and 32nd nodes, trusts of the former nodes obviously reduce to 0.3, so they will be removed. Whereas trusts of the latter nodes decrease, they are preserved.

Figure 5

Trust situation with attacks and no attack.

Hence, trust situation of the mechanism is the representation of node action. It may skip over some outliers but can visualize trusts of nodes with misrepresentations and data outliers, accurately. The intendant can handle the evil actions and encourage honest actions with the trust situation.

5.2. Local Performance of Mechanism

5.2.1. Probability of Attack Success of MMR in Event Detection Stage

If parameters are $H = 30$ , $p_{f} = 0.05$ , and $w = 10$ , we can get Figure 6. Because of the influence of majority rule, we suppose the percentage of compromised reports to total reports is q, and after q is more than 50%, the attack success probability will obviously increase. From Figure 6, we can see the error probability of attack success of $l = 0.5$ is bigger than that of $l = 0.75$ . Therefore, the probability of attack success increases with the increasing of q. The bigger the ratio l is, the smaller the probability of attack success is. During event detection, because of the application of MMR, the probability of misrepresentation attack success reduces.

Figure 6

The probability of attack success comparison; l is the probability of rejecting abnormal nodes.

5.2.2. Complexity and Reliability Evaluation of RSR in Consistency Detection

If the maximum number of nodes joining data fusion is $S = 100$ and the sampling number of nodes in consistency detection I is from 0 to 100, we can get complexity as in Figure 7(a). Because partial nodes join in consistency detection, RSR has lower complexity. Figure 7(b) is the reliability with $λ = 20 %$ and t the sampling number of nodes in consistency detection $I = 20$ . Compared with GAS, RSR has lower reliability with no or few attacks, which is the cost of reducing complexity. However, when the sampling number of attacks I is bigger than 5 in consistency detection, the reliability of RSR is higher than that of GAS. Therefore, RSR is more appropriate to the condition with more attacks.

Figure 7

The relationship between complexity and reliability.

6. Conclusion

To cope with the deviation problem caused by compromised nodes in distributed network, this paper proposes situation data fusion mechanism based on trust, making trust awareness rule to improve reliability and processing data from 3 stages: event detection, data fusion, and consistency detection. The deviation between fusion value and real value can be reduced when there are attacks. Because of the application of MMR and the additional consideration about RSR, the reliability can be enhanced. In general, if combining with encryption techniques [6], it can improve performance, especially in big data domain, such as environmental monitoring. How to take strategy to handle abnormal actions may be the research of future work.

Footnotes

Appendix

Simulation figures: from Figure 3 to Figure 7.

Conflict of Interests

The authors declare that there is no conflict of interests regarding the publication of this paper.

Acknowledgments

This work is supported by the National Nature Science Foundation of China (no. 61271260, no. 61102062, no. 61301122), NSF of Chongqing (no. cstc2014jcyjA40052), the Research Program of Chongqing Municipal Education Commission (no. KJ1400405), Program for Changjiang Scholars and Innovative Research Team in University (IRT1299), the special fund of Chongqing key laboratory (CSTC), NSF of CQUPT (no. A2013-30), and the Doctor Science Research Starting Foundation of CQUPT (no. A2013-23).

References

Xin

L. D.

Divesh

Big data integration

Proceedings of the 39th International Conference on Very Large Data Bases

2013

Trento, Italy

1188 1189

Coronato

de Pietro

Situation awareness in applications of ambient assisted living for cognitive impaired people

Mobile Networks and Applications 2013 18 3 444 453

10.1007/s11036-012-0409-8

2-s2.0-84878704814

Holsopple

Sudit

Nusinov

Liu

D. F.

Yang

S. J.

Enhancing situation awareness via automated situation assessment

IEEE Communications Magazine 2010 48 3 146 152

10.1109/MCOM.2010.5434386

2-s2.0-77949854490

Kokar

M. M.

Endsley

M. R.

Situation awareness and cognitive modeling

IEEE Intelligent Systems 2012 27 3 91 96

10.1109/MIS.2012.61

2-s2.0-84863908313

Parvar

Fesharaki

M. N.

Moshiri

Shared situation awareness system architecture for network centric environment decision making

Proceedings of the 2nd International Conference on Computer and Network Technology (ICCNT '10)

April 2010

Bangkok, Thailand

372 376

10.1109/ICCNT.2010.16

2-s2.0-77954323268

Dietzel

Schoch

Könings

Weber

Kargl

Resilient secure aggregation for vehicular networks

IEEE Network 2010 24 1 26 31

10.1109/MNET.2010.5395780

2-s2.0-77954982913

Das

Islam

M. M.

SecuredTrust: a dynamic trust computation model for secured communication in multiagent systems

IEEE Transactions on Dependable and Secure Computing 2012 9 2 261 274

10.1109/TDSC.2011.57

2-s2.0-84856255130

Bao

Chen

Chang

Cho

Hierarchical trust management for wireless sensor networks and its applications to trust-based routing and intrusion detection

IEEE Transactions on Network and Service Management 2012 9 2 169 183

10.1109/TCOMM.2012.031912.110179

2-s2.0-84862138560

David

Resilient aggregation in sensor networks

Proceedings of the ACM Workshop on Security of Ad Hoc and Sensor Networks (SASN '04)

October 2004

Washington, DC, USA

78 87

2-s2.0-14844300164

10.

Bohli

Papadimitratos

Verardi

Westhoff

Resilient data aggregation for unattended WSNs

Proceedings of the 6th IEEE International Workshop on Practical Issues in Building Sensor Network Applications (SenseApp)

October 2011

Bonn, Germany

994 1002

10.1109/LCN.2011.6114411

2-s2.0-84856170909

11.

Ganeriwal

Balzano

L. K.

Srivastava

M. B.

Reputation-based framework for high integrity sensor networks

ACM Transactions on Sensor Networks 2008 4 3 article 15

10.1145/1362542.1362546

2-s2.0-44849093503

12.

Stavros

Aggelos

Dimitris

Exact in-network aggregation with integrity and confidentiality

Computational Information Systems 2012 24 10 1760 1773

13.

Perez-Toro

C. R.

Panta

R. K.

Bagchi

RDAS: reputation-based resilient data aggregation in sensor network

Proceedings of the 7th Annual IEEE Communications Society Conference on Sensor, Mesh and Ad Hoc Communications and Networks (SECON '10)

June 2010

Boston, Mass, USA

Massachusetts

10.1109/SECON.2010.5508273

2-s2.0-77955120231

14.

Liu

X. W.

J. G.

Wang

M. L.

Network security situation generation and evaluation based on heterogeneous sensor fusion

Proceedings of the 5th International Conference on Wireless Communications, Networking and Mobile Computing (WiCOM '09)

September 2009

Beijing, China

1 4

10.1109/WICOM.2009.5302714

2-s2.0-73349103192

15.

Clouqueur

Saluja

K. K.

Ramanathan

Fault tolerance in collaborative sensor networks for target detection

IEEE Transactions on Computers 2004 53 3 320 333

10.1109/TC.2004.1261838

2-s2.0-1842478834

16.

Elbaşi

Özdemir

Secure data aggregation in wireless multimedia sensor networks via watermarking

Proceeding of the 6th International Conference on Application of Information and Communication Technologies (AICT '12)

October 2012

Tbilisi, Georgia

1 6

10.1109/ICAICT.2012.6398501

2-s2.0-84872857547

17.

Alam

K. M.

Kamruzzaman

Karmakar

Murshed

Priority sensitive event detection in hybrid wireless sensor networks

Proceedings of the 21st International Conference on Computer Communications and Networks (ICCCN '12)

August 2012

Munich, Germany

1 7

10.1109/ICCCN.2012.6289220

2-s2.0-84867796064

18.

Shaikh

R. A.

Jameel

d'Auriol

B. J.

Lee

Song

Group-based trust management scheme for clustered wireless sensor networks

IEEE Transactions on Parallel and Distributed Systems 2009 20 11 1698 1712

10.1109/TPDS.2008.258

2-s2.0-70350070568

19.

Srinath

Resilient Data Aggregation in Wireless Sensor Networks 2005

Raleigh, NC, USA

Department of Computer Science, North Carolina State University

20.

Yajima

Ushikubo

Shigeno

Reputation aggregation method considering reliability of newly joining peers in unstructured p2p networks

Proceedings of the 7th International Conference on Broadband, Wireless Computing, Communication and Applications (BWCCA '12)

November 2012

Victoria, Canada

74 81

10.1109/BWCCA.2012.22

2-s2.0-84874269073

Event-Centric Situation Trust Data Aggregation Mechanism in Distributed Wireless Network

Abstract

1. Introduction

2. System Model

3. Situation Trust Data Aggregation Mechanism

3.1. Event Detection

Procedure 1: Event detection ( E ′ , θ ^ ) .

Proposition 1.

Proof.

3.2. Data Resilient Aggregation

Definition 2 (prior judgment rule).

Definition 3 (data filtration rule).

Procedure 2: Data filtration ( O v , e , data O v , e med , Δ d , ε ).

Definition 4 (data fusion rule).

3.3. Consistency Detection

Definition 5 (consistency detection rule (RSR)).

Procedure 3: Consistency detection Δ data , λ, κ, med [ d A v , e ] , B A d e , C e .

4. Reliability Assurance Scheme of Mechanism

4.1. Trust Awareness Rule of Mechanism

4.2. Distinguishing the Purposive Acts and Nonpurposive Acts

5. Performance Evaluation and Simulation Analysis

5.1. Overall Performance Evaluation of Mechanism

5.1.1. Average Function Fusion Rule (AFR)

5.1.2. Heterogeneous Situation Neuron Fusion Rule (BPR)

5.1.3. Damage Degree Evaluation

5.1.4. Stability Evaluation

5.1.5. Trust Situation of Mechanism

5.2. Local Performance of Mechanism

5.2.1. Probability of Attack Success of MMR in Event Detection Stage

5.2.2. Complexity and Reliability Evaluation of RSR in Consistency Detection

6. Conclusion

Footnotes

Appendix

Conflict of Interests

Acknowledgments

References

Procedure 1: Event detection $(E^{'}, \hat{θ})$ .

Procedure 2: Data filtration ( $O_{v, e}, {data}_{O_{v, e} med}, Δ d, ε$ ).

Procedure 3: Consistency detection $Δ data$ , λ, κ, $med [d_{A_{v}, e}], B A d_{e}$ , $C_{e}$ .