1 Introduction

In recent years, wireless sensor networks (WSNs) have drawn more and more attention in the field of academic research and practical applications. WSNs is a task-based network, which integrates with microelectronics, perception, embedded computing, wireless communication and distributed information processing techniques [1]. These sensor nodes in WSNs complete the tasks of collecting of information, surveillance, and the perceiving environment. During the process of data collection, the single node transmits data to the sink individually which causes large wasting in communication bandwidth and valuable energy resource. Then the information collection work cannot be completed on time and it reduces the efficiency of information collection. Due to the limited resource, the sensor nodes have strong restrictions on the processes of computation, storage, and communication. Data aggregation [2, 3] is also applied to wireless sensor networks to alleviate these problems, which is a way for dealing with multiple copies of data or information and integrate the data which are more efficient and more according to users’ need by reducing data packets in the network, and then increase the efficiency of information collection. Data aggregation can be considered as a fundamental process to reduce energy consumption and communication overhead to save the limited resources in WSNs [4, 5].

Nowadays, WSNs is also an important part of Internet of Things (IOT). The characteristics of openness and self-organization expose its vulnerability to the attackers, which can lead to the loss of its original construction purpose and cause even worse damages [6]. Efficient and feasible secure data aggregation scheme build a firm foundation for the application of WSNs in some important fields such as military, political, economic and so on. How to deal with the above constraints and provide secure data aggregation in WSNs has become an important requirement for the sake of sensitive nature of the sensor data. A lot of efforts have been made to protect WSNs from hostile attacks. Most of the existing methods often have large computational, communication costs and lower privacy-preserving ability. However, there are some technical challenges needed to be solved, such as provide energy, efficient and secure data aggregation schemes in WSNs. Privacy-preserving in data aggregating has become an effective way to protect the data security in WSNs. Aiming at the secure data aggregation, we propose a new algorithm based on data slicing for the tree-structure network. The energy and communication overhead can be reduced due to fewer data packets transmission. Then, it takes a reasonable control of communication costs and computation overhead.

The rest of the paper is organized as follows. Section 2 discusses some related work. A CSDA scheme for security data aggregation in WSNs in Sect. 3 is presented. Section 4 conducts performance simulation experiments and analyzes the experimental results. Finally, Sect. 5 concludes the paper with a summary .

2 Related work

Many effective methods have been addressed by researchers at the data aggregation in WSNs. Rajagopalan and Varshney [2] have given an innovative literature review in the field of data aggregation in WSNs. Jesus et al. [3] review distributed data aggregation algorithms and characterize the different types of aggregation functions. Acharya&all and Armknecht&all, etc. have proposed a CDA(Concealed Data Aggregation) algorithm in which multiple sources nodes sends encrypted data onto a sink along with a converge-cast tree [7]. He et al. have put forward a data aggregation algorithm PDA (Privacy-Preserving Data Aggregation), which has two algorithms: CPDA (Cluster-based Private Data Aggregation) and SMART [8]. However, CPDA costs much computational overhead, and SMART also costs too much communication overhead and is sensitive to the loss of data. Over the past few years, several schemes have been proposed in the literature for privacy-preserving data aggregation in WSNs [9,10,11]. In the field of energy saving, data aggregation reduces the redundant and minimizes the energy consumption for the whole network [12, 14].

The security problem of data aggregation in WSNs has become a hot topic. The literature [13,14,15] gives a summary of security problems on data aggregation in wireless sensor networks. Generally speaking, some basic data aggregation technology cannot provide good data privacy preserving mechanisms. However, in the real world, privacy preserving mechanism is essential and important. For example, in a health monitoring system, sensor nodes can get access to data of patients’ vital signs, such as temperature, blood pressure, pulse and so on [16]. These data belong to personal privacy, and patients do not want them to be let out. The secure data aggregation technology in WSNs is that under the circumstances of ensuring the accuracy of data aggregation results, regardless of transferred data being captured and decrypted by external or other internal credible nodes, and can prevent capturing private data. Traditional private data aggregation technology includes CPDA, cluster-based private data aggregation technology, and SMART, slice-assemble data aggregation technology, and some better algorithms, such as k indistinguishable approach of private data aggregation and so on. Several previous methods all get aggregation results in the case of not disclosing private values of any other nodes. The k indistinguishable algorithm of private data aggregation uses a falsity set to make data fuzzy, in which way the real value cannot be distinguished from other k-1 data, instead of encryption technology. This method costs less energy resource than end-to-end encryption and is more efficient than hop-by-hop encryption [17,18,19,20,21].

Fig. 1
figure 1

The formation of cluster

Full size image

The rapid development of network technology and its evolution of heterogeneous networks have increased the demand to support automatic monitoring and the management of heterogeneous WSNs [22]. Zhang et al. [23] research how mobile sensors can be efficiently relocated to achieve k-barrier coverage. And, two important problems are studied: relocation of sensors with a minimum number of mobile sensors and formation of k-barrier coverage with minimum energy cost. They are formulated as 0–1 integer linear programming (ILP). Then, they try to solve the relaxed 0–1 ILP rapidly through linear programming. During the process of data aggregation, many aggregation methods are part of the loss data aggregation. They reduce the amount of data transmission by leaving out some details or lowering data quality to save network energy. Therefore, data aggregation operation is also faced a lot of security threats, such as data tampering, data falsification, data discarding and so on, which make users not access to the accurate and complete information.

In the case, the CPDA algorithm can ensure the accurate degree of data, and prevent external nodes to obtain data privacy, but the interaction of the cluster nodes transfers increases the communication overhead of network, at the same time polynomial arithmetic and the inverse matrix calculation also brings a lot of overhead, so that this algorithm application has great limitation. To sum up, above existing schemes fail to make full use of the natural advantage of data link and have higher communication and computational costs. Therefore, this paper has improved the CPDA and proposed a lightweight security data aggregation scheme: CSDA, which uses the approach fragment reassembly and can dynamically adjust the node numbers of the cluster partitions according to the size scale and numbers of WSNs. It meets the general privacy protection requirement, and not only has better flexibility and performance of data aggregation precision but also costs less communication overhead and lower energy consumption.

3 The CSDA scheme for data aggregation in WSNs

3.1 Introduction of CPDA

The cluster-based private data aggregation (CPDA) algorithm using the fragmentation and reassembly technology can adjust the cluster nodes slice according to the number of the size of a dynamic network scale and has better flexibility and practicability. It comprises three stages: the first stage is cluster formation, the second stage is intra-cluster data aggregation, and the third stage is data aggregation between clusters.

(1) The cluster formation is as shown in Fig. 1. Firstly, query node Q triggers the initial inquiry of a cluster by sending a message “HELLO”. When the node receives the message, it decides itself whether to be a cluster head node according to the probability pc, which is a parameter that all nodes have chosen in advance. If one node decides itself to be a cluster head node, it will transmit the message “HELLO” to its neighbor nodes. Otherwise, it will broadcast a message “JOIN” to suggest that it wants to join in a cluster.

Fig. 2
figure 2

Encrypted data exchanging process in one cluster

Full size image

In Fig. 1a, node Q starts a query. In Fig. 1b, once nodes Y and Z decide to join in a cluster whose head node is node Q, they will send a message “JOIN” to node Q. Meanwhile, the nodes A and X both decide to be cluster head nodes, and they transmit “HELLO” to their neighbor nodes, hoping that their own clusters come into being. As shown in Fig.1, node E can receive two messages “HELLO”. In Fig. 1c, repeat the above-mentioned process and node E chooses one cluster head node between A and X in random. Finally, as shown in Fig. 1d, there will be four clusters with the nodes Q, A, X, C as cluster head nodes in their own clusters.

(2) Data calculation in one cluster. To describe succinctly, we choose one cluster with three nodes, in which A is the head node, nodes B and C are member nodes. And a, b, c represent private data of the three nodes respectively. This privacy protection algorithm is based on the addition property of polynomial. Figure 2 shows the process of calculated data interchange in a cluster during which we can get the sum of private data without letting out private data. At first, as shown in Fig. 2a, every node in the cluster shares a non-zero number with any other node and becomes a seed. We suppose that the seeds of A, B, C are respectively xyz and they are different from each other. Then, as shown in Fig. 2b, node A generates two random numbers \(r_1^A \) and \(r_2^A \), and the two numbers are only known by the node A. Similarly, node B generates two random numbers \(r_1^B \) and \(r_2^B \), and node C generates two random numbers \(r_1^C \) and \(r_2^C \).

Therefore, node A can work out three numeric values as shown in (1)

$$\begin{aligned} \hbox {v}_A^A= & {} a+r_1^A x+r_2^A x^{2},\nonumber \\ \hbox {v}_B^A= & {} a+r_1^A y+r_2^A y,^{2}\nonumber \\ \hbox {v}_C^A= & {} a+r_1^A z+r_2^A z^{2} \end{aligned}$$
(1)

Similarly, node B can also get three numeric values as shown in (2):

$$\begin{aligned} \hbox {v}_A^B= & {} b+r_1^B x+r_2^B x^{2},\nonumber \\ \hbox {v}_B^B= & {} b+r_1^B y+r_2^B y^{2},\nonumber \\ \hbox {v}_C^B= & {} b+r_1^B z+r_2^B z^{2} \end{aligned}$$
(2)

Likewise, node C may be calculated to get three numeric values in (3):

$$\begin{aligned} \hbox {v}_A^C= & {} c+r_1^C x+r_2^C x^{2},\nonumber \\ \hbox {v}_B^C= & {} c+r_1^C y+r_2^C y^{2},\nonumber \\ \hbox {v}_{\mathrm{C}}^C= & {} c+r_1^C \hbox {z}+r_2^C z^{2} \end{aligned}$$
(3)

Then, A uses the encryption key shared with B to encrypt \(v_B^A \) and \(v_C^A \), then transmit them to B and C respectively. In the same way, B sends encrypted \(v_A^B \) and \(v_C^B \) to A and C respectively, and the node C sends encrypted \(v_A^C \) and \(v_B^C \) to A and B respectively. As a result, we can finally get three values at the node A: \(v_A^A ,v_A^B \) and \(v_A^C \), then the value of \(\hbox {F}_{\mathrm{A} }\) can be obtained by calculation formula, \(\hbox {F}_{\mathrm{A}} =\hbox {v}_A^A +v_A^B +v_A^C =\left( {a+b+c} \right) +r_1 x+r_2 x^{2}\), where \( r_1 =r_1^A +r_1^B +r_1^C \) and \(r_2 =r_2^A +r_2^B +r_2^C \). Similarly, the value of \(\hbox {F}_{\mathrm{B}}\) can be got from node B by calculation formula, \(\hbox {F}_{\mathrm{B}} =\hbox {v}_B^A + v_B^B + v_B^C =\left( {a+b+c} \right) +r_1 y + r_2 y^{2}\), and the value of \(\hbox {F}_{\mathrm{C}}\) can be computed at the node C by calculation formula, \(\hbox {F}_{\mathrm{C}} =\hbox {v}_C^A +v_C^B +v_C^C =\left( {a+b+c} \right) +r_1 z+r_2 z^{2}\). And then the nodes B and C transmit the two values \(\hbox {F}_{\mathrm{B}}\) and \(\hbox {F}_{\mathrm{C}}\) to the node A, as we can see from Fig. 2c. And the following values below can be got at the node A as shown in (4):

$$\begin{aligned} \hbox {F}_{\mathrm{A}}= & {} \hbox {v}_A^A +v_A^B +v_A^C =\left( {a+b+c} \right) +r_1 x+r_2 x^{2},\nonumber \\ \hbox {F}_{\mathrm{B}}= & {} \hbox {v}_B^A +v_B^B +v_B^C =\left( {a+b+c} \right) +r_1 y+r_2 y^{2}\nonumber \\ \hbox {F}_{\mathrm{C}}= & {} \hbox {v}_C^A +v_C^B +v_C^C =\left( {a+b+c} \right) +r_1 z+r_2 z^{2} \end{aligned}$$
(4)

Now, because node A is aware of the sum of x, y, and z, it can find out the result of data aggregation among A, B and the aggregated values (\(a+b+c)\) according to the deformation of the calculation formula (5),

$$\begin{aligned} \hbox {U}= & {} \hbox {G}^{{-1}}F.\nonumber \\ G= & {} \left[ {{\begin{array}{ccc} 1&{} x&{} {x^{2}} \\ 1&{} y&{} {y^{2}} \\ 1&{} z&{} {z^{2}} \\ \end{array} }} \right] , U=\left[ {{\begin{array}{c} {a+b+c} \\ {r_1 } \\ {r_2 } \\ \end{array} }} \right] ,\nonumber \\ F= & {} [{\begin{array}{ccc} {F_A }&{} {F_B }&{} {F_\mathbf{B} } \\ \end{array} }]^{T}. \end{aligned}$$
(5)

(3) The data aggregation between clusters. This step is to deliver clusters’ results of data aggregation to the nodes that start a query initially by logical topologies. We suppose that logical topologies are not provided with effective in privacy protection, and we mainly discuss the effectiveness in the privacy of the first two steps.

3.2 CSDA: modification of the CPDA scheme

In this section, we provide a new CSDA scheme based on the algorithm CPDA, which has more efficient and secure. Under the general data aggregation of privacy protection, the goal of CSDA scheme is to minimize the data communication and computation among nodes and finally can obtain more precise data aggregation result.

3.2.1 Network model

This sensor network is modeled as a connected graph G (VE), where V is the set of sensor nodes, \(|V|=N\) is the number of sensor nodes, and E represents the set of wireless links connecting the sensor nodes. Each sensor node is equipped with a wireless transceiver which can be used to communicate with the sensor nodes within its transmission range.

Sensor nodes in the process of network data aggregation will be divided into three categories: ordinary node, aggregation node, and sink node (Sink). In fact, ordinary node and aggregation node are essentially similar, but their tasks are not same. The ordinary node as a leaf node is only responsible for data collection, and the aggregation node as a non-leaf node of a network is responsible for the collection of data aggregation processing and application of the appropriate function. Sink node is responsible for receiving the final aggregation results and forwarding the query request, and connecting with the network. The data aggregation process of different nodes is shown in Fig. 3.

Fig. 3
figure 3

Schematic diagram of data aggregation

Full size image

A data aggregation function is defined as : \(y~(t) =f~(d_{1}~(t) +\hbox {d}_{2}(t) +\cdots +d_{\mathrm{n}}(t))\), where \(d_{\mathrm{i}}~(\hbox {t})~(i=1,2,\ldots , \hbox {N})\) is the individual sensor reading at time instant t for node i. The aggregation function is typically a sum, average, max, min, and count, etc. Recently, some researchers focus on the sum function. Since some statistical functions such as count, average, and standard deviation are all based on sum(). To some extent, for nonlinear functions such as max() and min() can also be used to estimate by the sum function and then forward to the sink, a lot of energy will be saved. So, this paper chooses the sum function as our aggregation function, \(y\left( t \right) =\mathop \sum \nolimits _{i=1}^N d_i \left( t \right) .\) All the nodes have the sufficient initial energy.

3.2.2 Threat model

The security problem has become more and more important in the field of the wireless sensor networks. The hacker can launch various attacks to undermine the security of data. In this paper, we mainly focus on preventing eavesdropping attacks to protect data privacy in wireless sensor networks.

Threat model includes these threats from untrusted eavesdroppers intercepting or listening to packets, honest but curious 1 nodes in between data transit, and polynomial time adversaries. In attack processing, the attacker has the ability to learn all the communications and obtain user privacy information by monitoring the wireless link. We assume that the attacker can access the security mechanism adopted in wireless sensor networks by capturing a normal node. When an attacker captures the privacy data of a node to other nodes, data privacy will be threatened. Here, data privacy protection in this paper is that data collection from each sensor node besides itself, and any other unknown nodes.

Fig. 4
figure 4

Data exchanging in the algorithm CSDA

Full size image

3.2.3 Encryption key distribution

In order to prevent data transmission of nodes from eavesdropping attacks, wireless link transmission data often needs to be encrypted. CSDA adopts the same random key distribution mechanism like SMART and CPDA [24].

(1) A large key pool of K keys and their identities are first generated randomly.

(2) Each sensor node identifies its neighbors which share the same key \((\hbox {k}_{\mathrm{i}})\) with itself by invoking and exchanging discovery messages. Then, it is possible to establish a secure link between them.

(3) If there are not two neighbor nodes which share the same key, it can be connected by two or more multi-hop secure links.

Therefore, any pair of selected nodes shares the same probability:

$$\begin{aligned} \hbox {p}_{\hbox {connect}} =1-\frac{\left( {\left( {\hbox {K}-\hbox {k}} \right) !} \right) ^{2}}{\left( {\hbox {K}-2\hbox {k}} \right) !\hbox {K}!} \end{aligned}$$
(6)

As the third party eavesdropper node which adopts the random key distribution mechanism to select the key-pool of K key randomly, if the K key includes the \({ key}_{s}\), then the hacker can use this \({ key}_{s}\) to overhear the encrypted message, and the probability to obtain \({ key}_{s}\) is [25]:

$$\begin{aligned} \hbox {p}_{\hbox {overhear}} =\frac{\hbox {k}}{\hbox {K}} \end{aligned}$$
(7)

3.2.4 Cluster formation

CSDA is also divided into three steps like CPDA. The first step is the formation of the cluster, which is the same as the first step of the algorithm CPDA. The second step is data aggregation in one cluster. We take advantage of slice-assemble technology applied to it. Assuming that the cluster \(C_i \) has \(m_i \) members, the node divides its private data into \(m_i \) pieces and sends \(m_i -1\) pieces of them to other \(m_i -1\) members. As the Fig. 4 shows, it is the secure multiple data aggregation when there are three nodes.

In Fig. 4a, the three nodes A, B, and C divide their own private data a, b, and c into three slices separately: \(\hbox {a}_{1}\), \(\hbox {a}_{2}\), \(\hbox {a}_{3}\), \(\hbox {b}_{1}\), \(\hbox {b}_{2}\), \(\hbox {b}_{3}\) and \(\hbox {c}_{1}\), \(\hbox {c}_{2}\), \(\hbox {c}_{3}\). They deliver encrypted values as the Fig. 4 shows. And, in Fig. 4b, the node A is to be calculated the value of \(\hbox {a}_1 +b_1 +c_1 \), and the node B is to be calculated the value of \(\hbox {a}_2 +b_2 +c_2 \), and the node C is to be calculated the value of \(\hbox {a}_3 +b_3 +c_3 \) . Then they broadcast the three values, and the three nodes add up three values to infer the value of \(a+b+c\).

Fig. 5
figure 5

The cluster and data users

Full size image

The third step: data aggregation between clusters. In the first two steps of CSDA, the cluster head node is used to data aggregation, while other member nodes are responsible for keeping watch on head node’s operations. When the head node of cluster receives intermediate data from head nodes in the downstream direction, it must transmit a message to be known by other nodes in its cluster. For example, as the Fig. 5 shows, the head nodes D and E transfer intermediate results to the node A. Since the nodes B and C are able to pick up the intermediate results from D and E, the two nodes can recognize the correctness of the value which broadcasted by the node A. If the node A cheats on data from D and E, the nodes B and C will check out such a problem and report it to the base station. Then, the aggregation data of cluster Q and A is Q = X + Z, A = B + C + D + E.

Fig. 6
figure 6

The monitoring function is out of work

Full size image

The two head nodes act as data aggregation model may collude with such attacks that can be found to depend on the network topology. Figure 6 shows the circumstance that the nodes X and Y can’t detect such a problem, in which X is a head node and Y is a parent node of the head node. In addition, the nodes U, V, and X all belong to the same cluster. If a malicious node exists at the intersection of communication range of X and Y, other nodes will not know the communication content between X and Y, and then the nodes U and V will not judge whether the node X broadcasts the right value or not. However, in a reasonable density network, there is a small probability that such aggressive behavior cannot be discovered. Meanwhile, when the node notices and reports improprieties, it should choose unicast routing and the malicious node which are not in this routing.

3.3 The analysis of effects on privacy protection of CSDA

In the algorithm CSDA, private data can only be revealed when exchanging in one cluster. Supposing that the size of a cluster is m, to any node i in the cluster, only when other \(m-1\) nodes have colluded, the private data of the node i will be disclosed.

Aiming to protect data integrity, we analyze the probability of detecting nodes’ improprieties successfully, assume that R represents the radius of widespread and the intersection of widespread is no less than \(\frac{2}{3}\pi R^{2}-\sqrt{3}R^{2}\) .The average degree of nodes is d. Supposing that friendly nodes are distributed in one area uniformly, we can see from the Fig. 5 that the probability that there are no friendly nodes in the intersection of two areas. It is represented with Eq. (8):

$$\begin{aligned} \hbox {P}_{incapable} \le \left( {1-\frac{\frac{2}{3}\pi R^{2}-\sqrt{3}R^{2}}{\pi R^{2}}} \right) ^{d}\approx 0.88^{d} \end{aligned}$$
(8)

In CSDA, d is generally greater than 10. At that time, \(P_{incapable} \) is no greater than 0.28; when d is equal to 20, \(P_{incapable} \) is no greater than 0.07. That is to say, the higher the density of the network is, the more effective the algorithm is.

3.4 Advantages and disadvantages of CSDA

The CSDA scheme combines the advantages of CPDA and SMART fully. On the one hand, CSDA takes advantage of slice-assemble technology to reduce computational overhead in CPDA algorithm. On the other hand, delivering encrypted data in one cluster reduces data traffic like SMART, and it prevents head nodes from tampering with data. In this paper, an improved algorithm CSDA is proposed to overcome the drawbacks of the SMART algorithm. The SMART algorithm is used to split the tree topology structure of the network, which can cause too much computation and communication overhead. Only leaf nodes of the network will be processed to slices, and send the slice meta information in CSDA. And, non-leaf nodes will only receive the aggregation information. Then, it will greatly reduce the energy consumption of WSNs, and improve the accuracy of aggregation.

Extra loaded in CSDA is the second step and the third step. The head node of a cluster doesn’t need broadcast part of aggregation results to members of the cluster. For example, node A does not need to broadcast \(a_1 +b_1 +c_1 \). But node A broadcasting this value is good for B and C in order to supervise nodes in the third step. Moreover, in the third step, before the cluster head node transfers intermediate results to its parent node, it needs to broadcast the intermediate results it has received. In CSDA, if the density of nodes is appropriate, CSDA will broadcast more 2\(\hbox {p}_{\mathrm{c}}\)N messages than CPDA, in which N is the number of nodes’ data taking part in data aggregation and \(\hbox {p}_{\mathrm{c}}\) is the probability that one node chooses itself as a head node.

The CSDA is simulated by MATLAB specific to wireless sensor networks in which the nodes are distributed randomly. The encryption and decryption algorithms of it are custom and simple.

3.5 The algorithm of CSDA

The algorithm description of CSDA is as follows:

figure e

4 Evaluation and simulations

We mainly compare the effectiveness of CPDA and CSDA in terms of communication overhead and computational overhead through performance simulation experiment.

4.1 Simulation sensor networks

In the simulations, we suppose that fifty sensor nodes come into being randomly in the range of \(\hbox {100}\times \hbox {10}0\) square meters field. The communication radius is 35 m. The size of data transmitted packet of the network is 40 bytes, and the other network parameters in this paper are not being considered. The cluster sizes range from 3 to 12. And, the maximum routing tree level is 4. In addition, all the algorithms run on the same topology structure of the network in the simulation experiment. Due to the random situation, these computational results are different in every time. In this paper, we analyze and compare the CPDA scheme and CSDA scheme performance mainly from two aspects: privacy preserving capability and communication overhead. The algorithm execution results are shown in the following figures. For example, Fig. 7 shows the topology of a part of clusters.

Fig. 7
figure 7

The WSN topology in CSDA

Full size image

Figure 7 is the actual geographical distribution of all nodes in wireless sensor networks. Where * represents a query node and its label is 1.

Fig. 8
figure 8

Membership in WSNs

Full size image

Figure 8 shows the real geographical WSNs child nodes, membership of father nodes. Array A represents that B is father node of A, and is a child node of B.

Fig. 9
figure 9

Clusters topology

Full size image

Figure 9 shows the logic membership of every node in WSNs, and the upper layer nodes are father nodes, the lower layer nodes are children nodes. For example, the fourth layer node 12 is father node of node 20 and node 38.

4.2 Communication overhead

In order to test the communication overhead of two protocols, the original CPDA protocol, and the proposed modified CSDA protocol), we adopt the total bytes of communication packet during data aggregation as metrics.

Fig. 10
figure 10

Communication overhead in the same cluster

Full size image

While initializing the network, sink node sets each node of the network to a specific time interval (epoch duration), it represents the required time to complete the data aggregation. One “Hello” communication message from each sensor node will generate the aggregation tree, and one message is required for data aggregation processing. When each node of merging tree receives this specific message, it will give its child node an assigned timepiece of Meta message.

In contrast to the communication overhead between CSDA and CPDA from the cluster leader node and 2 message communications from each cluster member node, we utilize the same cluster structure to evaluate them. The experiment result is shown in Fig. 10.

We can see the Fig. 10 that CSDA costs less communication overhead than CPDA in the entire network. The data communication overhead of CPDA generated by nodes in the same cluster with each other is much more than that of CSDA generated by slices divided according to the size of clusters. And due to slice-assemble technology in CSDA, when cluster numbers increase, the increase in data communication overhead is not obvious. But the data communication overhead of CPDA increases largely. If we increase the appropriate number of random distribution nodes which are intended to improve the density of the network, the number of findings will increase. That is to say that the circumstance of supervisory nodes which are not working will reduce the increase of network density. And the higher of network density is, the more efficient the algorithm is. They are in accordance with the theoretical analysis.

The above discussion is mainly about data communication overhead in one cluster. It is very good response quantity of data communication between each cluster, but not consider on the total data communication overhead of the entire network. Next, we compare the data communication overhead of the two schemes in a whole network.

Fig. 11
figure 11

Communication overhead in a whole network

Full size image

In Fig. 11, we can compare the communication overhead with a different K value between the CSDA algorithm and CPDA algorithm when p is set to the value (p = 0.3, K = 3).The X-axis represents epoch duration time of aggregation, the Y-axis represents the amount of data communication bytes of aggregation. It can be seen from the Fig. 11 when the K is at the same time. And, the communication overhead of the CSDA algorithm costs lower than that of CPDA algorithm. Since the non-leaf node of CSDA algorithm does not need to send a piece of Meta message to other neighbor nodes, it will also reduce the number of data communication overhead packets in the whole network. In addition, the communication overhead both the CSDA algorithm and CPDA algorithm will increase with the increase of K value. Because when the K value becomes larger, the number of nodes sending out piece will increase linearly, the amount of data communication network will also increase.

4.3 Privacy preserving capability

As we all know, in wireless sensor networks, when the communication channel among nodes eavesdrops or these nodes are mutual cooperation, then the original message of nodes may be leaked. A good data aggregation scheme for privacy-preserving should be able to ensure the privacy message of nodes not to be captured by other points or the hacker.

For each node in two schemes, we represent the cracked probability of measured data as \(P_{\mathrm{cdpa}}(q)\) and \(P_{\mathrm{csda}}(q)\), where qis the cracked probability of links between nodes, and \(q\approx P_{\mathrm{overhear}}\).

As CPDA algorithm, each node will be polynomial computed with its own data and non-confidential seed, and then transmit data within the cluster by encryption method. When the cluster size is m, each node needs to transmit \(M-1\) encrypted messages to other members of \(M-1\) cluster, other nodes only know the \(M-1\) encryption key, and the real data of the node can be cracked. Therefore, the cracked probability of an average node using CPDA algorithm is as follows:

$$\begin{aligned} P_{\hbox {cpda}} \left( q \right) =\mathop \sum \nolimits _{k=m_{\mathrm{c}} }^{d_{ma\hbox {x}} } P\left( {m=k} \right) (1-\left( {1-q^{k-1}} \right) ^{k}) \end{aligned}$$
(9)

where \(d_{\mathrm{max}}\) represents the maximum node number of cluster, \(m_{\mathrm{c}}\) is the minimum node number of cluster, \(P(m=k)\) represents the probability of the k node number of cluster.

In the CSDA scheme, when outward transferring \((K-1)\) slice value, each node will also receive the slice value. Through the analysis of the attack, the model shows that the hacker wants to steal the original perception data of network node, they must also crack \((K-1)\) link of the node and the number of m in degree links.

$$\begin{aligned} P_{CSDA} \left( \hbox {p} \right) =q^{k-1}\mathop \sum \nolimits _{\mathrm{m}=0}^{d_{maz} } p\left( {in\_degree=m} \right) q^{m} \end{aligned}$$
(10)

where, \(d_{\mathrm{max}}\) represents the maximum in the degree of network nodes, and p(indegree = m) represents the probability of node which indegree number is m.

Fig. 12
figure 12

Privacy preserving performance comparison between CSDA and CPDA

Full size image

The privacy preserving performance comparison between CSDA and CPDA is shown in Fig. 12. The X axis represents the cracked probability between nodes; the Y axis addresses the privacy data leakage probability. We can see that the smaller p value, the better effect of the privacy protection, and when p is a fixed value, then q will get the worse effect of privacy preserving by greater q value. Since the CSDA utilizes the dynamic slicing method, the slice numbers of cluster nodes can be adjusted with the scale of the network. The \(P_{CSDA}(p)\) decreases with the increase of fragmentation, which indicates that privacy protection is increasing gradually. Then, the simulation result shows that the CSDA scheme has better privacy preserving ability than the CPDA scheme.

5 Conclusions

In this paper, we modified the CPDA protocol for WSNs and added the functionality of intrusion detection to secure WSNs from the sinkhole, and selective forwarding attacks. The cluster head provides further security protection on the WSNs data. The proposed algorithm based on data slicing using the tree-structure network can reduce the energy and communication overhead. Simulations show that our scheme is feasible, secure and accurate. Next, we plan to evaluate the proposed CSDA schema with other existing privacy-preserving approaches in real wireless sensor networks for data aggregation and provide data integrity protection.