Resilient Multipath Routing Mechanism Based on Clustering with Intrusion Tolerance

Wireless sensor networks (WSNs) integrate sensor technology, communication technology and information processing technology; it is a synthetic discipline. WSNs have been applied into almost all walks of life. However, in many special fields, network security is a basic and important factor which we must concern for. This paper introduces the key management scheme after analyzing the security threats of LEACH protocol. At the same time, we adopt several related mechanisms to protect the communication among the sensor nodes and the confidentiality of the data transmission. Also, we use the mixed multipath mechanism among the clusters to improve the security of the network and strengthen the intrusion tolerance.


Introduction
The single path in WSNs just created the optimal path which is from the source node to the convergent node to respond timely to the specific mission requirements, which can save space for storage resources, reduce each communication traffic, and simplify algorithm, but the limited bandwidth will lead to the fact that network reliability is poor and fault tolerance is weak, and a node failure could lead to the fact that the whole link is not available, so designing reliable routing protocol is needed to improve the reliability of data transmission [1].Multi-path routing is that among the source node and the destination node multiple paths are established, which use the primary path for data transmission; if the primary path fails, suboptimal path continuing for delivery will be selected from the backup paths.Disjoint multi-path is the establishment of a number of no convergent node paths among source node and convergent node, while, if the primary path of the way of a node failses, it will cause the entire link paralysis.In order to solve the problems that winding path introduced, this mechanism allows multiple intersecting nodes among the backup paths and the winding path.Each of the nodes on the primary path has a winding path, multiple winding path as an alternate path to constitute the primary path winding multipath.If a node is not available on the primary path, the routing protocol will select automatically the winding path that bypasses the fault nodes to transmit data to the node, so through the multi-path mode the reliability of the data transmission can be improved [2].
Routing protocol influences the performance of the network importantly, which can be divided into flat routing protocol and cluster routing protocol in the network topology view.In flat routing, each sensor node's status is equal and has the same routing function, which can transmit data through other nodes in the middle, so such structure is simple and easy to maintain and has good robustness.But when the number of nodes is large and the network scale is huge, the management and maintenance of routing will consume more energy, scalability relatively will be poor, as a transit node, which will transmit data more times, and energy consumption will be faster, so the structure is only suitable for small and medium-sized network [3].
Directed diffusion protocol [4] is a query-based flat routing protocol, and routing takes periodic updates and maintenance to adapt to changes in network topology.Convergent node sends query tasks, using the flooding way to spread the interested message to all sensor nodes in the monitoring area.In the process of information dissemination, protocol creates International Journal of Distributed Sensor Networks a gradient which reversely transfers data from the source node to the convergent node.Then the convergent node finds the strengthening path which is the earliest path from the source node to the convergent node path and informs the source node.Eventually, the source node transfers the data collected to the convergent node by this route.The algorithm has good scalability, but both the energy consumption and routing overheads are larger.
The sensor node itself has a small size, it is easy to replace the battery, and so on, so that we must first consider is the energy consumption problem.Now clustering topologies controlling the network are commonly used.In order to balance the network node energy consumption, periodically cluster head selection is usually carried out.Clustering routing is suitable for networks which deploy numbers of nodes and have a large scale.LEACH (Low Energy Adaptive Clustering Hierarchy) protocol [5] is an adaptive clustering topology mechanism, which uses periodic execution process, randomly elects cyclic cluster head, and balances energy distribution networks to each sensor node.The agreement introduces a "round" concept, which stages in the establishment of the cluster head.The node generates a random number between 0 and 1, and if this number is less than (), the node will become a cluster head and the elected node will message to inform other nodes that it is a cluster head.Other nodes are usually based on their received signal strength to select a member of clusters and send the message notification to add the cluster head in the cluster.After cluster head receives the request which all nodes join it, the cluster head gives them the communication slot allocation.In stable transmission phase, member nodes of the cluster head node receive the broadcast query request, which is monitored area of data collection, and then send data at one hop to the corresponding slot cluster head.After a period of time, cluster head collects data of which all member nodes were the data sent, and fusion finally sends the result to the base station.As in formula (1), random number () is expressed as follows, where  is the head node of all the nodes in the cluster percentage,  is the current round number,  mod (1/) represent elected cluster heads, the G is nonelected cluster heads: ,  ∈ , 0, other. ( However, clustering mechanism will have problems such as the uneven distribution of cluster heads, heavy tasks or fast energy consumption issue that makes them stop working soon, affecting the data transmission or even the entire network topology.To solve this problem, a lot of articles used double cluster head algorithm [6] and join assistant cluster head clustering algorithm [7] to a certain extent, reducing the burden of cluster heads and the total energy consumption of the node.This paper summarizes some of the existing clustering algorithms; we propose a new mechanism to enhance the network fault tolerance.
However, WSNs and the rapid development of related technologies have strong practicality, which makes network security vital and relates people to the hot issue.The network is generally used to collect and process the data which is difficult to reach in harsh environments.Most of the sensor nodes are not tamper-resistant or anticapturing ability; once a node is captured, an attacker can get through information from this node to other nodes in the network.It makes the attack nodes send some error message or do not communicate with other nodes, which even leads to communication link failure resulting in great loss of data.Sensor network security risks are often precise because of the bad node deployment area or the communication methods used.Therefore, it should solve the transmission of information confidentiality, integrity, authenticity, and intrusion detection problem, or even if the network is attacked by malicious ones, and how to maintain their basic communication function is very important [8].In this paper, we proposed a new scheme which is aimed at analyzing security issues which LEACH protocol security causes, and then we combines the inherent characteristics of the network, whose purpose is to reduce the chance in which the data transmission process information is stolen; nodes are posing or malicious nodes tamper with the information; this makes the node in the process of transmitting data even if the encountered attack will also be able to normalize collaboration work to complete basic tasks.

Description of the Problem
Cluster head bears most of the LEACH protocol tasks such as data fusion, forwarding, and communication with the base station.Cluster head task is heavy, which makes of fast energy consumption, but also in the data transfer process, it is more vulnerable to malicious attacks and exposure the transmitted information.It leads to poor network security, and thus the node does not complete the task.Here is a summary of LEACH vulnerable to attack in the following three items [9].
(1) Sybil attack: it refers to a single node emerging with multiple identity.In the cluster head election phase, attacker's multiple identities will lead to many nodes are easy to selects as the cluster heads.Elected malicious node controls most of the data node and further damages of the network.(2) Hello flooding attacks: according to the means which cluster head send the signal strength, member nodes choose to join a cluster.If a malicious attacker has more energy flooding the entire network broadcast a manner notice strength, many nodes will choose to join this cluster where the malicious node exits, then the network will be vulnerable to the impact of these malicious nodes, which even will cause the network to be unavailable.(3) Selective forwarding attack: such attacks mean that if a malicious node receives a packet, it will not be forwarded directly to the data integrity, but part of it will be lost or tampered before sending, so that the data cannot be accurately inevitably lead to reach the destination, and this is the loss of capture authenticity and integrity of the data.
The trust evaluation mechanism [10] can discover uncooperative nodes in the network, which can be used to reduce the probability of being attacked, thus improving data integrity, security, and confidentiality.If the node trust value is introduced, it will be removed from the network after being determined in some way after which we can improve the probability of internal network attacks.But often there are many external malicious network attacks, such as theft, tampering and spoofing.How to take measures to simultaneously solve both internal and external attacks is a problem worthy of study.The literature [9] combines cryptography and proposes a secret sharing technology with intrusion tolerance capabilities clustering routing scheme to improve the data transmission network intrusion tolerance capabilities.In order to reduce energy consumption and improve the route network security, the literature [11] introduced a secure boot program and node two-way mechanism evaluation to detect malicious node is directly removed from the network to enhance the security of the entire network.
In order to reduce the burden of cluster head and the energy consumption of nodes, this paper presents a special feature called "Daemon Node (DN)" whose job is head node selection, path creation, and so on.This node can also be called a "backstage node" or "service node" because even if other nodes are in sleep, they have been in working condition, unless their energy is depleted or there is collapse of the entire network, and the node will be extinct.Then we adopted and improved the literature [9,11] studied the program, and proposed an Intrusion tolerance based on clustering multipath routing mechanism (ICRM), which uses secret sharing between the nodes; in some way the key is split and assigned to the sensor nodes in the network, and cipher text recovery must be carried out with a threshold common trusted node collaboration.Among neighbors, daemon nodes and cluster head is established the pairs of random key introduced evaluation mechanisms.Data transmission between clusters will use hybrid multi-path mode, hoping to improve the data on the network communication traffic and reduce the probability of the node to be captured, thus reducing the possibility of attacks on the entire network.

Network Model
sensor nodes are randomly deployed in a square of side length  of the monitor area .Intercluster communication distance at least is greater than the distance between the two cluster heads, and the network collected by cluster head set is connected.
Assume that the daemon node has the following properties: (1) not for data acquisition and integration but to receive the base station it sends query request tasks and broadcast to the member nodes; (2) it maintains the energy of each node, location and other information, and real-time update node status information; (3) it makes dynamic perception node in other cases, such as the new node adding or failure of the node exit; (4) among the cluster nodes and other daemon nodes, virtual path in established for data transmission, maintenance established routes; (5) it is used for controlling cluster head work, such as cluster head direction of data transfer.WSNs model [12] is as follows.
(1) Each sensor node for data transmission contains the same initial energy and each of which has a unique ID number.
(2) After the deployment of sensor nodes which cannot move freely, the base station position is fixed in one place outside of the monitoring area, the daemon nodes and the selected cluster heads position is connected and unified tag.
(3) According to the received signal strength to nodes positioned approximate distance to base station, but which do not know the specific location, or there is no GPS function to obtain accurate position information.
In clustering algorithm, the cluster size is a factor to be considered, for ICRM algorithm which is described as follows.
(1) Taking into account the time required to select a cluster head consumption problem, here is the introduction of the cluster head energy factor and in certain conditions randomly selected  CH whose value is less than the threshold. CH reference LEACH protocol definition is where  init is the initial energy which the remaining nodes in addition to the daemon node have and  current is the node's current energy.
(2) The area covered by each cluster radius is fix (), which is the same size of each cluster.According to literature [13],  derived optimum radius of the cluster is defined as follows: where  is the total area of the monitoring area,  DA is the integration of energy consumption data 1 bit, and  pa is the energy for power amplification.
(3) For a more balanced distribution, the distance between adjacent randomly selected nodes requires more than ;  is defined as where  is a constant aimed at area  which can be adequately covered and is almost uniformly distributed.
(4) In order to ensure inter-cluster does not cover and all nodes must belong to a cluster, each cluster daemon node using radius fix () sends a message, the node which received information is added to the cluster where the daemon nodes is.If a node receives many messages, select the first notification to join and become a member of the cluster nodes, where each member node is only one hop from the cluster head node, and then the daemon node sends a International Journal of Distributed Sensor Networks confirmation message to indicate that the node can join the cluster.
(5) The daemon node obtains the information or each node in the cluster, denoted as  res for the cluster head residual energy, as  avg for the energy average of all the nodes in the cluster.After the node works for some time, if  res is less than  avg , daemon node will reselect again the cluster head which dynamically updated the node with maximum residual energy.(6) In this paper, the literature [5] uses the same firstorder model of wireless communication.
The sender sends  bit data to the distance  of the energy consumption of the receiver which is bit data received energy consumed is where  elec is the sending or receiving circuit that consumes energy. 0 is the distance threshold value: where  mp is a multichannel attenuation model power amplification factor; when sending the distance is greater than or equal to  0 , multiple attenuation model will be used;  fs is the power amplification coefficient in the free space model; when the transmission distance is less than  0 , the free-space model will be used.

ICRM Working Process
Daemon node contains the encryption key  and the hash function (), by which the data processing function is very difficult to launch a value.Outside the area the base station is in the monitoring of a security zone; all the nodes of the network ID and the key pool are loaded onto the base station, but also each daemon node of the cluster storing the key information which nodes in the cluster and nodes in other cluster nodes and maintaining a key ring, which this article assumes that daemon node has more energy and ability.
4.1.Authentication.Each daemon node is managed and maintained in its cluster, real-time monitors of each cluster node, in which the sole is representative of the cluster where the nodes is, so need to be authenticated to the base station.
Here BS is the base station, DN is the daemon node, DN  is the th ( = 1, 2, . . ., ) node, A → B{C} means that A sends the message C to B, and ACK is the identification.This phase is as detailed below: (1) DN  sends status request message REQ to BS:

The Key Distribution and Establishment.
Daemon nodes communicate with the base station to inform the number and location of the cluster head.Each cluster head CH  ( = 1, 2, . . ., ) stores allocation key share.Key segmentation process [9] summarized as follows.The base station first use of encryption function ENC and  will be encrypted secret ,  = ENC  ().Reuse some decomposition algorithm divide  into  obtaining  1 ,  2 , . . .,   , and assign to each cluster head.Then divide the entire key  into  obtaining  1 ,  2 , . . .,   .Finally put two tuples (  ,   ) ( = 1, 2, . . ., ) as key shadow   and send to the cluster head CH  .
To implement a secure connection between the nodes this requires the establishment the key, because of it includes different types of nodes, in order to reduce the degree of interaction between them; this section of different nodes uses different keys.This reference literature [14] is the key distribution of thoughts to solve the clustering model with daemon nodes that is the setup of all kinds of key nodes.Daemon node and base station are stored as preloaded master key, whose mainfunction is to prevent the network attack during initialization which causes information to be stolen, and   generate the key pair which will be automatically deleted.This phase is divided into three parts as follows.

The Establishment of a Key among Nodes and Base Stations.
Base station and each daemon node according to   generate a session key is as follows: where  is random number for a base, with the daemon node's private key   ( = 1, 2, . . ., ) encrypted obtaining    and sent to each daemon node.Communication between daemon nodes and base station in order to guarantee the authentication should be deposited in the key.

The Key Establishment between Daemon Nodes and Member
Nodes.Member nodes distribute key share with reference to the above process of cluster heads share the number for  − 2 (where  is all the nodes numbers, 2 is the total number of the cluster heads and daemon nodes), and eventually every member node gets a key from the base station and then directly sends its ID and key to daemon node.The daemon nodes after receiving information query their own key ring to find if there is information matching; if so, they will send a confirmation the members of the cluster head ID and control the establishment of the connection among the member nodes.Use the encryption key pair  DN, daemon nodes and the communication link between the th ( = 1, 2, . . .,  − 2) member nodes, cluster heads, and member nodes communication link between key encryptions for  CH, .
The Key Establishment among the Daemon Nodes.According to   and (), generate a unique key and key pair, such as daemon node , ID for  identifier, and   as its position information [15], based on the two having the only key   as follows: Then each daemon node builds key pair with the neighbor daemon nodes in the cluster.Daemon nodes  and  in neighbor cluster, for example,  broadcasts its ID to its neighbor cluster after receipt of  and compares its stored information in the key ring, if there is corresponding information, to establish a connection between two nodes [14].They set up the shared secret pair   as follows: If  did not correspond to  key, each of them will, respectively, send the message which is the request to establish a shared secret pair to the base station, including their ID.With the receipt of base station, assigne key for them and reply from the key pool, after  and  are received using the decryption key  and gain   , finally to establish a connection.
Shared key to establish the schematic is shown in Figure 1.

Measurement of the Node.
In order to improve the legitimacy of node identity in communication, we also need to test the credibility of cluster heads and member nodes; in this section by reference to the literature [11] the ideas of nodes for assessment, when their trust value reaches a certain threshold, are allowed to participate in data transfer; otherwise it is considered entrusted node and deleted from the web directly.This phase is divided into two parts as follows.
Cluster Heads to Member Nodes.Each cluster head is set to a value of moderate threshold  (0 <  < 1), using formula ( 14) calculated member nodes reputation value Cread  ( = 1, 2, . . .,  − 2): Cluster head Daemon node Member node The shared key path where  is a member node sending data current,  is the sum of the member nodes to send data before,  is the total number which the member nodes send,  1 and  2 (0 <  1 ,  2 < 1) being both the corresponding weights.
If Cread  ≥ , members of the node are credible; if Cread  < , mark them as malicious nodes.
If member nodes are malicious nodes, after daemon node receives cluster head signal board case, delete the message mes del .Daemon nodes will store their ID but delete their carrying key.The evaluation mechanism shown in (15) by the way has already been leaked; keys can be deleted from the network, which increase the security of network.
Cluster Head in Member Nodes of the Assessment.Consider where CM  is the th member nodes, CH is cluster head, ID CH is the cluster identifier, {} is encryption using the secret key , Random  is the th node which generated random number, and mes is sending information for members of the cluster head.
Member Nodes to Cluster Heads.Evaluation of the above (1) can prevent malicious nodes into the network, but in order to bring more security, it also needs member nodes evaluating cluster head to determine the current cluster heads which can be trusted.This mechanism is shown in the following.

Member Nodes in
International Journal of Distributed Sensor Networks What is mentioned above only represents single member nodes in cluster head of assessment; in order to improve the reliability of the results, all the member nodes are involved in the mechanism and then send the result to directly place daemon node in cluster, after daemon nodes received all member nodes in this cluster node test information, and then cluster head judges the credibility.

Multipath Routing.
The literature [16] proposes an improved bulk density of the intrusion-tolerance ability of the routing protocol, to reduce the influence degree of the failure nodes on the network; the experiments show that the new routing protocol can effectively achieve data branching and improving the network capacity intrusion-tolerance ability.But in the literature, a common node in routing is just established, and this section will use the combination of disjoint path and winding path to the multi-path routing established between cluster heads.This phase is in the following three processes.
Build Paths.Because of the time of authentication and key establishing base station already known as daemon node location and distance information, daemon nodes need to send PATHREQ messages (including their own ID) in order to show how to begin the establishment of path.The base station feedbacks the PATHREV information to the daemon nodes after it receives the message, and according to the previously stored information we calculate the distance between them; finally each guard node maintains a routing table .The Route Choice.First, using Floyd algorithm we calculate the shortest path from source daemon node to the base station and record every daemon node of the path.Then we build short path again, but no longer using the daemon node which is the primary path from source daemon node to base station which it passes by, for example, daemon node A midway through the B and C to base station, when the second shortest path is built; in other daemon node we expect the two nodes again using Floyd algorithm and calculate the second shortest path from A to the base station, as A backup path, and then press the same way to build A next second shortest path to the base station, as the second backup paths, and so on, which constructs the backup paths [17].Finally using winding path algorithm, we construct the primary and second shortest path winding paths of each daemon node which makes every daemon node in at least one path.Building the multi-path routing diagram is shown in Figure 2.
But this only establishes virtual path among daemon nodes; the daemon node should command and control cluster head communication if daemon nodes and cluster heads position is once established, it will not be changed; even changes in the cluster heads are just changes of the location of the original cluster head and new cluster head.After the success which among cluster heads is the primary path, the second shortest path and winding path are set up and finally step into the stage of data transmission.The Data Transmission Phase.Daemon node preserves the backup in which it and cluster heads have merged data.This section established the shortest path and the second shortest path; member nodes sent the collected information to the cluster heads, primary cluster fusion data and grouped packaging [18][19][20], a set of data using the shortest path transmission and another group using the second shortest path transmission.The two paths of the next cluster head receive data and fusion of information which it presses and continues to transfer until reaching the base station; base station receive two grouping of the data in the data reorganization, and also needs to get the key information.First we have to collect   of cluster head CH  ( = 1, 2, . . ., ) on two links, with secret sharing scheme  and the secret key  to recover, finally by using the key  and the DEC decryption  obtaining ,  = DEC  ().
Through the data packet assigned to multiple paths, even if a cluster head is captured within the network, this will not leak the complete information of data.And each cluster head is established by winding path on the primary path; even cluster is attacked, and the data transmission will automatically bypass the failure nodes, and cluster heads will continue information transmission to the base station through the winding path, which can effectively enhance the network capacity invasion ability and improve the efficiency of data transmission.

Exception Handling
5.1.The Node Processing.Node failure may be because of its own characteristics or captured, which leads to network topology changes.Daemon nodes have real-timely monitory other nodes, when they find abnormal situation, which will diagnose and do the corresponding processing and store energy of each node information and trust degree, after a period of time if the cluster head energy value is lower than the preset threshold, according to the maintenance of information table selected residually more energy and high trust value node for the next round of cluster head, cluster head message to broadcast again.
If cluster head is assessed as not credible, the daemon nodes will broadcast cluster head failure message to the member nodes.After the member node is received, it stops sending the collected data to cluster head in the cluster, and daemon nodes will delete the invalid cluster heads and reassign them.If a member node is not credible, daemon node will directly delete that node.
If a new node applies for joining a cluster, it will first send its key to daemon node in the cluster.After daemon nodes receipt, we need to check when a new node is key information and maintain consistent daemon node, the daemon node to perform this node to join operations, but we also need to see cluster head in the evaluation, after assessment can be involved in data collection, transmission, and so forth.

Routing Maintenance.
Multiple paths are to work together, which may be because of a certain path to the cluster head that is attacked or lacks energy, which causes this path fails that then continues and to transmit data through a winding path; the failure path routing maintenance mechanism is adopted to repair in time, elaborated in two different conditions as follows.
(1) If a cluster head in the path fails, daemon nodes automatically sense and from the maintenance of information in the table select the most appropriate member nodes as the cluster head of in the cluster, the source cluster head and the new cluster head exchanged; the new cluster head immediately receives daemon node in the fusion of data backup, established under the control of the daemon nodes into transmission path in waiting for the next round of data transfer.
(2) If this is not suitable for cluster head, the routing failures also show that the cluster heads are unavailable and low energy nodes directly close the communication module of dormancy.Daemon nodes inform base station node, the automatic cluster scatter, the daemon node leaving virtual path; another daemon node is automatically connected to modify maintenance information again.
Using multi-path routing maintenance mechanism, if the path or the cluster heads appear to be problem, they can be restored or replaced in time.If there is not the cluster head which did not meet the conditions, failure of cluster's path directly removed makes some nodes into a dormant state, which can save energy and prolong the service life of them.

Performance Evaluation
It puts forward a scheme that is still on the basis of LEACH protocol.The main purpose is to enhance the security of data transmission and improve the reliability of the network; the following is performance of the detailed analysis of the mechanism.
6.1.Process Description.This paper built different keys among the various nodes, and between the two nodes is only key pair.First, the node's join needs verification.The nodes whose validation is not adopted are difficult to enter the network, the node which is successful to join but if the trust value is the lower it will not be able to participate in the transmission of the data.Before communication, each kind of nodes also needs node-to-node authentication, if this succeeded, data transmission can be carried out.Even if a node in the network running process is internal attack, leak is associated with being the attacked node itself, and the content of the other nodes can still work normally.Second, due to the introduction of node evaluation mechanism, cluster head in member node of the assessment can filter out certain malicious nodes, and member nodes of cluster head nodes review will also become a cluster head which has been dropped as a malicious node network, which can be at ease using cluster heads for data fusion and forwarding therefore, to some extent, this mechanism can be resisted.Section 2 summarizes the three kinds of attack.
The establishment of random key pair needs to broadcast each node number, so that we can save the communication traffic.Between source cluster heads and base station the hybrid multi-path mechanism is adopted, concurrent transmission data can be in the path, so that each path will reduce the quantities of data, so as to reduce the path of a single load, which is resolved in a single path on a cluster head energy consumption which is too fast and easily becomes death problem and further can reduce the topology change of path reconstruction or network reconfiguration overhead.In addition, even if building the shortest path, the second shortest path is even more than a certain number of cluster heads as the standby path being attacked, which can also be adopted as timely winding path to transmit data of each cluster head, daemon node using route maintenance mechanism, and the successful replacement of cluster heads to participate in the next round of data transmission, to improve network communication traffic as a whole.

Evaluation
Indicators.This paper compares the ICRM and LEACH; DD agreement, analysis of performance indicators [18] are defined as follows.
Load balancing factor is This value is used to measure the balance degree of clusters, where  low is the number of energy which is lower than the average of the total number nodes in network,  is the number of daemon nodes,  is the total number of nodes,  −  is the number of participating nodes in the data transmission.
The average end-to-end delay is It is the average of the sum of the time delays which is transmitted packets from the source cluster heads to the International Journal of Distributed Sensor Networks destination in   time, where is the   for each participating data transmission delay of cluster heads.Network throughput is It is the number of data packets of successful transmission in   time,  send is each cluster head that sends the packet number.
The routing control overhead is where  is the pay expenses which are daemon node controlling according to the built path transmission cluster heads need,  is multiple paths in need of the overhead of data transmission.

Experimental Verification.
Performance in order to verify the proposed algorithm uses c++ programming and corresponding analysis; in this section the ICRM and LEACH and DD protocol defined in the previous section on the evaluation index of were compared, and the running time is a measured parameter.100 sensor nodes are randomly placed within 100 m × 100 m square area, because nodes are randomly deployed; location is not fixed, and there will be multiple nodes which are stacked in a place where nodes distribution is not uniform, causing no spread to some region; the random node distribution is shown in Figure 3.With base station coordinates of (120, 120), a sensor node range of (0, 0) to (100, 100) area, and node for the initial energy of 1 J, node death occurred when energy is 0, an experiment of assuming no daemon node death.Figure 4 shows that clustering protocol LEACH in network load balance factor is better than that of flat DD routing protocol, which shows flat routing network load to be better than than clustering routing protocol.ICRM due to daemon node is introduced in the work, in the process of establishing virtual path, cluster head, and member nodes dormancy, in order to reduce energy consumption.In data transmission, the cluster heads packaged data packet transmission in multiple paths, which obviously decrease viral pathways on cluster head load and energy consumption.By comprehensive comparison, this paper presents the mechanism of the minimum balance network load factor and stability.
Figure 5 shows that the flat structure of multi-path routing protocols is used with the DD, compared with LEACH and ICRM clustering mechanism which is significantly smaller average end-to-end delay, which explains clustering structure division of each node clearly and is able to better coordinate the entire network.ICRM generated is the multipath among daemon nodes; cluster heads need to be controlled for data transmission, which is faster than flat routing path of each node speed, whose LEACH from the base station in the remote node increases path establishment and data transmission delay, so the ICRM is average minimum delay here.
Comparison on throughput is shown in Figure 6, because the ICRM introduced invasion mechanism, and it can effectively resist malicious nodes to participate in the network;  network packets loss rate is smaller, and the cluster head setup between multi-paths makes data transmission more reliable, even if a certain path fails; route maintenance mechanism to take timely measures to make the data transmission is almost unaffected, and routing robustness is better.With daemon nodes splitting the tasks of the cluster head nodes, which can reduce the energy consumption of nodes, each cluster head works longer, with more quantities of data as a whole.While, in DD agreement, most of the nodes energy consumption quickly, easy to death, makes the minimum quantities of data protocol.LEACH protocol cluster head bear there are the mission of the heavier, but member nodes energy consumption less, better than the DD agreement, but uneven distribution of cluster heads, which lead some cluster heads to premature death which affects the data transmission.In Figure 7, because the DD agreement path generation time is long and often interrupted, routing maintenance spends more cost, so the routing control overhead is the largest.Cluster head easy to die in the LEACH protocol and often to be cluster head selection again every time refactoring and controlling the routing overhead large.ICRM and cluster heads are controlled by daemon node work, and cluster heads are less susceptible to attack and daemon node real-time monitoring work and timely replacement of each failure cluster heads or removal of low trust value of nodes, in each path on the energy balance, almost can be seen from the diagram, the routing mechanism overhead is relatively stable, significantly lower than the other two protocols.

Conclusion
This paper to solve the problem was made in the course of the LEACH protocol in data transmission security hidden danger which introduced a simple key management mechanism, the secret sharing technology, and random key to the model of a bunch of key management information into more pieces which were assigned to each sensor node, among daemon nodes, cluster heads, and member nodes which need to be the key of authentication; in a certain moment even network, one or several nodes attack; also will not leak the key information.
In order to increase the credibility of the working node we also introduced the node evaluation mechanism, and low trust value node has been dropped as a network cannot be directly involved in data transmission and effectively improve the performance of network security.Data transmission among clusters enhanced multi-path mechanism, which further improves the reliability of data transmission and implements network load balancing.

Figure 1 :
Figure 1: The establishment of a shared secret key.

Figure 2 :
Figure 2: A mix of multi-path.