Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Computer Networks

Security Issues in Wireless Networks MAC Layer Fault Detection Routing Anomaly Detection

advertisement 
[Lab or
Research
Group
Logo]
Security Issues in Wireless Networks
Irena Bojanic, Alvaro Cardenas, Behnam Neekzad, Svetlana Radosavac, John S. Baras
MAC Layer Fault Detection
Routing Anomaly Detection
Application Layer Intrusion Detection
•MAC and routing layers interact
•Possible to cause an attack by manipulating traffic
in the MAC layer and propagate attack to the routing
layer
•Goal: Detect the intrusion, minimizing detection time
tD and the number of false alarms, while maximizing
the probability of detection PD.
•We consider attacks that employ legitimate
communications which result in node misbehavior
and attack propagation through the network
•Single and colluding malicious nodes utilize
legitimate communication patterns to isolate one or
multiple nodes in the network
•Node mobility pattern is modeled by an Hidden
Markov Model (HMM)
•The hidden states of the HMM can be viewed as
abstractions of different spatial configurations of
the mobile nodes
•The observed variables are the hop count
distribution (i.e. packet flow pattern)
•The goal is to use the allowable/normal state
transitions for change detection
•Probabilistic Virtual Space
A
M1
D
X
M2
B
•The attacks start in the MAC layer and propagate
to the routing layer, breaking old (legitimate) routes
and creating new routes that contain malicious nodes
• We represent MAC protocols in the form of
Extended Finite State Machines
•For attack detection formulate series of rules a faultfree MAC protocol cannot violate
•Automatic Model Checking is executed with input of
the relevant rule parameters from the nodes under
examination
•Rules are input in the form of Computation Tree
Logic (CTL) formulas.
Security of Distributed Sensor networks
•What’s different?
•No physical security
•Interaction with the physical environment
•Unknown topology before deployment
• Resource Constraint
•Challenges:
•Must avoid complex protocols
•Crypto must run on wimpy devices
•Need to minimize packet overhead
•Initialization: creation of probabilistic models and
databases
•Parallel testing and training: probabilistic testing
of current behavior while creating its model for
possible future use
•Logic: testing via assignment of weight
probabilities to attack logic transitions
•Verification: probabilistic cross-testing of
suspicious behavior
•Adaptive phase: adaptation of relevant databases
•False Alarm Rate Reduction:
6%
5%
4%
3%
2%
1%
0%
Research partially supported by the U.S. Army Research Office under grant No DAAD19-01-1-0494
Parallel
testing and
training
Logic
Verification
Related documents
Smart Dust and TinyOS: Hardware and Software for Network
Smart Dust and TinyOS: Hardware and Software for Network
Part IV
Part IV
paper 6
paper 6
Proceedings of the 2003 Winter Simulation Conference
Proceedings of the 2003 Winter Simulation Conference
Wireless Sensor Networks for Surveillance Applications – Advisor: Wei-Yeh Chen
Wireless Sensor Networks for Surveillance Applications – Advisor: Wei-Yeh Chen
Component Based Modeling for Cross-layer Protocols in Ad-hoc Networks
Component Based Modeling for Cross-layer Protocols in Ad-hoc Networks
Cross-layer attacks in wireless ad hoc networks 1
Cross-layer attacks in wireless ad hoc networks 1
Document14120749 14120749
Document14120749 14120749
Impact of Optimal MAC Layer Attacks on the Network Layer
Impact of Optimal MAC Layer Attacks on the Network Layer
Attacks and Defenses Utilizing Cross-Layer Interactions in MANET
Attacks and Defenses Utilizing Cross-Layer Interactions in MANET
Probabilistic Consistency Boosts MAC and SAC
Probabilistic Consistency Boosts MAC and SAC
A Comprehensive Analysis of the MAC Unreliability Problem in IEEE
A Comprehensive Analysis of the MAC Unreliability Problem in IEEE
Download
advertisement