Presentation is loading. Please wait.

Presentation is loading. Please wait.

ITIS 6010/8010 Wireless Network Security

Published byYandi Hartanto Modified over 5 years ago

Similar presentations

Presentation on theme: "ITIS 6010/8010 Wireless Network Security"— Presentation transcript:

1 ITIS 6010/8010 Wireless Network Security
Dr. Weichao Wang

2 Attacks on routing protocols for ad hoc networks
Passive attacks Ignoring the protocol operations: data forwarding and route processing Limited impacts Active attacks Introduce false routing information False distance vector False destination sequence numbers False RERR Malicious flooding

3 Comparison b/w security features of reactive and proactive protocols
Preparation time for attack Flexibility of attacks: time, target, method Trace back and attacker identification Overhead to conduct attacks Propagation of false routes Detection of false routes

4 Misuse of AODV Goals Atomic misuse Compound misuse Route disruption
Route invasion Node isolation Resource consumption Atomic misuse Drop Modify and forward Forge reply Active forge Compound misuse

5 Different combinations of AODV packet and atomic misuse
Compound misuse

6

7

8

9

10 Mitigating Routing Misbehaviors
Extensions to DSR Watchdog Monitor whether neighbors forward the packets Maintain a counter for each neighbor Determine whether neighbors are misbehaving by comparing the counter to a threshold

11 Attacks to watchdog Collision at the watchdog (A does not hear B)
Collision at the remote receiver (A hear B, but C does not get the packet) Frame good nodes Cheat the watchdog by controlling transmission power or directional antenna Collusive attacks

12 Pathrater Each node maintains a rating for other nodes
Increase rating of nodes on active path periodically A misbehaved node is rated as a large negative value Calculate a path rating based on node rating (suit the source routing method)

13 Simulation results When 40% nodes are selfish, the delivery ratio will increase 17% Overhead of the routing protocol and Power consumption overhead Eavesdropping Longer path More route request

14

15 SAODV Proposed by researchers in NOKIA
Handle import authorization: does a router accept an incoming routing update? Handle export authorization: does a router reply to a request Every node can only generate routing information about itself Dealing with both the unchanged part and changed part in the routing packets

16 Difference b/w data packet and routing packets
Provided features A node can generate routing information only about itself Source authentication: the node is the one that it claims to be Integrity Difference b/w data packet and routing packets Intermediate nodes do not need to know the contents of a data packet Not for the routing packets: the nodes need to update their routing tables The contents of the routing packets may be changed (e.g. hop count)

17 Therefore, protecting the mutable and non-mutable parts in routing packets is different
Assumption Every node has a public/private key pair and a certificate for the public key Use digital signature to authenticate non-mutable part, and hash chain to protect the hop-count

18 SAODV uses hash chains to authenticate the hop count in RREQ and RREP
The source will set x=seed, top-hash = h^(max) (seed). Both x and top-hash will be sent in RREQ Every intermediate node verifies whether top-hash = h^(max-hop count) (x) The Intermediate node will change x = h (x) All fields but x and the hop count are protected by the digital signature

19 Process the RREQ and RREP
Verify the signature before updating the routing table When an intermediate node sends a RREP, it contains two signatures: the destination’s and the intermediate node’s Process the RERR Every node will sign the RERR before forwarding it Every node will verify the signature before changing the routing table The node should not update the destination sequence number

20 The malicious node cannot reverse the hash function

Download ppt "ITIS 6010/8010 Wireless Network Security"

Similar presentations

1 A Review of Current Routing Protocols for Ad-Hoc Mobile Wireless Networks By Lei Chen.

1 A Review of Current Routing Protocols for Ad-Hoc Mobile Wireless Networks By Lei Chen.
Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,

Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,
Collaborative Attacks on Routing Protocols in Ad hoc Networks Neelima Gupta University of Delhi India.

Collaborative Attacks on Routing Protocols in Ad hoc Networks Neelima Gupta University of Delhi India.
A Survey of Secure Wireless Ad Hoc Routing

A Survey of Secure Wireless Ad Hoc Routing
Mitigating Routing Misbehavior in Mobile Ad Hoc Networks By Sergio Marti, T.J. Giuli, Kevin Lai, & Mary Baker Department of Computer Science Stanford University.

Mitigating Routing Misbehavior in Mobile Ad Hoc Networks By Sergio Marti, T.J. Giuli, Kevin Lai, & Mary Baker Department of Computer Science Stanford University.
MANETs Routing Dr. Raad S. Al-Qassas Department of Computer Science PSUT

MANETs Routing Dr. Raad S. Al-Qassas Department of Computer Science PSUT
NGMAST- WMS workshop17/09/2008, Cardiff, Wales, UK A Simulation Analysis of Routing Misbehaviour in Mobile Ad hoc Networks 2 nd International Conference.

NGMAST- WMS workshop17/09/2008, Cardiff, Wales, UK A Simulation Analysis of Routing Misbehaviour in Mobile Ad hoc Networks 2 nd International Conference.
Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Anand Patwardhan Jim.

Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Anand Patwardhan Jim.
On Security Study of Two Distance Vector Routing Protocols for Ad Hoc Networks Weichao Wang, Yi Lu, Bharat Bhargava CERIAS and Department of Computer Sciences.

On Security Study of Two Distance Vector Routing Protocols for Ad Hoc Networks Weichao Wang, Yi Lu, Bharat Bhargava CERIAS and Department of Computer Sciences.
Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.

Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.
Centre for Wireless Communications University of Oulu, Finland

Centre for Wireless Communications University of Oulu, Finland
ITIS 6010/8010 Wireless Network Security Dr. Weichao Wang.

ITIS 6010/8010 Wireless Network Security Dr. Weichao Wang.
Boundary detection in sensor networks for phenomenon classification GROUP MEMBERS : AKSHAY BALASUBRAMANIAN NANDAKUMAR P VENUGOPAL SATISH RAMASWAMI SALEM.

Boundary detection in sensor networks for phenomenon classification GROUP MEMBERS : AKSHAY BALASUBRAMANIAN NANDAKUMAR P VENUGOPAL SATISH RAMASWAMI SALEM.
Routing Security in Ad Hoc Networks

Routing Security in Ad Hoc Networks
CS541 Advanced Networking 1 Mobile Ad Hoc Networks (MANETs) Neil Tang 02/02/2009.

CS541 Advanced Networking 1 Mobile Ad Hoc Networks (MANETs) Neil Tang 02/02/2009.
Study of Distance Vector Routing Protocols for Mobile Ad Hoc Networks Yi Lu, Weichao Wang, Bharat Bhargava CERIAS and Department of Computer Sciences Purdue.

Study of Distance Vector Routing Protocols for Mobile Ad Hoc Networks Yi Lu, Weichao Wang, Bharat Bhargava CERIAS and Department of Computer Sciences Purdue.
ITIS 6010/8010: Wireless Network Security Weichao Wang.

ITIS 6010/8010: Wireless Network Security Weichao Wang.
Ad Hoc Wireless Routing COS 461: Computer Networks

Ad Hoc Wireless Routing COS 461: Computer Networks
BLACK HOLE IN MANET SUBMITTED TO:--SUBMITTED BY:-- Dr. SAPNA GAMBHIRINDRAJEET KUMAR CSE DEPTT.MNW/887/2K11.

BLACK HOLE IN MANET SUBMITTED TO:--SUBMITTED BY:-- Dr. SAPNA GAMBHIRINDRAJEET KUMAR CSE DEPTT.MNW/887/2K11.
Itrat Rasool Quadri ST ID COE-543 Wireless and Mobile Networks

Itrat Rasool Quadri ST ID COE-543 Wireless and Mobile Networks

Similar presentations

Ads by Google