Presentation is loading. Please wait.

Presentation is loading. Please wait.

Modeling Ad-hoc Rushing Attack in a Negligiblity -based Security Framework Jiejun Kong Mario Gerla Jiejun Kong, * Xiaoyan Hong, # Mario Gerla Scalable.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Modeling Ad-hoc Rushing Attack in a Negligiblity -based Security Framework Jiejun Kong Mario Gerla Jiejun Kong, * Xiaoyan Hong, # Mario Gerla Scalable."— Presentation transcript:

1 Modeling Ad-hoc Rushing Attack in a Negligiblity -based Security Framework Jiejun Kong Mario Gerla Jiejun Kong, * Xiaoyan Hong, # Mario Gerla Scalable Network Technologies *Computer Science Department # Computer Science Department Los Angeles University of Alabama, Tuscaloosa University of California, Los Angeles ACM WiSe’06 September 29, 2006. Los Angeles, California jkong@scalable-networks.com, hxy@cs.ua.edu, gerla@cs.ucla.edu ACM WiSe’06 September 29, 2006. Los Angeles, Californiagerla@cs.ucla.edu

2 Notion: Security as a “landslide” game Played by the guard and the adversary –Proposal can be found as early as Shannon ’ s 1949 paper –Not a 50%-50% chance game, which is too good for the adversary The notion has been used in modern crypto since 1970s –Based on NP-complexity –The guard wins the game with 1 - negligible probability –The adversary wins the game with negligible probability –The asymptotic notion of “ negligible ” applies to one-way function (encryption, one-way hash), pseudorandom generator, zero-knowledge proof, …… AND this time …… secure routing

3 The Asymptotic Cryptography Model Security can be achieved by a polynomial-bounded guard against a polynomial-bounded adversary 1 2 # of key bits (key length) 128 Probability of security breach negligible sub-polynomial The “negligible” line (sub-polynomial line) Insecure Secure (Ambiguous area)

4 Our Asymptotic Network Security Model Conforming to the classic notion of security Network metric (e.g., # of nodes -- network scale) Probability of network security breach negligible sub-polynomial The “negligible” line (sub-polynomial line) exponential The “exponential” line Insecure Secure (Ambiguous area)

5 Negligible := (Asymptotic) Sub-Polynomial Consistent with computational cryptography ’ s asymptotic notion of “ negligible / sub-polynomial ” is negligible by definition x is key length in computational crypto x is network metric (e.g., # of nodes) in network security Definition Definition: A function  : N  R is negligible, if for every positive integer c and all sufficiently large x’ s (i.e., there exists N c >0, for all x>N c ),

6 Problem Statement Secure routing problems are not solved –Rushing attacks, wormhole attacks, etc. are threatening mobile wireless networks Secure routing lacks formal modeling –More generally, foundation of network security is unknown The connection between network scale and network security is unknown

7 Forwarding in Wireless Networks Area defined by intersection of 2 or more transmission circles Node redundancy is common in wireless ad hoc networks E(A forward ) –In the E(A forward ), expectation size of the forwarding area, there are usually more than 1 “ good ” or “ bad ” nodes inside E(A forward )

8 Rushing Attack [Hu,Perrig,Johnson 2003] RREQ forwarding –Rushing attackers disobey delay (MAC/routing/queuing) requirements & w/ higher prob., are placed on RREP / DATA path Low-cost: feasible as long as capable of intercepting & forwarding source dest RREQ RREP

9 Mobile network model Divides the entire network area A into large number n of very small tiles (i.e., possible “ positions ” ) –A node ’ s presence probability p at each tile is small  Follows a spatial binomial distribution B(n,p) –When n is large and p is small, B(n,p) is approximately a spatial Poisson point distribution with rate  1 –If there are N mobile nodes, use  1 as the average PDF  N = N·  1 –The probability of exactly k nodes in an area A’

10  1 in Random Way Point model [Bettstetter et al.] a=1000

11 In our stochastic model,  1 is arbitrary No matter what the mobility model is, there is a stochastic PDF for node ’ s probabilistic presence at each position If in certain area the node’s stochastic presence PDF is 0, then this area should not be counted in the entire network area A

12 Modeling adversarial presence  : percentage of non-cooperative network members (e.g., probability of node selfishness & intrusion) 3 random variables –x : number of nodes in the forwarding community area –y : number of cooperative nodes –z : number of non-cooperative nodes

13 Rushing Attack is Low-cost & Severe ! Per-hop success prob. of node -to-node routing is negligible with respect to network scale N under rushing attack Per-hop failure prob. of node -to-node ad hoc routing schemes is unfortunately 1 - negligible(N) As illustrated later, this means rushing attack makes legacy node -to-node routing schemes fall into negative RP –Negative RP: success/yes probability is negligible, severe problem! –RP: failure/no probability is negligible Integral and differential not a problem:

14 …progress … Secure routing problems are not solved –Rushing attacks, wormhole attacks, etc. are threatening mobile wireless networks Secure routing lacks formal modeling –More generally, foundation of network security is unknown The connection between network scale and network security is unknown

15 Terminology Las Vegas algo.  Always correct, probably fast Monte-Carlo algo.  Always fast, probably correct with 1-side error –Today ’ s focus Atlantic City algo. (or Monte-Carlo w/ 2-side)  Always fast, probably correct with 2-side error

16 RP : Randomized Polynomial-time RP ( 1 -run): not this one! –Polynomial-time –If correct answer is FAILURE/NO, it always returns FAILURE/NO –If correct answer is SUCCESS/YES, it returns SUCCESS/YES with probability ½+  (x) ; but may return FAILURE/NO otherwise RP ( n -runs): today ’ s pick! –Polynomial-time –If correct answer is FAILURE/NO, it always returns FAILURE/NO –If correct answer is SUCCESS/YES, it returns SUCCESS/YES with probability 1-(½) n ; but may return FAILURE/NO Las Vegas Answer Monte Carlo Answer SUCCESS YES FAILURE NO SUCCESS YES constant p > 0 ( p  ½+  (x)) 1 - p  ½-  (x) FAILURE NO 01 Las Vegas Answer Monte Carlo Answer SUCCESS YES FAILURE NO SUCCESS YES 1 – p n ( p > 1-1/2 n ) p n ( p <1/2 n ) FAILURE NO 01 X

17 poly(x) the ideal line (can be found by Las Vegas algorithms)  (x) deviation bound A Generic Family of Random Algorithms with Invariant Deviation  (x) (This is proven in Theorem 2)

18 M q t  Turing Machine (TM) Deterministic TM –At most 1 move for each transition state Non-deterministic TM & Probabilistic TM –Can be represented by DTM + random tape Add a random tape to hold coin-tosses for probabilistic Turing Machines

19 # # # # # # # # # # # # # M q t  Routing in Probabilistic Turing Machine with GVG oracle # of possible node positions < O(poly(n)) Every node is only a “ puppet ” tape carrier --- The randomized state is maintained by an oracle, the Global Virtual God Node communication, mobility and the environmental randomness are simulated by GVG in random tape M q t  # # # # # # # # # # # # # Old place replaced by blank tape M q t  RREQ On-demand route discovery starts M q t  RREP Route successfully established when RREP is received after poly(N) steps Modeling mobility

20 Community Based Security (CBS) Community -to-community forwarding (not node -to-node ) Turn the table –Now the forwarding failure becomes negligible  (x) –Rushing attack becomes ineffective Ideally, stay in GVG-RP (i.e., with  (x) forwarding failure) for polynomial routing steps (wrt. network scale N )

21 …progress … Secure routing problems are not solved –Rushing attacks, wormhole attacks, etc. are threatening mobile wireless networks Secure routing lacks formal modeling –More generally, foundation of network security is unknown The connection between network scale and network security is unknown

22 Connecting a few Theories Probabilistic Complexity Theory RP & BPP requires discovery of negligibility Stochastic Mobility Analysis & Spatial Poisson Processes

23 Summary Initiative –Some problems (wrt. foundations of network security) are based on randomized algorithms and probabilistic complexity theory This paper ’ s contributions –Devises the GVG oracle to translate wireless networking problems into randomized algorithms –Algorithms/Protocols in GVG-RP are asymptotically invariant  (x) failure probability at each step   (x) failure probability over polynomial steps –In a closed space A (2-d network area or 3-d network volume) where nodes follow spatial Poisson point distribution and with non-zero PDF Routing protocols based on local community coordination are in RP In contrast, legacy routing protocols based on node-to-node coordination are in negative RP  They are severely vulnerable to low-cost routing attacks (rushing attack) Detailed protocol design is available, though not a perfect implementation –Jiejun Kong, Xiaoyan Hong, Yunjung Yi, Joon-Sang Park, Mario Gerla, “ A Secure Ad- hoc Routing Approach using Localized Self-healing Communities, ” pp.254-265, ACM MOBIHOC, May 25-28, 2005. Open challenges –Applications in other network security domains –Foundations of network security

24

25 This slide is intentionally left blank Backup slides follow

26 Why does size matter? When competition is about physical power in body (network of cells): right before the “ Cretaceous-Tertiary (K-T) extinction ” event, the dinosaurs were of their largest size ALLOSAURUS ERA: Late Jurassic ( Kimmeridgian 154.1 - 150.7 Ma ). SIZE: Length 10 - 12 m. Weight 1 - 1.7 tonnes. TYRANNOSAURUS ERA: Late Cretaceous ( Campanian - Maastrichtian 83.5 - 65 Ma ). SIZE: Length 12-14 m. Height 5m. Weight 4.5 - 7 tonnes. PROTOCERATOPS ERA: Late Cretaceous ( Santonian - Campanian 85.8 - 71.3 Ma ). SIZE: Length 2m. Height 75cm. Weight 1.4 tonnes. TOROSAURUS ERA: Late Cretaceous ( Maastrichtian 71.3 - 65 Ma ). SIZE: Length 7.6 m. Weight 7 - 8 tonnes.

27 Why does size matter? (cont’d) When competition is about intelligence in networks of neuron: cranial capacity and complexity          Taxon Cranial capacity (cc) Age (Megannum) Au. Afarensis400 – 5003.6—2.9 Au. africanus400 – 5003.0—2.4 Homo habilis500 – 6502.0—1.6 Homo rudolfensis600 – 8002.4—1.6 Homo ergaster750 – 12501.8—1.2 Homo erectus750 – 12501.8—0.3 Homo sapiens1400 avg.0.25—present

28 BPP : Bounded-error Probabilistic Polynomial-time BPP ( 1 -run) –Polynomial-time –On either case, will give correct answer with probability ½+  (x) (i.e., give incorrect answer otherwise) BPP ( n -runs) –Polynomial-time –On either case, will give correct answer with probability 1-e -n/24 (i.e., give incorrect answer otherwise) Prove by Chernoff ’ s bound Las Vegas Answer Monte Carlo Answer YESNO YES p  ½+  (x) 1–p  ½-  (x) NO  ½-  (x)  ½+  (x) Las Vegas Answer Monte Carlo Answer YESNO YES p > 1-e -n/24 1-p < e -n/24 NO < e -n/24 > 1-e -n/24

29 11 Inspired by Bettstetter et al. ’ s work –For any mobility model (random walk, random way point), Bettstetter et al. have shown that  1 is computable following –For example, in random way point model in a square network area of size a £ a defined by -a/2 · x · a/2 and -a/2 · y · a/2 –  1 is “ location dependent ”, yet computable in NS2 & QualNet given any area A’ (using finite element method)

Download ppt "Modeling Ad-hoc Rushing Attack in a Negligiblity -based Security Framework Jiejun Kong Mario Gerla Jiejun Kong, * Xiaoyan Hong, # Mario Gerla Scalable."

Similar presentations

Ulams Game and Universal Communications Using Feedback Ofer Shayevitz June 2006.

Ulams Game and Universal Communications Using Feedback Ofer Shayevitz June 2006.
Part VI NP-Hardness. Lecture 23 Whats NP? Hard Problems.

Part VI NP-Hardness. Lecture 23 Whats NP? Hard Problems.
Scalable and Dynamic Quorum Systems Moni Naor & Udi Wieder The Weizmann Institute of Science.

Scalable and Dynamic Quorum Systems Moni Naor & Udi Wieder The Weizmann Institute of Science.
Many-to-one Trapdoor Functions and their Relations to Public-key Cryptosystems M. Bellare S. Halevi A. Saha S. Vadhan.

Many-to-one Trapdoor Functions and their Relations to Public-key Cryptosystems M. Bellare S. Halevi A. Saha S. Vadhan.
“Devo verificare un’equivalenza polinomiale…Che fò? Fò dù conti” (Prof. G. Di Battista)

“Devo verificare un’equivalenza polinomiale…Che fò? Fò dù conti” (Prof. G. Di Battista)
11 Provable Security. 22 Given a ciphertext, find the corresponding plaintext.

11 Provable Security. 22 Given a ciphertext, find the corresponding plaintext.
1 The Limits of Computation Intractable and Non-computable functions.

1 The Limits of Computation Intractable and Non-computable functions.
NP-complete and NP-hard problems Transitivity of polynomial-time many-one reductions Concept of Completeness and hardness for a complexity class Definition.

NP-complete and NP-hard problems Transitivity of polynomial-time many-one reductions Concept of Completeness and hardness for a complexity class Definition.
Cryptography and Data Security: Long-Term Challenges Burt Kaliski, RSA Security Northeastern University CCIS Mini Symposium on Information Security November.

Cryptography and Data Security: Long-Term Challenges Burt Kaliski, RSA Security Northeastern University CCIS Mini Symposium on Information Security November.
Randomized Algorithms Kyomin Jung KAIST Applied Algorithm Lab Jan 12, WSAC 2010 1.

Randomized Algorithms Kyomin Jung KAIST Applied Algorithm Lab Jan 12, WSAC
PCPs and Inapproximability Introduction. My T. Thai 2 Why Approximation Algorithms  Problems that we cannot find an optimal solution.

PCPs and Inapproximability Introduction. My T. Thai 2 Why Approximation Algorithms  Problems that we cannot find an optimal solution.
Motion-MIX Mobile Traffic Sensor Network vs. Motion-MIX : Tracing & Protecting Mobile Wireless Nodes # Jiejun Kong, # # Jiejun Kong, * Dapeng Wu, + Xiaoyan.

Motion-MIX Mobile Traffic Sensor Network vs. Motion-MIX : Tracing & Protecting Mobile Wireless Nodes # Jiejun Kong, # # Jiejun Kong, * Dapeng Wu, + Xiaoyan.
P ROBABILISTIC T URING M ACHINES Stephany Coffman-Wolph Wednesday, March 28, 2007.

P ROBABILISTIC T URING M ACHINES Stephany Coffman-Wolph Wednesday, March 28, 2007.
A Secure Ad-hoc Routing Approach using Localized Self-healing Communities Jiejun Kong Mario Gerla Jiejun Kong, * Xiaoyan Hong, Yunjung Yi, Joon-Sang Park,

A Secure Ad-hoc Routing Approach using Localized Self-healing Communities Jiejun Kong Mario Gerla Jiejun Kong, * Xiaoyan Hong, Yunjung Yi, Joon-Sang Park,
CS151 Complexity Theory Lecture 7 April 20, 2004.

CS151 Complexity Theory Lecture 7 April 20, 2004.
Perfect and Statistical Secrecy, probabilistic algorithms, Definitions of Easy and Hard, 1-Way FN -- formal definition.

Perfect and Statistical Secrecy, probabilistic algorithms, Definitions of Easy and Hard, 1-Way FN -- formal definition.
1 Mazes In The Theory of Computer Science Dana Moshkovitz.

1 Mazes In The Theory of Computer Science Dana Moshkovitz.
Building Low-Diameter P2P Networks Eli Upfal Department of Computer Science Brown University Joint work with Gopal Pandurangan and Prabhakar Raghavan.

Building Low-Diameter P2P Networks Eli Upfal Department of Computer Science Brown University Joint work with Gopal Pandurangan and Prabhakar Raghavan.
Submitted by : Estrella Eisenberg Yair Kaufman Ohad Lipsky Riva Gonen Shalom.

Submitted by : Estrella Eisenberg Yair Kaufman Ohad Lipsky Riva Gonen Shalom.
NP-complete and NP-hard problems

NP-complete and NP-hard problems

Similar presentations

Ads by Google