A new security model to prevent denial‐of‐service attacks and violation of availability in wireless networks

Mina, Mani; Ghani, Abdul; Subramaniam, Shamala

doi:10.1002/dac.1296

Cited by 19 publications

(15 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…On the other hand, if the energy is located at zero or nearby the zero frequency point in the main lobe ω, the σ f value is smaller than LDoS attack flows. Formula (9) implies that energy at frequency points higher than zero is highlighted and the energy at frequency close to f 0 is dimmed. Here, σ f is the energy threshold, to determine the existence of LDoS attack.…”

Section: The Detection Of Ldos Attack Based On the Sedp Modelmentioning

confidence: 99%

“…Hence, the value of σ f is larger when the LDoS attack flows exist, while the value of σ f is smaller for normal TCP flows. Further analysis of the formula (9) shows that if all frequency points in the main lobe ω are taken as a sample sequence, E f /E, denoting the ratio of the energy at frequency f to the total power, is an energy distribution probability function P f with mean of 0 and variance of σ 2 . The variance σ 2 can be calculated as…”

Section: The Detection Of Ldos Attack Based On the Sedp Modelmentioning

confidence: 99%

See 1 more Smart Citation

SEDP‐based detection of low‐rate DoS attacks

Xie

2014

Int J Communication

View full text Add to dashboard Cite

Summary Low‐rate Denial of Service (LDoS) is a new type of TCP‐targeted attacks, which attempt to deny bandwidth to TCP flows while sending at sufficiently low‐average rate to elude detection of DoS defense system. Therefore, LDoS attacks are difficult to be detected by routers and counter‐DoS mechanisms. In this paper, an approach of detecting LDoS attacks is proposed by using the technology of signal processing based on the model of spectral energy distribution probability. The proposed approach calculates variances between the incoming traffic of normal TCP and attack flows to a server by using packet sampling sequence within a certain period. The network traffic is converted from the time domain to the frequency domain forming a spectral signal, and the distribution probability of spectral energy is estimated based on spectrum characteristics of rectangular pulses. This approach explores that the energy of LDoS attacks is mostly distributed in the main lobe width while that of normal TCP traffic is just concentrated near zero in frequency domain. Both the spectral energy of normal TCP traffic and LDoS attacks distributed in main lobe are calculated, and an energy threshold is set as decision value based on statistical results according to energy distribution properties. The existence of LDoS attacks is determined and detected by comparing calculated variances with the preset decision threshold value. Tests on the detection performance of the proposed approach were performed in NS‐2 simulation environment, and detection rate was obtained by Hypothesis test. Experiment results show that the proposed approach has higher detection accuracy and less computation consuming. Copyright © 2014 John Wiley & Sons, Ltd.

show abstract

Section: The Detection Of Ldos Attack Based On the Sedp Modelmentioning

confidence: 99%

Section: The Detection Of Ldos Attack Based On the Sedp Modelmentioning

confidence: 99%

SEDP‐based detection of low‐rate DoS attacks

Xie

2014

Int J Communication

View full text Add to dashboard Cite

show abstract

“…Considering a case of denial of service attack that uses frame control, (Malekzadeh et al, 2012) propose a method that revokes the channel reservation asked by attacker. Sending a packet with a Request to Send (RS) too high, the AP admits that reservation and then broadcast a Clear to Send Packet (CSP) advising the channel reservation for window time requested.…”

Section: Related Workmentioning

confidence: 99%

An Approach to Mitigate Denial of Service Attacks in Ieee 802.11 Networks

Ribeiro¹,

Pinto²,

Zafalon³

et al. 2014

Journal of Computer Science

View full text Add to dashboard Cite

Wireless networks are widely deployed and have many uses, for example in critical embedded systems. The applications of this kind of network meets the common needs of most embedded systems and addressing the particularities of each scenario, such as limitations of computing resources and energy supply. Problems such as denial of service attacks are common place and cause great inconvenience. Thus, this study presents simulations of denial of service attacks on 802.11 wireless networks using the network simulator OMNeT++. Furthermore, we present an approach to mitigate such attack, obtaining significant results for improving wireless networks.

show abstract

“…Security and anonymity are two important problems in VANETs. At present, in addition to the industrial efforts on security architecture design for VANETs, many academic researches in have been conducted to address these security and privacy issues. However, many research challenges and open problems remain, in which security is one of the most significant challenges.…”

Section: Introductionmentioning

confidence: 99%

Privacy‐preserving authentication protocols with efficient verification in VANETs

Zhang

2013

Int J Communication

View full text Add to dashboard Cite

SUMMARYAs an important component of intelligent transportation systems, vehicular ad hoc networks can provide safer and more comfortable driving circumstance for the drivers. However, communication security and privacy issues present practical concerns to the deployment of vehicular ad hoc networks. Although recent related studies have already addressed most of these issues, most of them have only considered a posteriori countermeasures or a priori countermeasures to prevent the attacks of an adversary. To the best of our knowledge, up to now, only two privacy‐preserving authentication schemes can provide a posteriori countermeasures and a priori countermeasures. But, the computational cost of verifying a signature is relatively high or security proof of the scheme is loose in the two schemes. In this paper, we propose two novel privacy‐preserving authentication schemes. The first one cannot only provide a posteriori and a priori countermeasures, but also has low computational cost in the verification phase and tight security proof. The second one can achieve batch verification on multiple messages. Comparison with Wu et al.'s scheme and Chen et al's scheme, our scheme shows higher efficiency in terms of the computational cost of verifying signature.Copyright © 2013 John Wiley & Sons, Ltd.

show abstract

A new security model to prevent denial‐of‐service attacks and violation of availability in wireless networks

Cited by 19 publications

References 13 publications

SEDP‐based detection of low‐rate DoS attacks

SEDP‐based detection of low‐rate DoS attacks

An Approach to Mitigate Denial of Service Attacks in Ieee 802.11 Networks

Privacy‐preserving authentication protocols with efficient verification in VANETs

Contact Info

Product

Resources

About