A specification-based intrusion detection system for AODV

Tseng, C.-Y.; Balasubramanyam, Poornima; Ko, Calvin; Limprasittiporn, Rattapon; Rowe, Jeff; Levitt, Karl N.

doi:10.1145/986858.986876

Cited by 191 publications

(134 citation statements)

References 16 publications

(13 reference statements)

Supporting

Mentioning

133

Contrasting

Unclassified

Order By: Relevance

“…One of the most commonly proposed intrusion detection techniques in MANETs is specification-based intrusion detection, where intrusions are detected as runtime violations of the specifications of routing protocols. This technique has been applied to a variety of routing protocols such as AODV and OLSR [27] [26]. There are also a few signature-based IDSs developed for MANETs.…”

Section: Related Workmentioning

confidence: 99%

Power-Aware Intrusion Detection in Mobile Ad Hoc Networks

2010

View full text Add to dashboard Cite

Abstract. Mobile ad hoc networks (MANETs) are a highly promising new form of networking. However they are more vulnerable to attacks than wired networks. In addition, conventional intrusion detection systems (IDS) are ineffective and inefficient for highly dynamic and resourceconstrained environments. Achieving an effective operational MANET requires tradeoffs to be made between functional and non-functional criteria. In this paper we show how Genetic Programming (GP) together with a Multi-Objective Evolutionary Algorithm (MOEA) can be used to synthesise intrusion detection programs that make optimal tradeoffs between security criteria and the power they consume.

show abstract

Section: Related Workmentioning

confidence: 99%

Power-Aware Intrusion Detection in Mobile Ad Hoc Networks

2010

View full text Add to dashboard Cite

show abstract

“…Then the actual behavior is compared to the normal specification [49]. It uses distributed network monitor to trace the request-reply flow in the routing protocol.…”

Section: Review Of Manet Intrusion Detection Security Approachesmentioning

confidence: 99%

“…Most of the methods in our review, except the model proposed in [49], utilize anomaly detection. The anomaly detection is more suitable than misuse detection in Mobile Ad Hoc Networks.…”

Section: Review Of Manet Intrusion Detection Security Approachesmentioning

confidence: 99%

Classification and Review of Security Schemes in Mobile Computing

Kumar¹

2010

WSN

View full text Add to dashboard Cite

In this paper, we present the classification and review of security schemes in mobile computing system. We classify these schemes based on types the infrastructure used in the mobile computing system-Mobile Ad Hoc Networks (MANET) and Mobile Agent model. Mobile Ad Hoc Networks are pervasive, ubiquitous and without any centralized authority. These unique characteristics, combined with ever-increasing security threats, demand solutions in securing ad hoc networks prior to their deployment in commercial and military applications. This paper reviews the prevailing mobile ad hoc network security threats, the existing solution schemes, their limitations and open research issues. We also explain the Intrusion detection and response technique as an alternate method to protect the MANET based mobile computing systems and their approaches. A literature review of important existing Intrusion Detection approaches and Intrusion Response Approaches for MANET is also presented. This paper also presents the limitations of existing Intrusion Detection and Response Approaches for MANET and open research issues in providing MANET security. With respect to Mobile Agent based mobile computing system, we have presented the classification of various types of security attacks in Mobile Agent based model and presented the security solutions for those type of attacks proposed by the various schemes and the open research issues in providing security for Mobile Agent based mobile computing system. Such classification enhances the understanding of the proposed security schemes in the mobile computing system, assists in the development and enhancement of schemes in the future and helps in choosing an appropriate scheme while implementing a mobile computing system.

show abstract

“…When an IDS agent detects a local intrusion, it initiates a global response: all IDS agents will cooperatively participate in global intrusion detection actions to isolate the corrupted node. In [12] the system uses Network Monitors distributed on a subset of selected nodes into the network, to detect attacks against AODV routing. In [13] the system uses an IDS based on neighbor node's snooping of packets transmissions: a node hearing two consecutive transmissions, along the path from source to destination, checks that the packet and its route information is not modified in flight by malicious nodes.…”

Section: Intrusion Detection Systemsmentioning

confidence: 99%

A Wireless Intrusion Detection System for Secure Clustering and Routing in Ad Hoc Networks

Bononi

Tacconi

2006

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Intrusion detection and secure routing schemes have been proposed for increasing the security and reliability in critical scenarios like mobile ad hoc networks. In this paper we present an integrated secure routing system based on Intrusion Detection Systems (IDS) and SUCV (Statistically Unique and Cryptographically Verifiable) identifiers. The proposed IDS has been used for the support of secure AODV routing, named IDS-based Secure AODV (IS-AODV), in a wireless ad hoc network scenario. Our IDS solution is based on the detection of behavior anomalies on behalf of neighbor hosts, with passive reactions, aiming to create a cluster whose route paths will include only safe nodes, eventually. We implemented a simulation model to test the effects and overheads of the proposed IDS scheme when defending the AODV routing functions. Results show that the proposed IDS is effective in isolating byzantine hosts, and it assists the AODV secure routing scheme to converge in finding end-to-end safe routes.

show abstract

A specification-based intrusion detection system for AODV

Cited by 191 publications

References 16 publications

Power-Aware Intrusion Detection in Mobile Ad Hoc Networks

Power-Aware Intrusion Detection in Mobile Ad Hoc Networks

Classification and Review of Security Schemes in Mobile Computing

A Wireless Intrusion Detection System for Secure Clustering and Routing in Ad Hoc Networks

Contact Info

Product

Resources

About