Design and implementation of an intrusion detection system for wireless sensor networks

Martynov, D.; Roman, Ján; Vaidya, Sundar M.; Fu, Huirong

doi:10.1109/eit.2007.4374444

Cited by 18 publications

(11 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Anomaly-based detection is used, for example, in [13; 14]. The IDS presented in [13] aims to detect Denial-of-Service (DoS) attacks. A baseline level of network traffic is established to which all future network traffic is compared.…”

Section: Misbehavior-based Detectionmentioning

confidence: 99%

Detecting Compromised Nodes in Wireless Sensor Networks: Misbehavior-based Detection versus Attestation-based Detection

Krauß¹

2010

It - Information Technology

View full text Add to dashboard Cite

In this article, we give an overview of two possible approaches to detect compromised nodes in wireless sensor networks (WSNs): misbehavior-based detection and attestation-based detection. The different types of these approaches are presented and compared to each other according to several evaluation criteria, and their applicability in WSNs is discussed.Zusammenfassung Dieser Artikel gibt einen Überblick über zwei Ansätze, kompromittierte Sensorknoten in drahtlosen Sensornetzen zu erkennen: Erkennung basierend auf Fehlverhalten und Erkennung mittels Attestation. Die verschiedenen Ausprägungen dieser Ansätze werden vorgestellt, miteinander anhand verschiedener Evaluationskriterien verglichen und ihre Einsatzmöglichkeiten in drahtlosen Sensornetzen diskutiert.

show abstract

Section: Misbehavior-based Detectionmentioning

confidence: 99%

Detecting Compromised Nodes in Wireless Sensor Networks: Misbehavior-based Detection versus Attestation-based Detection

Krauß¹

2010

It - Information Technology

View full text Add to dashboard Cite

show abstract

“…A centralized IDS is purposed by [2] to detect the DoS, which use the anomaly detection pattern for detecting potential DoS attacks. It has designed and implemented an agent-based ID on a limited set of wireless sensor nodes as a preliminary implementation.…”

Section: Centralized Approachmentioning

confidence: 99%

Wireless Sensor Network based: Design Principles & measuring performance of IDS

Kaur¹,

Singh²

2010

IJCA

View full text Add to dashboard Cite

Wireless sensor networks have many potential applications for both civil and military tasks. However, sensor networks are susceptible to many types of attacks because, deployed in open and unprotected environment. For these cases, it is necessary to use some mechanism of intrusion detection. Besides preventing the intruder from causing damages to the network, the intrusion detection system (IDS) can acquire information related to the attack techniques, helping in the development of prevention systems. So it is necessary to use effective mechanisms to protect sensor networks against many types of attacks. Intrusion detection system is one of the major and efficient defensive method against attacks on wireless sensor network. Because of different characteristics of sensor networks, security solutions have to be designed with limited usage of computation and resources. In this paper different Intrusion detection systems are analyzed basis on design and performance in real time wireless sensor network environment.

show abstract

“…Some of these mechanisms are also used in WSNs, especially Watchdog has been often proposed to use in WSNs. IDS in WSNs have been investigated in [57,199,165,175,2,85,11,171]. Lee et al propose an alternate path routing scheme that is also able to detect and exclude sensor nodes performing a selective forwarding attack [145].…”

Section: Related Workmentioning

confidence: 99%

On handling insider attacks in wireless sensor networks

Krauí

Schneider

Eckert

2008

Information Security Technical Report

View full text Add to dashboard Cite

Ehrenwörtliche Erklärung 2Hiermit erkläre ich, dass ich die vorliegende Arbeit, mit Ausnahme der in ihr ausdrücklich genannten Hilfen, selbstständig verfasst habe.1 gemäß §20 Abs. 3 der Promotionsordnung der TU Darmstadt 2 gemäß §9 Abs. 1 der Promotionsordnung der TU Darmstadt AbstractWireless sensor networks are a relatively new technology for information gathering and processing. A sensor network usually consists of many, resource constrained sensor nodes. These nodes perform measurements of some physical phenomena, process data, generate reports, and send these reports via multihop communication to a central information processing unit called sink. Depending on the scenario, information gathering and processing is collaboratively performed by multiple sensor nodes, e.g., to determine the average temperature in a certain area.Sensor networks can be used in a plethora of application scenarios. Emerging from military research, e.g., sensor networks for target tracking in a battlefield, sensor networks are nowadays used more and more in civil applications such as critical infrastructure monitoring.For ensuring the functionality of a sensor network, especially in malicious environments, security mechanisms are essential for all sensor networks. However, sensor networks differ from classical (wireless) networks and this consequently makes it harder to secure them. Reasons for this are resource constraints of the sensor nodes, the wireless multihop communication, and the possibility of node compromise. Since sensor nodes are often deployed in unattended or even hostile environments and are usually not equipped with tamper-resistant hardware, it is relatively easy to compromise a sensor node. By compromising a sensor node, an adversary gets access to all data stored on the node, such as cryptographic keys. Thus, deployed security mechanisms such as node-based authentication become ineffective and an adversary is able to perform attacks as a "legitimate" member of the network. Such attacks are denoted as insider attacks and pose a serious threat for wireless sensor networks.In this thesis, we develop concepts and mechanisms to cope with insider attacks in wireless sensor networks. The contribution of this thesis is twofold. First, we propose a new general classification to classify the different approaches to protect against insider attacks. Second, we propose several security protocols to protect against insider attacks.In our classification, approaches to protect against insider attacks are first distinguished by the implemented security strategy. The respective strategies are further subclassified by the applied mechanisms. Related work is integrated in the classification to systematically identify open problems and specific properties in the respective areas. The results may be a basis for future protocol design.The protocols, proposed in the second part of this thesis encompass different areas. First, we propose a protocol to protect against a serious Denial-of-Service attack where an adversary injects or replay...

show abstract

Design and implementation of an intrusion detection system for wireless sensor networks

Cited by 18 publications

References 10 publications

Detecting Compromised Nodes in Wireless Sensor Networks: Misbehavior-based Detection versus Attestation-based Detection

Detecting Compromised Nodes in Wireless Sensor Networks: Misbehavior-based Detection versus Attestation-based Detection

Wireless Sensor Network based: Design Principles & measuring performance of IDS

On handling insider attacks in wireless sensor networks

Contact Info

Product

Resources

About