Sinkhole intrusion in mobile ad hoc networks: The problem and some detection indicators

Tseng, H. Chris; Culpepper, B.J.

doi:10.1016/j.cose.2005.07.001

Cited by 15 publications

(7 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [15] authors discussed how sinkhole attack can be launched in DSR and developed two rules called Sinkhole Intrusion Indicators (SIIS) for detecting sinkhole attack on DSR protocol. They did not discuss the effect of the attack on DSR performance; rather, they focused more on detection of the attack.…”

Section: Related Workmentioning

confidence: 99%

Malicious AODV: Implementation and Analysis of Routing Attacks in MANETs

Ehsan

Khan

2012

2012 IEEE 11th International Conference on Trust, Security and Privacy in Computing and Communications

View full text Add to dashboard Cite

From the security perspective Mobile Ad hoc Networks (MANETs) are amongst the most challenging research areas and one of the key reasons for this is the ambiguous nature of insider attacks in these networks. In recent years, many attempts have been made to study the intrinsic attributes of these insider attacks but the focus has generally been on the analysis of one or very few particular attacks, or only the survey of various attacks without any performance analysis. Therefore, a major feature that research has lately lacked is a detailed and comprehensive study of the effects of various insider attacks on the overall performance of MANETs. In this paper we investigate, in detail, some of the most severe attacks against MANETs namely the blackhole attack, sinkhole attack, selfish node behavior, RREQ flood, hello flood, and selective forwarding attack. A detailed NS-2 implementation of launching these attacks successfully using Ad hoc On-Demand Distance Vector (AODV) routing protocol has been presented and a comprehensive and comparative analysis of these attacks is performed. We use packet efficiency, routing overhead, and throughput as our performance metrics. Our simulationbased study shows that flooding attacks like RREQ flood and hello flood drastically increase the routing overhead of the protocol. Route modification attacks such as sinkhole and blackhole are deadly and severely affect the packet efficiency and bring down the throughput to unacceptable ranges.

show abstract

Section: Related Workmentioning

confidence: 99%

Malicious AODV: Implementation and Analysis of Routing Attacks in MANETs

Ehsan

Khan

2012

2012 IEEE 11th International Conference on Trust, Security and Privacy in Computing and Communications

View full text Add to dashboard Cite

show abstract

“…Two indicators sequence number discontinuity (SEQ_NUM_DISCONTINUITY) and route add ratio (ROUTE_ADD_RATIO) are used for the detection of sinkhole attacks in DSR routing protocol in . The sequence number discontinuity is measured by average difference between the current and last sequence number from each other nodes.…”

Section: Intrusion Detection Techniquesmentioning

confidence: 99%

“…But, they cannot respond to MAC, physical, or transport layer anomalies. It has been observed that some schemes are using threshold mechanism in order to detect routing layer anomalies. However, it is very difficult to determine the accurate threshold values in order to minimize the false positive and false negative rates, because threshold selection is application dependent and difficult to maintain for the dynamically changed environment.…”

Section: Intrusion Detection Techniquesmentioning

confidence: 99%

Intrusion detection in mobile ad hoc networks: techniques, systems, and future challenges

Kumar

Dutta

2016

Security Comm Networks

View full text Add to dashboard Cite

In recent years, Mobile Ad hoc NETworks (MANETs) have generated great interest among researchers in the development of theoretical and practical concepts, and their implementation under several computing environments. However, MANETs are highly susceptible to various security attacks due to their inherent characteristics. In order to provide adequate security against multi-level attacks, the researchers are of the opinion that detection-based schemes should be incorporated in addition to traditionally used prevention techniques because prevention-based techniques cannot prevent the attacks from compromised internal nodes. Intrusion detection system is an effective defense mechanism that detects and prevents the security attacks at various levels. This paper tries to provide a structured and comprehensive survey of most prominent intrusion detection techniques of recent past and present for MANETs in accordance with technology layout and detection algorithms. These detection techniques are broadly classified into nine categories based on their primary detection engine/(s). Further, an attempt has been made to compare different intrusion detection techniques with their operational strengths and limitations. Finally, the paper concludes with a number of future research directions in the design and implementation of intrusion detection systems for MANETs.

show abstract

“…This approach has two sinkhole detection indicators for Mobile Ad-hoc Networks after analyzing the sinkhole problem in the context of Dynamic Source Routing for wireless mobile ad-hoc networks [3]. The two indicators proposed here are Sequence number discontinuity and Route add ratio.…”

Section: A Siis -Sinkhole Intrusion Indicatorsmentioning

confidence: 99%

Sinkhole detection in mobile ad-hoc networks using mutual understanding among nodes

Jebadurai

Melvin

Jebadurai

2011

2011 3rd International Conference on Electronics Computer Technology

View full text Add to dashboard Cite

Security in mobile ad hoc networks is difficult to achieve, because of the dynamic topologies, limited resources, the absence of a certification authority and the lack of a centralized monitoring point [1]. Most of the attacks in MANETs are routing protocol attacks. The sinkhole effect is caused by attempts to draw all network traffic to malicious nodes that broadcast fake shortest path routing information. The sinkhole nodes should be detected and detached as early as possible. The detection mechanism should also guarantee higher detection rate and lower cross over error rate. In this paper we propose a novel technique to detect the sinkholes which uses the mutual understanding among the mobile nodes.

show abstract

Sinkhole intrusion in mobile ad hoc networks: The problem and some detection indicators

Cited by 15 publications

References 19 publications

Malicious AODV: Implementation and Analysis of Routing Attacks in MANETs

Malicious AODV: Implementation and Analysis of Routing Attacks in MANETs

Intrusion detection in mobile ad hoc networks: techniques, systems, and future challenges

Sinkhole detection in mobile ad-hoc networks using mutual understanding among nodes

Contact Info

Product

Resources

About