A game-theoretic intrusion detection model for mobile ad hoc networks

Authors:
Hadi Otrok;Noman Mohammed;Lingyu Wang;Mourad Debbabi;Prabir Bhattacharya
Affiliations:
Computer Security Laboratory, Concordia Institute for Information Systems Engineering, Concordia University, Montreal (QC), Canada;Computer Security Laboratory, Concordia Institute for Information Systems Engineering, Concordia University, Montreal (QC), Canada;Computer Security Laboratory, Concordia Institute for Information Systems Engineering, Concordia University, Montreal (QC), Canada;Computer Security Laboratory, Concordia Institute for Information Systems Engineering, Concordia University, Montreal (QC), Canada;Computer Security Laboratory, Concordia Institute for Information Systems Engineering, Concordia University, Montreal (QC), Canada
Venue:
Computer Communications
Year:
2008

Citing 16
Cited 5

Combinatorial optimization: algorithms and complexity

Combinatorial optimization: algorithms and complexity
A cluster-based approach for routing in dynamic networks

ACM SIGCOMM Computer Communication Review
Algorithmic mechanism design (extended abstract)

STOC '99 Proceedings of the thirty-first annual ACM symposium on Theory of computing
Mitigating routing misbehavior in mobile ad hoc networks

MobiCom '00 Proceedings of the 6th annual international conference on Mobile computing and networking
Intrusion detection in wireless ad-hoc networks

MobiCom '00 Proceedings of the 6th annual international conference on Mobile computing and networking
Self-organized network-layer security in mobile ad hoc networks

WiSE '02 Proceedings of the 1st ACM workshop on Wireless security
A BGP-based mechanism for lowest-cost routing

Proceedings of the twenty-first annual symposium on Principles of distributed computing
Ad hoc-VCG: a truthful and cost-efficient routing protocol for mobile ad hoc networks with selfish agents

Proceedings of the 9th annual international conference on Mobile computing and networking
Intrusion detection techniques for mobile wireless networks

Wireless Networks
iPass: An Incentive Compatible Auction Scheme to Enable Packet Forwarding Service in MANET

ICDCS '04 Proceedings of the 24th International Conference on Distributed Computing Systems (ICDCS'04)
A cooperative intrusion detection system for ad hoc networks

Proceedings of the 1st ACM workshop on Security of ad hoc and sensor networks
A Survey of Secure Wireless Ad Hoc Routing

IEEE Security and Privacy
Specification faithfulness in networks with rational nodes

Proceedings of the twenty-third annual ACM symposium on Principles of distributed computing
Computational-Mechanism Design: A Call to Arms

IEEE Intelligent Systems
A Bayesian game approach for intrusion detection in wireless ad hoc networks

GameNets '06 Proceeding from the 2006 workshop on Game theory for communications and networks
Intrusion detection in wireless ad hoc networks

IEEE Wireless Communications

A Secure Mechanism Design-Based and Game Theoretical Model for MANETs

Mobile Networks and Applications
Routing security scheme based on reputation evaluation in hierarchical ad hoc networks

Computer Networks: The International Journal of Computer and Telecommunications Networking
Mobility and energy-aware hierarchical intrusion detection system for mobile ad hoc networks

TrustBus'11 Proceedings of the 8th international conference on Trust, privacy and security in digital business
RBC-OLSR: Reputation-based clustering OLSR protocol for wireless ad hoc networks

Computer Communications
Energy-aware and self-adaptive anomaly detection scheme based on network tomography in mobile ad hoc networks

Information Sciences: an International Journal

Quantified Score

Hi-index	0.24

Visualization

Abstract

In this paper, we address the problem of increasing the effectiveness of an intrusion detection system (IDS) for a cluster of nodes in ad hoc networks. To reduce the performance overhead of the IDS, a leader node is usually elected to handle the intrusion detection service on behalf of the whole cluster. However, most current solutions elect a leader randomly without considering the resource level of nodes. Such a solution will cause nodes with less remaining resources to die faster, reducing the overall lifetime of the cluster. It is also vulnerable to selfish nodes who do not provide services to others while at the same time benefiting from such services. Our experiments show that the presence of selfish nodes can significantly reduce the effectiveness of an IDS because less packets are inspected over time. To increase the effectiveness of an IDS in MANET, we propose a unified framework that is able to: (1) Balance the resource consumption among all the nodes and thus increase the overall lifetime of a cluster by electing truthfully and efficiently the most cost-efficient node known as leader-IDS. A mechanism is designed using Vickrey, Clarke, and Groves (VCG) to achieve the desired goal. (2) Catch and punish a misbehaving leader through checkers that monitor the behavior of the leader. A cooperative game-theoretic model is proposed to analyze the interaction among checkers to reduce the false-positive rate. A multi-stage catch mechanism is also introduced to reduce the performance overhead of checkers. (3) Maximize the probability of detection for an elected leader to effectively execute the detection service. This is achieved by formulating a zero-sum non-cooperative game between the leader and intruder. We solve the game by finding the Bayesian Nash Equilibrium where the leader's optimal detection strategy is determined. Finally, empirical results are provided to support our solutions.