Adaptive intrusion detection & prevention of denial of service attacks in MANETs

Authors:
Adnan Nadeem;Michael Howarth
Affiliations:
University of Surrey, UK;University of Surrey, UK
Venue:
Proceedings of the 2009 International Conference on Wireless Communications and Mobile Computing: Connecting the World Wirelessly
Year:
2009

Citing 6
Cited 2

Ariadne: a secure on-demand routing protocol for ad hoc networks

Proceedings of the 8th annual international conference on Mobile computing and networking
A Secure Routing Protocol for Ad Hoc Networks

ICNP '02 Proceedings of the 10th IEEE International Conference on Network Protocols
Rushing attacks and defense in wireless ad hoc network routing protocols

WiSe '03 Proceedings of the 2nd ACM workshop on Wireless security
Resisting Flooding Attacks in Ad Hoc Networks

ITCC '05 Proceedings of the International Conference on Information Technology: Coding and Computing (ITCC'05) - Volume II - Volume 02
A reconfigurable architecture for network intrusion detection using principal component analysis

Proceedings of the 2006 ACM/SIGDA 14th international symposium on Field programmable gate arrays
Probabilistic techniques for intrusion detection based on computer audit data

IEEE Transactions on Systems, Man, and Cybernetics, Part A: Systems and Humans

An evaluation of anomaly-based intrusion detection engines for mobile ad hoc networks

TrustBus'11 Proceedings of the 8th international conference on Trust, privacy and security in digital business
Model-Based Evaluation of Distributed Intrusion Detection Protocols for Mobile Group Communication Systems

Wireless Personal Communications: An International Journal

Quantified Score

Hi-index	0.00

Visualization

Abstract

Mobile ad-hoc networks (MANETs) are well known to be vulnerable to various attacks, due to features such as lack of centralized control, dynamic topology, limited physical security and energy constrained operations. In this paper we focus on preventing denial-of-service (DoS) attacks. As an example, we consider intruders that can cause DoS by exploiting the route discovery procedure of reactive routing protocols. We show the unsuitability of tools such as control chart, used in statistical process control (SPC), to detect DoS and propose an anomaly-based intrusion detection system that uses a combination of chi-square test & control chart to first detect intrusion and then identify an intruder. When the intruder is isolated from the network we show reduced overhead and increased throughput. Simulation results show that our algorithm performs well at an affordable processing overhead over the range of scenarios tested.