Intrusion detection in wireless ad-hoc networks
MobiCom '00 Proceedings of the 6th annual international conference on Mobile computing and networking
DEMEM: distributed evidence-driven message exchange intrusion detection model for MANET
RAID'06 Proceedings of the 9th international conference on Recent Advances in Intrusion Detection
Cost-sensitive intrusion responses for mobile ad hoc networks
RAID'07 Proceedings of the 10th international conference on Recent advances in intrusion detection
| Hi-index | 0.00 |
A Mobile Ad Hoc Network (MANET) is a group of mobile wireless nodes that can communicate with each other without pre-established base stations. Their communication relies on cooperative forwarding behavior, and therefore, routing service is critical for MANET. Most routing protocols depend on forwarded routing messages. If a malicious node propagates forged routing information through forwarded routing messages, all other nodes' routing tables will be damaged. We first propose Distributed Routing Evidence Tracing and Authentication intrusion prevention model (DRETA) for MANET routing protocols. DRETA provides low computation authentication service by adopting one-way key chain with delayed key disclosure. DRETA proposes Previous Forwarder (PF), which is a scalable technique for tracing and protecting the routing evidence of forwarded routing messages. Second, we implement DRETA in two representative routing protocols in MANET, Ad-hoc On-demand Distance Vector routing protocol (AODV) and Optimized Link State Routing protocol (OLSR). Experimental results show that DRETA is accurate, scalable, and requires low message overhead, and offers small delays under high mobility conditions.