ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Denial of service resilience in ad hoc networks
Full text PdfPdf (242 KB)
Source International Conference on Mobile Computing and Networking archive
Proceedings of the 10th annual international conference on Mobile computing and networking table of contents
Philadelphia, PA, USA
SESSION: Ad hoc networks table of contents
Pages: 202 - 215  
Year of Publication: 2004
ISBN:1-58113-868-7
Authors
Imad Aad  Swiss Federal Institute of Technology (EPFL), Lausanne, Switzerland
Jean-Pierre Hubaux  Swiss Federal Institute of Technology (EPFL), Lausanne, Switzerland
Edward W. Knightly  Rice University, Houston, TX
Sponsors
SIGMOBILE: ACM Special Interest Group on Mobility of Systems, Users, Data and Computing
ACM: Association for Computing Machinery
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 30,   Downloads (12 Months): 147,   Citation Count: 20
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1023720.1023741
What is a DOI?

ABSTRACT

Significant progress has been made towards making ad hoc networks secure and DoS resilient. However, little attention has been focused on quantifying DoS resilience: Do ad hoc networks have sufficiently redundant paths and counter-DoS mechanisms to make DoS attacks largely ineffective? Or are there attack and system factors that can lead to devastating effects? In this paper, we design and study DoS attacks in order to assess the damage that difficult-to-detect attackers can cause. The first attack we study, called the JellyFish attack, is targeted against closed-loop flows such as TCP; although protocol compliant, it has devastating effects. The second is the Black Hole attack, which has effects similar to the JellyFish, but on open-loop flows. We quantify via simulations and analytical modeling the scalability of DoS attacks as a function of key performance parameters such as mobility, system size, node density, and counter-DoS strategy. One perhaps surprising result is that such DoS attacks can increase the capacity of ad hoc networks, as they starve multi-hop flows and only allow one-hop communication, a capacity-maximizing, yet clearly undesirable situation.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Farooq M. Anjum, TCP Algorithms and Multiple Paths: Considerations for the Future of the Internet, Information Systems Frontiers, v.6 n.1, p.91-104, March 2004  [doi>10.1023/B:ISFI.0000015877.38130.19]
2
Baruch Awerbuch , David Holmer , Cristina Nita-Rotaru , Herbert Rubens, An on-demand secure routing protocol resilient to byzantine failures, Proceedings of the 3rd ACM workshop on Wireless security, p.21-30, September 28-28, 2002, Atlanta, GA, USA  [doi>10.1145/570681.570684]
3
Ethan Blanton , Mark Allman, On making TCP more robust to packet reordering, ACM SIGCOMM Computer Communication Review, v.32 n.1, p.20-30, January 2002  [doi>10.1145/510726.510728]
 
4
Stephan Bohacek , João P. Hespanha , Junsoo Lee , Chansook Lim , Katia Obraczka, TCP-PR: TCP for Persistent Packet Reordering, Proceedings of the 23rd International Conference on Distributed Computing Systems, p.222, May 19-22, 2003
5
Lawrence S. Brakmo , Sean W. O'Malley , Larry L. Peterson, TCP Vegas: new techniques for congestion detection and avoidance, Proceedings of the conference on Communications architectures, protocols and applications, p.24-35, August 31-September 02, 1994, London, United Kingdom
6
Sonja Buchegger , Jean-Yves Le Boudec, Performance analysis of the CONFIDANT protocol, Proceedings of the 3rd ACM international symposium on Mobile ad hoc networking & computing, June 09-11, 2002, Lausanne, Switzerland  [doi>10.1145/513800.513828]
 
7
Levente Buttyán , Jean-Pierre Hubaux, Enforcing service availability in mobile ad-hoc WANs, Proceedings of the 1st ACM international symposium on Mobile ad hoc networking & computing, November 20, 2000, Boston, Massachusetts
 
8
Srdjan Capkun , Jean-Pierre Hubaux , Levente Buttyan, Mobility Helps Peer-to-Peer Security, IEEE Transactions on Mobile Computing, v.5 n.1, p.43-51, January 2006  [doi>10.1109/TMC.2006.12]
9
Saverio Mascolo , Claudio Casetti , Mario Gerla , M. Y. Sanadidi , Ren Wang, TCP westwood: Bandwidth estimation for enhanced transport over wireless links, Proceedings of the 7th annual international conference on Mobile computing and networking, p.287-297, July 2001, Rome, Italy  [doi>10.1145/381677.381704]
10
Mun Choon Chan , Ramachandran Ramjee, TCP/IP performance over 3G wireless links with rate and delay variation, Proceedings of the 8th annual international conference on Mobile computing and networking, September 23-28, 2002, Atlanta, Georgia, USA  [doi>10.1145/570645.570655]
 
11
Kimaya Sanzgiri , Bridget Dahill , Brian Neil Levine , Clay Shields , Elizabeth M. Belding-Royer, A Secure Routing Protocol for Ad Hoc Networks, Proceedings of the 10th IEEE International Conference on Network Protocols, p.78-89, November 12-15, 2002
12
Kevin Fall , Sally Floyd, Simulation-based comparisons of Tahoe, Reno and SACK TCP, ACM SIGCOMM Computer Communication Review, v.26 n.3, p.5-21, July 1996  [doi>10.1145/235160.235162]
13
Sally Floyd , Mark Handley , Jitendra Padhye , Jörg Widmer, Equation-based congestion control for unicast applications, Proceedings of the conference on Applications, Technologies, Architectures, and Protocols for Computer Communication, p.43-56, August 28-September 01, 2000, Stockholm, Sweden
 
14
M. Gerla, S. Lee, and G. Pau. TCP Westwood simulation studies in multiple-path cases. In Proceedings of SPECTS 2002, San Deigo, CA, July 2002.
 
15
V. Gupta, S.V. Krishnamurthy, and M. Faloutsos. Denial of Service Attacks at the MAC Layer in Wireless Ad Hoc Networks. In Proceedings of MILCOM, 2002.
 
16
Yih-Chun Hu, David~B. Johnson, and Adrian Perrig. SEAD: Secure Efficient Distance Vector Routing for Mobile Wireless Ad Hoc Networks. Ad Hoc Networks, 1(1):175--192, 2003.
17
Yih-Chun Hu , Adrian Perrig , David B. Johnson, Ariadne:: a secure on-demand routing protocol for ad hoc networks, Proceedings of the 8th annual international conference on Mobile computing and networking, September 23-28, 2002, Atlanta, Georgia, USA  [doi>10.1145/570645.570648]
 
18
Yih-Chun Hu, Adrian Perrig, and David B. Johnson. Efficient security mechanisms for routing protocols. In Network and Distributed System Security Symposium, NDSS '03, February 2003.
 
19
Yih-Chun Hu, Adrian Perrig, and David B. Johnson. Packet leashes: A defense against wormhole attacks in wireless networks. In Proceedings of IEEE Infocom 2003, April 2003.
20
Yih-Chun Hu , Adrian Perrig , David B. Johnson, Rushing attacks and defense in wireless ad hoc network routing protocols, Proceedings of the 2003 ACM workshop on Wireless security, September 19-19, 2003, San Diego, CA, USA  [doi>10.1145/941311.941317]
 
21
R. Jain. The Art of Computer System Performance Analysis. John Wiley and Sons, Inc., 1991.
 
22
M. Jakobsson, S. Wetzel, and B. Yener. Stealth attacks on ad hoc wireless networks. In Proceedings of VTC, 2003.
 
23
David B. Johnson and D. Maltz. The dynamic source routing protocol for mobile ad hoc networks (DSR), April 2003. http://www.ietf.org/internet-drafts/draft-ietf-manet-dsr-09.txt.
 
24
V. Kawadia and P. R. Kumar. Power control and clustering in ad hoc networks. In Proceedings of IEEE Infocom, 2003.
25
Aleksandar Kuzmanovic , Edward W. Knightly, Low-rate TCP-targeted denial of service attacks: the shrew vs. the mice and elephants, Proceedings of the 2003 conference on Applications, technologies, architectures, and protocols for computer communications, August 25-29, 2003, Karlsruhe, Germany  [doi>10.1145/863955.863966]
 
26
Haiyun Luo , Jiejun Kong , Petros Zerfos , Songwu Lu , Lixia Zhang, URSA: ubiquitous and robust access control for mobile ad hoc networks, IEEE/ACM Transactions on Networking (TON), v.12 n.6, p.1049-1063, December 2004  [doi>10.1109/TNET.2004.838598]
27
Sergio Marti , T. J. Giuli , Kevin Lai , Mary Baker, Mitigating routing misbehavior in mobile ad hoc networks, Proceedings of the 6th annual international conference on Mobile computing and networking, p.255-265, August 06-11, 2000, Boston, Massachusetts, United States  [doi>10.1145/345910.345955]
 
28
Pietro Michiardi , Refik Molva, Core: a collaborative reputation mechanism to enforce node cooperation in mobile ad hoc networks, Proceedings of the IFIP TC6/TC11 Sixth Joint Working Conference on Communications and Multimedia Security: Advanced Communications and Multimedia Security, p.107-121, September 26-27, 2002
 
29
P. Papadimitratos and Z. Haas. Secure routing for mobile ad hoc networks. In Proceedings of CNDS, 2002.
30
Panagiotis Papadimitratos , Zygmunt J. Haas, Secure data transmission in mobile ad hoc networks, Proceedings of the 2003 ACM workshop on Wireless security, September 19-19, 2003, San Diego, CA, USA  [doi>10.1145/941311.941318]
 
31
V. Paxson and M. Allman. Computing TCP's retransmission timer, November 2000. Internet RFC 2988.
32
Narayanan Sadagopan , Fan Bai , Bhaskar Krishnamachari , Ahmed Helmy, PATHS: analysis of PATH duration statistics and their impact on reactive MANET routing protocols, Proceedings of the 4th ACM international symposium on Mobile ad hoc networking & computing, June 01-03, 2003, Annapolis, Maryland, USA  [doi>10.1145/778415.778444]
33
Feng Wang , Yongguang Zhang, Improving TCP performance over mobile ad-hoc networks with out-of-order detection and response, Proceedings of the 3rd ACM international symposium on Mobile ad hoc networking & computing, June 09-11, 2002, Lausanne, Switzerland  [doi>10.1145/513800.513827]
34
Manel Guerrero Zapata , N. Asokan, Securing ad hoc routing protocols, Proceedings of the 3rd ACM workshop on Wireless security, p.1-10, September 28-28, 2002, Atlanta, GA, USA  [doi>10.1145/570681.570682]
 
35
Ming Zhang , Brad Karp , Sally Floyd , Larry Peterson, RR-TCP: A Reordering-Robust TCP with DSACK, Proceedings of the 11th IEEE International Conference on Network Protocols, p.95, November 04-07, 2003
 
36
Sheng Zhong, Jiang Chen, and Yang~Richard Yang. Sprite: A simple, cheat-proof, credit-based system for mobile ad-hoc networks. In Proceedings of IEEE Infocom, 2003.
 
37
Lidong Zhou and Zygmunt~J. Haas. Securing ad hoc networks. IEEE Network, 13(6), 1999.

CITED BY  20
Jiejun Kong , Xiaoyang Hong , Yunjung Yi , Joon-Sang Park , Jun Liu , Mario Gerla, A secure ad-hoc routing approach using localized self-healing communities, Proceedings of the 6th ACM international symposium on Mobile ad hoc networking and computing, May 25-27, 2005, Urbana-Champaign, IL, USA
Lei Guang , Chadi Assi, On the resiliency of mobile ad hoc networks to MAC layer misbehavior, Proceedings of the 2nd ACM international workshop on Performance evaluation of wireless ad hoc, sensor, and ubiquitous networks, October 10-13, 2005, Montreal, Quebec, Canada
Hoang Lan Nguyen , Uyen Trang Nguyen, A study of different types of attacks on multicast in mobile ad hoc networks, Ad Hoc Networks, v.6 n.1, p.32-46, January, 2008
Zainab R. Zaidi , Bjorn Landfeldt, Monitoring assisted robust routing in wireless mesh networks, Mobile Networks and Applications, v.13 n.1, p.54-66, April 2008
Jiejun Kong , Xiaoyan Hong , Mario Gerla, Modeling Ad-hoc rushing attack in a negligibility-based security framework, Proceedings of the 5th ACM workshop on Wireless security, September 29-29, 2006, Los Angeles, California
Stephan Olariu , Mohamed Eltoweissy , Mohamed Younis, ANSWER: AutoNomouS netWorked sEnsoR system, Journal of Parallel and Distributed Computing, v.67 n.1, p.111-124, January, 2007
Stephan Olariu , Mohamed Eltoweissy , Mohamed Younis, ANSWER: AutoNomouS netWorked sEnsoR system, Journal of Parallel and Distributed Computing, v.67 n.1, p.111-124, January, 2007
Jarmo V. E. Mölsä, Cross-layer designs for mitigating range attacks in ad hoc networks, Proceedings of the 24th IASTED international conference on Parallel and distributed computing and networks, p.64-69, February 14-16, 2006, Innsbruck, Austria
M. Hejmo , B. L. Mark , C. Zouridaki , R. K. Thomas, On the fairness of flow aggregation for denial-of-service resistant QoS in MANETs, Proceedings of the 3rd international conference on Quality of service in heterogeneous wired/wireless networks, August 07-09, 2006, Waterloo, Ontario, Canada
Jochen Mundinger , Jean-Yves Le Boudec, Analysis of a reputation system for Mobile Ad-Hoc Networks with liars, Performance Evaluation, v.65 n.3-4, p.212-226, March, 2008
Qijun Gu , Peng Liu , Chao-Hsien Chu, Analysis of area-congestion-based DDoS attacks in ad hoc networks, Ad Hoc Networks, v.5 n.5, p.613-625, July, 2007
Lei Guang , Chadi Assi , Yinghua Ye, DREAM: A system for detection and reaction against MAC layer misbehavior in ad hoc networks, Computer Communications, v.30 n.8, p.1841-1853, June, 2007
Asad Amir Pirzada , Chris McDonald, Collaborative Dynamic Source Routing using transitional trust filters, International Journal of Information and Computer Security, v.1 n.3, p.278-297, June 2007
Qijun Gu , Chao-Hsien Chu , Peng Liu, Modelling and analysis of bandwidth competition in 802.11 wireless networks, International Journal of Mobile Network Design and Innovation, v.2 n.3/4, p.190-201, February 2007
Qijun Gu , Peng Liu , Chao-Hsien Chu , Sencun Zhu, Defence against packet injection in ad hoc networks, International Journal of Security and Networks, v.2 n.1/2, p.154-169, March 2007
Hung-Yuan Hsu , Sencun Zhu , Ali R. Hurson, LIP: a lightweight interlayer protocol for preventing packet injection attacks in mobile ad hoc network, International Journal of Security and Networks, v.2 n.3/4, p.202-215, April 2007
Imad Aad , Jean-Pierre Hubaux , Edward W. Knightly, Impact of denial of service attacks on ad hoc networks, IEEE/ACM Transactions on Networking (TON), v.16 n.4, p.791-802, August 2008
Min Shao , Sencun Zhu , Guohong Cao , Tom La Porta , Prasant Mohapatra, A cross-layer dropping attack in video streaming over ad hoc networks, Proceedings of the 4th international conference on Security and privacy in communication netowrks, September 22-25, 2008, Istanbul, Turkey
Mario Strasser , Christina Pöpper , Srdjan Čapkun, Efficient uncoordinated FHSS anti-jamming communication, Proceedings of the tenth ACM international symposium on Mobile ad hoc networking and computing, May 18-21, 2009, New Orleans, LA, USA
Patrick P. C. Lee , Tian Bu , Thomas Woo, On the detection of signaling DoS attacks on 3G/WiMax wireless networks, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.53 n.15, p.2601-2616, October, 2009

INDEX TERMS

Primary Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.0 General
          Subjects: Security and protection (e.g., firewalls)

Additional Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.2 Network Protocols
          Subjects: Routing protocols
      C.2.6 Internetworking
          Subjects: Standards (e.g., TCP/IP)


General Terms:
Performance, Security


Keywords:
DoS attacks, TCP, UDP, ad hoc networks

Collaborative Colleagues:
Imad Aad: colleagues
Jean-Pierre Hubaux: colleagues
Edward W. Knightly: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player