| Impact of denial of service attacks on ad hoc networks |
| Full text |
 Pdf
(484 KB)
|
| Source
|
IEEE/ACM Transactions on Networking (TON)
archive
Volume 16 , Issue 4 (August 2008)
table of contents
Pages 791-802
Year of Publication: 2008
ISSN:1063-6692
|
|
Authors
|
|
Imad Aad
|
DoCoMo Communications Laboratories Europe GmbH, Munich, Germany
|
|
Jean-Pierre Hubaux
|
Laboratory for Computer Communications and Applications (LCA), School of Computer and Communication Sciences, Swiss Federal Institute of Technology--Lausanne (EPFL), Lausanne, Switzerland
|
|
Edward W. Knightly
|
Electrical and Computer Engineering Department, Rice University, Houston, TX
|
|
| Publisher |
IEEE Press
Piscataway, NJ, USA
|
| Bibliometrics |
Downloads (6 Weeks): 32, Downloads (12 Months): 279, Citation Count: 0
|
|
|
 ABSTRACT
Significant progress has been made towards making ad hoc networks secure and DoS resilient. However, little attention has been focused on quantifying DoS resilience: Do ad hoc networks have sufficiently redundant paths and counter-DoS mechanisms to make DoS attacks largely ineffective? Or are there attack and system factors that can lead to devastating effects? In this paper, we design and study DoS attacks in order to assess the damage that difficult-to-detect attackers can cause. The first attack we study, called the JellyFish attack, is targeted against closed-loop flows such as TCP; although protocol compliant, it has devastating effects. The second is the Black Hole attack, which has effects similar to the JellyFish, but on open-loop flows. We quantify via simulations and analytical modeling the scalability of DoS attacks as a function of key performance parameters such as mobility, system size, node density, and counter-DoS strategy. One perhaps surprising result is that such DoS attacks can increase the capacity of ad hoc networks, as they starve multi-hop flows and only allow one-hop communication, a capacity-maximizing, yet clearly undesirable situation.
REFERENCES
Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.
 |
1
|
Baruch Awerbuch , David Holmer , Cristina Nita-Rotaru , Herbert Rubens, An on-demand secure routing protocol resilient to byzantine failures, Proceedings of the 1st ACM workshop on Wireless security, p.21-30, September 28-28, 2002, Atlanta, GA, USA
[doi> 10.1145/570681.570684]
|
| |
2
|
|
| |
3
|
Y.-C. Hu, D. B. Johnson, and A. Perrig, "Sead: Secure efficient distance vector routing for mobile wireless ad hoc networks," Ad Hoc Networks, vol. 1, no. 1, pp. 175-192, 2003.
|
| |
4
|
|
| |
5
|
|
| |
6
|
Sergio Marti , T. J. Giuli , Kevin Lai , Mary Baker, Mitigating routing misbehavior in mobile ad hoc networks, Proceedings of the 6th annual international conference on Mobile computing and networking, p.255-265, August 06-11, 2000, Boston, Massachusetts, United States
[doi> 10.1145/345910.345955]
|
| |
7
|
|
| |
8
|
Sally Floyd , Mark Handley , Jitendra Padhye , Jörg Widmer, Equation-based congestion control for unicast applications, Proceedings of the conference on Applications, Technologies, Architectures, and Protocols for Computer Communication, p.43-56, August 28-September 01, 2000, Stockholm, Sweden
|
| |
9
|
|
| |
10
|
|
| |
11
|
|
| |
12
|
|
| |
13
|
Aleksandar Kuzmanovic , Edward W. Knightly, Low-rate TCP-targeted denial of service attacks: the shrew vs. the mice and elephants, Proceedings of the 2003 conference on Applications, technologies, architectures, and protocols for computer communications, August 25-29, 2003, Karlsruhe, Germany
[doi> 10.1145/863955.863966]
|
| |
14
|
Lawrence S. Brakmo , Sean W. O'Malley , Larry L. Peterson, TCP Vegas: new techniques for congestion detection and avoidance, Proceedings of the conference on Communications architectures, protocols and applications, p.24-35, August 31-September 02, 1994, London, United Kingdom
|
| |
15
|
Saverio Mascolo , Claudio Casetti , Mario Gerla , M. Y. Sanadidi , Ren Wang, TCP westwood: Bandwidth estimation for enhanced transport over wireless links, Proceedings of the 7th annual international conference on Mobile computing and networking, p.287-297, July 2001, Rome, Italy
[doi> 10.1145/381677.381704]
|
| |
16
|
Y.-C. Hu, A. Perrig, and D. B. Johnson, "Packet leashes: A defense against wormhole attacks in wireless networks," in Proc. IEEE INFOCOM , 2003, pp. 1976-1986.
|
| |
17
|
|
| |
18
|
|
| |
19
|
|
| |
20
|
D. Johnson, Y. Hu, and D. Maltz, "The Dynamic Source Routing Protocol (DSR) for mobile ad hoc networks for IPv4," 2007 [Online]. Available: http://www.ietf.org/rfc/rfc4728.txt
|
| |
21
|
|
| |
22
|
|
| |
23
|
M. Gerla, S. Lee, and G. Pau, "TCP Westwood simulation studies in multiple-path cases," in Proc. SPECTS, July 2002.
|
| |
24
|
Narayanan Sadagopan , Fan Bai , Bhaskar Krishnamachari , Ahmed Helmy, PATHS: analysis of PATH duration statistics and their impact on reactive MANET routing protocols, Proceedings of the 4th ACM international symposium on Mobile ad hoc networking & computing, June 01-03, 2003, Annapolis, Maryland, USA
[doi> 10.1145/778415.778444]
|
| |
25
|
|
| |
26
|
|
| |
27
|
P. Papadimitratos and Z. Haas, "Secure routing for mobile ad hoc networks," in Proc. CNDS, 2002.
|
| |
28
|
R. Jain, The Art of Computer System Performance Analysis. New York: Wiley, 1991.
|
| |
29
|
The Network Simulator--ns-2. [Online]. Available: http://www.isi. edu/nsnam/ns/
|
| |
30
|
Simulation source code. [Online]. Available: http://icapeople.epfl.ch/ aad/publ/dos-ton-2007/
|
| |
31
|
Y.-C. Hu, A. Perrig, and D. B. Johnson, "Efficient security mechanisms for routing protocols," in Proc. Netw. Distrib. System Security Symp. NDSS, 2003.
|
|
Adobe Acrobat
QuickTime
Windows Media Player
Real Player
C.2