Abstract
Denial of Service (DoS) attacks are a major network security threat which affects both wired and wireless networks. The effect of DoS attacks is even more damaging in Delay Tolerant Networks (DTNs) due to their unique features and network characteristics. DTN is vulnerable to resource exhaustion and flooding DoS attacks. Several DoS mitigating schemes for wired and wireless networks have been investigated and most of them have been found to be highly interactive requiring several protocol rounds, resource-consuming, complex, assume persistent connectivity and hence not suitable for DTN. To mitigate the impact of resource exhaustion and flooding attacks in DTN, we propose a security scheme which integrates ingress filtering, rate limiting and light-weight authentication security mechanisms to monitor, detect and filter attack traffic. We propose three variants of light-weight bundle authenticators called DTNCookies. To make the proposed DTNCookies random and hard to forge, we exploit the assumption that DTN nodes are loosely time-synchronized to generate different nonce values in different timeslots for the computation and verification of our proposed DTNCookies. The results demonstrate the efficiency and effectiveness of the proposed scheme to detect and drop attack traffic. The simulation results also show good performance for the proposed scheme in terms of energy and bandwidth efficiency, high delivery ratio and low latency.
Highlights
In today’s world there are a variety of network deployments some in very remote regions of the world with very extreme conditions which make communications difficult or near impossible
This result shows that rate-limiting as a flood mitigation technique performs poorly during high bandwidth Denial of Service (DoS) attacks which involve very high bundle rates
DoS attacks are a threat to network availability in Delay Tolerant Networks (DTNs)
Summary
In today’s world there are a variety of network deployments some in very remote regions of the world with very extreme conditions which make communications difficult or near impossible These networks are referred to as “Challenged” networks because they do not conform to the existing Internet protocol semantics. DTN is characterized by limited bandwidth, long queuing delays, low data rates, delivery latency, intermittent connectivity due to frequent disruptions, and scarcity of resources such as battery power, CPU processing cycles, bandwidth and memory. It uses the carry-store-and-forward message switching technique and the inherent mobility of nodes to overcome these constraints and deliver bundles to a destination. DTN introduces a new protocol layer, the Bundle Layer, which sits on top of the transport layer
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
