Peer to peer sybil and eclipse attack detection via fuzzy kademlia

Abstract

P2P networks are particularly vulnerable to Sybil and Eclipse attacks, especially those based on Distributed Hash Tables (DHT). However, detecting Sybil and Eclipse attacks is a challenging task, and existing methods are ineffective due to unequal sample distribution, incomplete definitions of discriminating features, and weak feature perception. This paper proposes a Fuzzy Secure Kademlia (FSK) that detects and mitigates the Sybil and Eclipse attack. At first, a node requests authentication by providing its MAC address, location, Node Angle (NA), and Node Residual Energy (NRE) to an infrastructure server. As long as the packet’s ID, location, NA, and NRE match the packet’s received ID, it can be recognized as normal. The incoming packet, however, is detected as Sybil or Eclipse attack packets if copies are made in locations other than those specified. When the Sybil or Eclipse attack has been detected, locate the multiplied nodes. By using the FSK, the malicious node can be removed, preventing it from causing any harm to the network. The suggested framework is compared with existing methods in terms of detection time, and energy consumption. Experimental results indicate that the suggested FSK technique achieves a better detection time of 29.4%, 25.5%, 22.6%, and 18.1% than CSI, DHT, CMA, and EDA methods.