Securing wireless mesh networks with ticket-based authentication

Abstract

A wireless mesh network (WMN) comprises of mesh access points (MAPs), mesh routers and mesh clients (MCs), where MAPs are almost static and form the back-bone of WMNs. MCs are wireless devices and dynamic in nature, communicating among themselves over possibly multi-hop paths, with or without the help of MAPs. Security has been a primary concern in order to provide protected communication in WMNs due to the open peer-to-peer network topology, shared wireless medium, stringent resource constraints and highly dynamic environment. These challenges clearly make a case for building multi-layer security solution that achieves both broad protection and desirable network performance. In this paper, we propose a cross-layer secure protocol for routing, data exchange and ARP problems (in case of LAN based upon WMNs). Our protocol is a ticket-based ad hoc on demand distance vector (TAODV) protocol, a secure routing protocol that is based on the design of ad hoc on demand distance vector (AODV) protocol. Due to availability of the backbone, we incorporate the authentication server (AS) for the issuance of tickets which are further used for secure routing, transfer of public keys and MAC addresses in one single step. With the transfer of public keys, source and destination can easily generate their shared secret key based upon fixed Diffie-Hellman key exchange protocol for data encryption and decryption. Our protocol is secure against both active and passive attacks.