Routing Attacks Research Articles

Malicious node prevention and mitigation in MANETs using a hybrid security model

ABSTRACTMobile ad-hoc network (MANET) has got tremendous success and attention due to its self-maintenance and self-configuration properties or behavior. Based on wired and wireless networks, the network topology of MANETs changes rapidly by means of routing attacks. Hence, providing security to this infrastructure-less network is a major issue. The routing protocols for ad-hoc networks cope well with the dynamically changing topology but are not designed to accommodate defense against malicious attacker. Malicious nodes have opportunities to modify or discard routing information or advertise fake routes to attract user data to go through themselves. In this article, we discuss a hybrid technique using anonymity, one-way trapdoor protocol, hash functions, and elliptic curve cryptographic to mitigate attacks in the MANET. The simulation is carried on NS-2 and the simulation results are dissected on different system execution measurements, for example, packet send and received, packet dropped, average network throughput, end-to-end delay, and packet delivery ratio.

Multi Model Mitigation Approach for Network Threats on Cluster Based Linear Chain Routing Protocol in Wireless Sensor Networks at QoS Development

Consider the wireless sensor network (WSN) deployed in the motivation to perform data collection through the sensor nodes of the network deployed in different geographic region with same set of configuration where each can directly communicate to the base station. There are many routing protocols exists but the cluster based linear chain routing is focused towards reducing energy depletion by performing cooperative transmission to reach the destination. Because of the nodes has no mobility and the cluster formation is performed once, the linear chain routing protocol is more prone for variety of routing attacks which spoils the motivation of linear chain routing and reduce the lifetime of the network in rapid manner. We propose a multi model mitigation technique which handles variety of network threats happen in routing of packets increases the performance of WSN. This method performs flow estimation technique to identify the denial of service attacks and botnet based attacks. An light weight location verification protocol has been depicted to handle the sink hole attacks. The problem of packet dropping attack has been handled by one step verification process. The multi model mitigation techniques have produced efficient result in Quality of Service development and improve the performance of the linear chain routing.

Wireless ad hoc network: detection of malicious node by using neighbour-based authentication approach

Ad hoc networks are vulnerable to routing attacks owing to their wireless unsecure communication, dynamic topology and resource constrained capabilities. Ad hoc networks suffer from variety of routing attacks. Ad Hoc On-Demand Distance Vector (AODV) routing protocol exhibits gutless defence against black hole attacks that disrupt its normal functionality and compromise data transmission. In current research, a novel solution AODV black hole detection and removal (AODV-BDR) is proposed. AODV-BDR detects and removes black hole attack by using neighbour-based authentication technique. According to suggested solution, every intermediate node that claims that it upholds a fresh route to destination sends its Next Hop Node (NHN) address to source in route reply packet. Source sends validation packet to NHN. On receiving validation packet, NHN generates validation reply having information about Previous Hop Node (PHN) and send to the source. On receiving validation reply, source declares malicious or normal behaviour of PHN. Results revealed that projected scheme detects malicious node with great accuracy. Moreover, AODV-BDR is very useful because it carries no overhead of encryption and hashing.

Wireless ad hoc network: detection of malicious node by using neighbour-based authentication approach

Ad hoc networks are vulnerable to routing attacks owing to their wireless unsecure communication, dynamic topology and resource constrained capabilities. Ad hoc networks suffer from variety of routing attacks. Ad Hoc On-Demand Distance Vector (AODV) routing protocol exhibits gutless defence against black hole attacks that disrupt its normal functionality and compromise data transmission. In current research, a novel solution AODV black hole detection and removal (AODV-BDR) is proposed. AODV-BDR detects and removes black hole attack by using neighbour-based authentication technique. According to suggested solution, every intermediate node that claims that it upholds a fresh route to destination sends its Next Hop Node (NHN) address to source in route reply packet. Source sends validation packet to NHN. On receiving validation packet, NHN generates validation reply having information about Previous Hop Node (PHN) and send to the source. On receiving validation reply, source declares malicious or normal behaviour of PHN. Results revealed that projected scheme detects malicious node with great accuracy. Moreover, AODV-BDR is very useful because it carries no overhead of encryption and hashing.

Secure Routing in Mobile Ad hoc Network

Abstract— MANET is a wireless Mobile ad-hoc network which includes mobile nodes. In MANET mobile refers to the movable nodes which can change their location frequently. MANET is a network which has no central infrastructure; it is a self-managing and self-configuring network. In MANET devices can be heterogeneous like laptops, mobiles, PDAs etc. Due to the movement of the nodes and no infrastructure MANET can be used in disaster and emergency situations. MANET has the characteristics of dynamic topology, multi hop routing, energy constraint and easy setup. The nodes in the MANET work as a both host and a router, to make routes in the network. Due to all these flexible features of MANET there are many security vulnerabilities arises. In MANET routing is a main concern due to the mobility and the node work as a router. The security of the routing layer is essential because if any attack interrupts the communication then security of whole network can be compromised. There are different types of attacks in MANET: such as internal attacks, external attacks and other attacks of all layers. Network layer attacks are identified in this paper. Some routing protocols are used for the security of routing in MANET like SAODV, SRP, SEAD and Ariadne etc. In this paper we present a review of routing attacks and their possible solutions how to avoid from these attacks. Keywords- Mobile ad-hoc network, Routing, Attacks, Security

Deep Learning for Detection of Routing Attacks in the Internet of Things

Cyber threats are a showstopper for Internet of Things (IoT) has recently been used at an industrial scale. Network layer attacks on IoT can cause significant disruptions and loss of information. Among such attacks, routing attacks are especially hard to defend against because of the ad-hoc nature of IoT systems and resource constraints of IoT devices. Hence, an efficient approach for detecting and predicting IoT attacks is needed. Systems confidentiality, integrity and availability depends on continuous security and robustness against routing attacks. We propose a deep-learning based machine learning method for detection of routing attacks for IoT. In our study, the Cooja IoT simulator has been utilized for generation of high-fidelity attack data, within IoT networks ranging from 10 to 1000 nodes. We propose a highly scalable, deep-learning based attack detection methodology for detection of IoT routing attacks which are decreased rank, hello-flood and version number modification attacks, with high accuracy and precision. Application of deep learning for cyber-security in IoT requires the availability of substantial IoT attack data and we believe that the IoT attack dataset produced in this work can be utilized for further research.

Compression Header Analyzer Intrusion Detection System (CHA - IDS) for 6LoWPAN Communication Protocol

Prior 6LoWPAN intrusion detection system (IDS) utilized several features to detect various malicious activities. However, these IDS methods only detect specific attack but fails when the attacks are combined. In this paper, we propose an IDS known as compression header analyzer intrusion detection system (CHA-IDS) that analyzes 6LoWPAN compression header data to mitigate the individual and combination routing attacks. CHA-IDS is a multi-agent system framework that capture and manage raw data for data collection, analysis, and system actions. The proposed CHA-IDS utilize best first and greedy stepwise with correlation-based feature selection to determine only significant features needed for the intrusion detection. These features are then tested using six machine learning algorithms to find the best classification method that able to distinguish between an attack and non-attack and then from the best classification method, we devise a rule to be implemented in Tmote Sky. To ensure the reliability of our proposed method, we evaluate the CHA-IDS with three types of combination attacks known as hello flood, sinkhole, and wormhole. We also compare our results in term of accuracy of detection, energy overhead, and memory consumption with the prior 6LoWPAN-IDS implementation such as SVELTE and Pongle’s IDS. The results show that CHA-IDS performs better than the aforementioned methods with 99% true positive rate and consumed low energy overhead and memory that fit in constrained device such Tmote Sky.

Combating the Looping Behavior: A Result of Routing Layer Attack

Routing layer is one of the most important layers of the network stack. In wireless ad hoc networks, it becomes more significant because nodes act as relay nodes or routers in the network. This characteristic puts them at risk of routing attacks. A wormhole is the most treacherous attack on a routing layer of wireless ad hoc networks. The present proposed techniques require extra hardware, clock synchronization; or they make restrict assumption to deal with this attack. We have proposed a simple behavior-based approach which uses a small amount of memory for recording a few packets received and sent by the neighboring nodes. From this information, a behavior of these nodes is detected, that is, whether the behavior is benign or malicious. Nodes exhibiting malicious behavior are placed in the blocked node list. Malicious nodes are broadcasted in the network. None of the legal nodes in the network entertains any packet from these nodes. This approach has been simulated and verified in ns2.30 which detects and isolates wormhole nodes successfully. The current study focuses on the looping behavior of this attack.

Analysis of Message Attacks in Aviation Data-Link Communication

In aviation communication system, VHF data-link message is used to transmit flight status, airport control instructions as well as the other sensitive information. Radio-transmitted information can be intercepted or tampered with, leading to the disclosure of private data, illegal control, and hijacking. This paper analyzed three attack routes of monitoring, entity camouflage, and man-in-the-middle attack. Man-in-the-middle attack was also able to work in next generation aviation communication networks. Two viable experiments were designed to test data-link message attacks including information leakage and the entity camouflage attack. These experiments may also be used as penetration tests of secure of aviation communication system.

Dos flooding attack control in information-centric networks

ICN (Information-centric networking) is a modern networking standard that mainly works only on the content extraction from a network without taking into case about the storage location or how the content is represented. In ICN providing security for the content is more important. Here we don’t concentrate on protecting path. In order to fulfil the security goals in the new standard, it is very decisive to have a clear complete comprehension about ICN attacks and their brief allocation and the solutions. In this paper we in brief explain the attacks which effect the ICN network and other related attacks which have an impact on ICN. Attacks in ICN are divided to four categories, routing attacks, Naming attacks, Caching attacks, and other various related attacks. There are lot of solutions which are accessible. The main moto in ICN is to protect data which is very hard to achieve. So we develop a dynamic host based IP address scheme including certain snort rules which detect attacker and distinguish them in the clients and secure server from resource exhaustion. Our main center we deal with is on availability, and privacy.

Simulation of Attack Signal Path Identification in Radio Network Information

It is possible to improve the safety performance of the radio network by accurately identifying the attack signal path in the radio network information. When the attack signal path identification is carried out, it is necessary to calculate the vulnerability of the attack signal path, obtain the time series sample set of the net-work attack path, train the sample set for different vulnerabilities, and complete the path recognition.The traditional method is to establish the attack graph model. It cannot calculate the vulnerability of the attack signal path and cannot carry out the training, which leads to the limitation of the path recognition and the low efficiency. An improved identification method of attack signal path in radio network information with improved attack graph is proposed. Firstly, the attack map of the traditional method is transformed according to the theory of graph theory, and the concept of vulnerability factor is introduced into the improved attack graph. The vulnerability of the attack route is improved, and then the sliding time window is used to construct the network attack path recognition Time series sample set, Ada-Boosting method is used to train the sample sets with different vulnerabilities,and the regression matrix is obtained by using the training results. Finally, the attack signal path identification in the radio network information is completed.The simulation results show that the improved method has high accuracy and can guarantee the smooth operation ofthe radio network.

FCM technique for efficient intrusion detection system for wireless networks in cloud environment

With the emergence of ad-hoc networks, the communication methods in the field of wireless have greatly developed. A great deal of research has been conducted, especially in mobile nodes or mobile ad hoc networks (MANETs). The greatest advantage of MANETs is that they don't require predefined infrastructures, such as router link, hub etc. The nodes in a MANET are capable of forming a network which is time-dependent but not permanent to establish communication based on the allocated path. Routing attacks can cause great damage to MANETs. In the past few years, the research work has proposed a special intrusion detection mechanism to detect these attacks, resulting in eliminating malicious nodes in the network. The proposed work in this research paper addresses an efficient fuzzy clustering based algorithm for intrusion detection of a MANET implementation in a cloud storage environment. This paper has presented a model and experimental justifications for improving the efficiency.

GUARD: an intrusion detection framework for routing protocols in multi-hop wireless networks

The Multihop Wireless Networks have received great attention in recent years, owing to the rapid proliferation of wireless devices. The wireless routing protocols assume that the nodes are cooperating and well-behaving. However, such networks are subject to several active routing attacks such as dropping, flooding, and modification. The primary intention of such attack is to thwart the objectives of routing protocols and cause network malfunction. This state of affairs motivates the recent research towards the development of a sophisticated security framework that works well against active routing attacks. This paper proposes GUARD, an intrusion detection framework that aims at detecting the active routing attacks efficiently with a considerable reduction in energy consumption. The GUARD incorporates three mechanisms such as a Restricted Directional Watchdog Selection, a Game Design, and an Incentive Estimation. Applying the Restricted Directional Watchdog Selection makes the GUARD a lightweight intrusion detection system (IDS) model, where only a limited number of nodes turn on IDS. The GUARD utilizes non-cooperative game design and exploits the advantage of Fuzzy q-learning to determine the malicious activity. The notion of Fuzzy q-learning determines the results of the player strategies of game design to measure the appropriate reward. The GUARD framework is incorporated into the popular protocols such as AODV and LEACH to validate the effectiveness of the defense mechanism. The simulation results show that these extended protocols outperform the existing protocols in terms of attack detection accuracy, throughput, delay, and network lifetime.

Influence of Surface and Bulk Water Ice on the Reactivity of a Water-forming Reaction

Abstract On the surface of icy dust grains in the dense regions of the interstellar medium, a rich chemistry can take place. Due to the low temperature, reactions that proceed via a barrier can only take place through tunneling. The reaction H + H 2 O 2 ⟶ H 2 O + OH is such a case with a gas-phase barrier of ∼26.5 kJ mol−1. Still, the reaction is known to be involved in water formation on interstellar grains. Here, we investigate the influence of a water ice surface and of bulk ice on the reaction rate constant. Rate constants are calculated using instanton theory down to 74 K. The ice is taken into account via multiscale modeling, describing the reactants and the direct surrounding at the quantum mechanical level with density functional theory (DFT), while the rest of the ice is modeled on the molecular mechanical level with a force field. We find that H2O2 binding energies cannot be captured by a single value, but rather they depend on the number of hydrogen bonds with surface molecules. In highly amorphous surroundings, the binding site can block the routes of attack and impede the reaction. Furthermore, the activation energies do not correlate with the binding energies of the same sites. The unimolecular rate constants related to the Langmuir–Hinshelwood mechanism increase as the activation energy decreases. Thus, we provide a lower limit for the rate constant and argue that rate constants can have values up to two order of magnitude larger than this limit.

Mitigation and Performance Analysis of Routing Protocols Under Black-Hole Attack in Vehicular Ad-hoc Network (VANET)

Vehicular Ad-hoc network (VANET) is a self-organized ad hoc network. VANET becomes a most challenging research area as it has several issues related to routing protocols, quality of service, security, etc. Vehicular communication is critically unsafe to several kinds of active and passive routing attacks. This paper analyzes the impact of a compromised node (vehicle) on zone routing protocol and ad-hoc on-demand distance vector, and recommends a suitable solution called secure vehicular on demand routing to find out and mitigate the black hole attack. The given study analyses the effect of vehicle density on the average throughput, packet delivery ratio, end-to-end delay, normalized routing load and average path length.

Generalized Trust Model for Cooperative Routing in MANETs

Routing in a Mobile Ad-Hoc Network (MANET) is prone to various security attacks due to the limitations such as openness, decentralized and infrastructure less network operations. Many of such routing attacks are possible to detect by observing the functional behavior of nodes such as sincerity in packet forwarding, maintaining packet integrity, etc. To do this, the trustworthiness of each node has to be assessed via behavior observation. There exist several methods in the literature for trust assessment. However, each trust model has its advantages and limitations. Further, a common trust model that can be applicable to diverse routing protocols is limited. To this end, the objective of this paper is to propose a Generalized Trust Model (GTM) over MANET routing protocols. GTM is designed to offer self-adaptability, lightweight communication, and effective identification and isolation of malicious nodes during the routing process. The proposed trust model has applied with proactive, reactive, and geographic routing methods. Results that are obtained from the network simulator NS-2 have shown that the proposed method significantly improved the network performance metrics such as packet delivery fraction, throughput, routing load, and end-to-end delay as compared to existing trust models.

An Overview of Trust-Based Routing Design Under Adversarial Mobile Ad Hoc Network Environment

During the last few years, the employment of trust-based routing in mobile ad hoc networks (MANETs) has received increasing attention. Trust-based routing protocols have been proposed as a new approach to ensure reliable routing under adversarial MANET environment. In this paper, firstly, we adopt a systematic approach to examine those typical routing attacks existing in dynamic source routing (DSR) protocol, and study how the attackers can achieve their attacking goals by executing various malicious actions. Then we analyze the necessity of trust-based routing protocols by reviewing some conventional reliable routing schemes. Specifically, we survey the state of art of the trust-based routing protocols and utilize a general framework that allows for analyzing most of them easily. Finally, we provide a comparison of these existing trust-based routing protocols based on a general framework. Our work contributes to understanding (1) how those attackers achieve their goals by disobeying the DSR regulations (2) what are the basic mechanisms when designing trust-based routing protocol and (3) the strengths and vulnerabilities of different design components.

Weight Trusted Routing Mechanism for Hierarchical Mesh Environments

In this paper, we have proposed a technique to detect and eliminate the malicious/misbehaving nodes involved during routing path formation in hierarchical mesh environments. In this, dijkstra's shortest path routing algorithm is used whose weights are deliberated using certain parameters (i.e. node distance, node's previous interactions, packet loss percentage and trust values of each node) for providing the security against routing attacks. The malicious nodes involved during route discovery process are eliminated by calculating the trust of each node using Social Impact Theory Optimizer (SITO). Here, we have discussed the network performance trade-off caused by secure path formation in conventional methods and proposed a Weight Trusted Routing (WTR) mechanism for eliminating these issues (packet-loss ratio, end-to-end delay and route discovery delay). We have numerically simulated and compared the network metrics for both conventional and proposed approaches. Moreover, the proposed technique is validated by discussing an empirical study over routing attacks.

Review on Various Routing Attacks in Vehicular Adhoc Networks

Review on Various Routing Attacks in Vehicular Adhoc Networks

Utilisation of DANGER and PAMP signals to detect a MANET Packet Storage Time Attack

The dynamic distributed topology of a Mobile Ad Hoc Network (MANET) provides a number of challenges associated with decentralised infrastructure where each node can act as the source, destination and relay for traffic. MANET’s are a suitable solution for distributed regional, military and emergency networks. MANETs do not utilise fixed infrastructure except where connectivity to carrier networks is required and MANET nodes provide the transmission capability to receive, transmit and route traffic from a sender node to the destination node. In this paper, we present a Packet Storage Time (PST) routing attack where an attacking node modifies its storage time and thereby does not forward packets to the intended recipient nodes. In the Human Immune System, cells are able to distinguish between a range of issues including foreign body attacks as well as cellular senescence. This paper presents an approach using Artificial Immune System based Danger signal (DS) and Pathogen Associated Molecular Pattern (PAMP) signal to identify a PST routing attack.