TY - GEN
T1 - On the analysis of identity delegation attacks
AU - Khalil, Issa M.
AU - Khreishah, Abdallah
PY - 2012/4/24
Y1 - 2012/4/24
N2 - Identity delegation is a sever attack that can be easily launched against multihop wireless ad hoc and sensor networks. Its severity lies in its capability to evade detection by even the-state-of-the-art intrusion detection techniques such as the neighbor monitoring based mechanisms. Through identity delegation, an adversary can drop packets, evade detection, and frame innocent nodes of dropping the traffic. In a previous work, we proposed a mechanism called Sadec to mitigate identity delegation attacks. In this paper, we provide a thorough investigation of Sadec and compare it with the state-of-the-art mitigation technique dubbed basic local monitoring (BLM). Our analysis which is validated by ns-2 simulation scenarios show that BLM fails to efficiently mitigate packet drop through identity delegation while Sadec successfully mitigates it in addition to considerably reducing the framing incidents of legitimate nodes.
AB - Identity delegation is a sever attack that can be easily launched against multihop wireless ad hoc and sensor networks. Its severity lies in its capability to evade detection by even the-state-of-the-art intrusion detection techniques such as the neighbor monitoring based mechanisms. Through identity delegation, an adversary can drop packets, evade detection, and frame innocent nodes of dropping the traffic. In a previous work, we proposed a mechanism called Sadec to mitigate identity delegation attacks. In this paper, we provide a thorough investigation of Sadec and compare it with the state-of-the-art mitigation technique dubbed basic local monitoring (BLM). Our analysis which is validated by ns-2 simulation scenarios show that BLM fails to efficiently mitigate packet drop through identity delegation while Sadec successfully mitigates it in addition to considerably reducing the framing incidents of legitimate nodes.
KW - Local monitoring
KW - identity delegation
KW - multi-hop wireless networks
KW - packet dropping
UR - http://www.scopus.com/inward/record.url?scp=84859900775&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84859900775&partnerID=8YFLogxK
U2 - 10.1109/ICCNC.2012.6167574
DO - 10.1109/ICCNC.2012.6167574
M3 - Conference contribution
AN - SCOPUS:84859900775
SN - 9781467300094
T3 - 2012 International Conference on Computing, Networking and Communications, ICNC'12
SP - 990
EP - 994
BT - 2012 International Conference on Computing, Networking and Communications, ICNC'12
T2 - 2012 International Conference on Computing, Networking and Communications, ICNC'12
Y2 - 30 January 2012 through 2 February 2012
ER -