Anomaly-based intrusion detection of jamming attacks, local versus collaborative detection

Fragkiadakis, Alexandros; Siris, Vasilios A.; Petroulakis, Nikolaos E.; Traganitis, Apostolos

doi:10.1002/wcm.2341

Cited by 22 publications

(32 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The DS theory does not require prior knowledge, enables a way of measuring ignorance, when the evaluated data cannot be allocated within the normal or abnormal hypothesis. Furthermore, it has also proved to be a viable solution in cases where it is impossible to apply classical sensor fusion techniques, such as Kalman filter or Bayesian networks, or even when it is virtually impossible to find a pattern in the system behaviour to build an appropriate model [15]. Although DS theory inflicts additional computational load when computing mass functions, reducing the number of hypothesis to three makes this theory applicable to a live detection system.…”

Section: B Attack Detection Methodologymentioning

confidence: 99%

See 1 more Smart Citation

A data fusion technique to detect wireless network virtual jamming attacks

Escudero-Andreu¹,

Kyriakopoulos²,

Aparicio-Navarro³

et al. 2015

2015 IEEE International Workshop on Measurements &Amp; Networking (M&N)

View full text Add to dashboard Cite

Section: B Attack Detection Methodologymentioning

confidence: 99%

“…In [15] the authors propose a distributed solution to detect jamming attacks at the physical layer. In detail, the method is based on the detection of changes in the statistical characteristics of the Signal to Noise Ratio (SNR).…”

Section: Related Workmentioning

confidence: 99%

A data fusion technique to detect wireless network virtual jamming attacks

Escudero-Andreu¹,

Kyriakopoulos²,

Aparicio-Navarro³

et al. 2015

2015 IEEE International Workshop on Measurements &Amp; Networking (M&N)

View full text Add to dashboard Cite

“…Based on this, we deploy a cumulative-sum (cusum) algorithm [14] able to detect abrupt changes of the SINR. In previous works [15,11,16,17] we show that maximum performance, in terms of false alarms/detection probability, is achieved when considering the maximum minus the minimum values of SINR within a short and long windows. Cusum is defined as:…”

Section: Attack Detectionmentioning

confidence: 61%

Denial-of-Service Attacks in Wireless Networks Using Off-the-Shelf Hardware

Fragkiadakis

Askoxylakis

Chatziadam

2014

Distributed, Ambient, and Pervasive Interactions

View full text Add to dashboard Cite

Abstract. Wireless network technologies offer ubiquitous broadband access to millions of users at an affordable cost. However, the broadband nature of the wireless medium make these networks vulnerable to a number of attacks. Malicious interference at the physical layer, and extended packet collisions at the medium access layer can cause significant DoS attacks. In this work, we show how off-the-shelf hardware can be used to create devastating DoS attacks in a IEEE 802.11 network. Moreover, we present two algorithms for attack detection that are based on the cumulative sum algorithm.

show abstract

“…In [10], the authors use anomaly-based intrusion detection algorithm to investigate the presence of a jammer. The intrusion detection algorithm uses SINR based statistical analysis.…”

Section: Jammer and Cheater Detection In Ieee 80211 Wlansmentioning

confidence: 99%

A novel cheater and jammer detection scheme for IEEE 802.11-based wireless LANs

2015

View full text Add to dashboard Cite

The proliferation of IEEE 802.11 networks has made them an easy and attractive target for malicious devices/adversaries which intend to misuse the available network. In this paper, we introduce a novel malicious entity detection method for IEEE 802.11 networks. We propose a new metric, the Beacon Access Time (BAT), which is employed in the detection process and inherits its characteristics from the fact that beacon frames are always given preference in IEEE 802.11 networks. An analytical model to define the aforementioned metric is presented and evaluated with experiments and simulations. Furthermore, we evaluate the adversary detection capabilities of our scheme by means of simulations and experiments over a real testbed. The simulation and experimental results indicate consistency and both are found to follow the trends indicated in the analytical model. Measurement results indicate that our scheme is able to correctly detect a malicious entity at a distance of, at least, 120m. Analytical, simulation and experimental results signify the validity of our scheme and highlight the fact that our scheme is both efficient and successful in detecting an adversary (either a jammer or a cheating device). As a proof of concept, we developed an application that when deployed at the IEEE802.11 Access Point, is able to effectively detect an adversary. c ⃝ 2014 Eduard Garcia-Villegas under Creative Commons (CC BY-NC-ND)

show abstract

Anomaly-based intrusion detection of jamming attacks, local versus collaborative detection

Cited by 22 publications

References 31 publications

A data fusion technique to detect wireless network virtual jamming attacks

A data fusion technique to detect wireless network virtual jamming attacks

Denial-of-Service Attacks in Wireless Networks Using Off-the-Shelf Hardware

A novel cheater and jammer detection scheme for IEEE 802.11-based wireless LANs

Contact Info

Product

Resources

About