Denial of service mitigation approach for IPv6‐enabled smart object networks

Oliveira, Luís M. L.; Rodrigues, Joel J. P. C.; Sousa, Amaro de; Lloret, Jaime

doi:10.1002/cpe.2850

Cited by 23 publications

(14 citation statements)

References 31 publications

(87 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Eavesdropping, packet replay, tampering and spoofing are examples of attacks against the secrecy and authenticity. Denial of service can be targeted at the different protocol layers and is the main example of an attack against the network availability [7]. In the stealthy attacks, the main objective is to make a legitimate node to accept fake data generated by the attacker and the compromised legitimate node can also be used to intensify the spreading of false data through all other legitimate nodes.…”

Section: Security On Wireless Sensor Netwoksmentioning

confidence: 99%

“…However, they can also be used to perform security attacks, because third party nodes can easily join the network [6]. WSN exhibit a large number of vulnerabilities, which make them even more vulnerable to security attacks than unconstrained IP networks [7][8]. To circumvent this issue, several security mechanisms have been proposed, some of them defined to address particular well-known attacks [9].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Network Admission Control Solution for 6LoWPAN Networks

Oliveira

Rodrigues

Neto

et al. 2013

2013 Seventh International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing

Self Cite

View full text Add to dashboard Cite

Wireless sensor networks (WSNs) are a technology with high potential to be employed in several industrial and quotidian situations. Self-organization and self-configuration are key characteristics of WSNs. In most situations, these characteristics are useful because they minimize the configuration efforts and simultaneously increase the network robustness in case of failures or topology changes. However, they can also be exploited to perform security attacks, since third party nodes can easily join the network and, then, use it to compromise legitimate nodes and to send messages to the Internet. This paper presents a mechanism that can be used to control the nodes that have access to WSNs with 6LoWPAN support. It is based on administrative approval, preventing third party nodes from using the network to communicate with regular nodes. It uses standard protocols which are present in all 6LoWPAN compliant networks, such as 6LoWPAN Neighbor Discover protocol and RPL routing protocol. This paper also presents the design and deployment of a laboratory testbed that validates the proposed solution.

show abstract

Section: Security On Wireless Sensor Netwoksmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Network Admission Control Solution for 6LoWPAN Networks

Oliveira

Rodrigues

Neto

et al. 2013

2013 Seventh International Conference on Innovative Mobile and Internet Services in Ubiquitous Computing

Self Cite

View full text Add to dashboard Cite

show abstract

“…Etiket saldırılarındaysa saldırganlar kötücül etiketleri IoT ortamına yerleşirmekte ve kullanıcıları istemedikleri yerlere ya da Internet sitelerine yönlendirmektedirler [19]. Dügümü Fiziksel Veri Bagı 6LoWPAN Agİletim Uygulama Parazit yapma [12] Çerçeve çakıştırma [13] Parçalama [14], [15] Çukur [10], [16] Taşkın [13] Çapraz protokol [17] Dügüm yineleme [11] Zaman penceresi [18] Seçerek yönlendirme [10], [11] Senkronizasyon [13] Prokol işleme [17] Etiket [19] Taklit/degiştirme [20] URI işleme [17] Çok kimliklilik [11], [21] Vekil sunucu [17] Solucan deligi [11], [22] Önbellekleme [17] Seviye [23], [24] Versiyon numarası [25], [26] Yerel onarım [10], [17], [23] Hello taşkını [11] Tablo I: IoT Protol Yıgını Katmanlarına Göre DoS/DDoS Saldırıları ele geçirme ya da yineleme saldırılarındaysa saldırgan fiziksel bir dügümü kopyalayarak IoT agında birden fazla noktaya yerleştirmeye çalışır. Bu sayede mesajların hedefledikleri yerler yerine kopya dügümlere gitme olasılıgı artar ve önemli mesajlar hedefe hiç ulaşamayabilir.…”

Section: A Fiziksel Katman Saldırılarıunclassified

“…Çerçeveleri çakışmaya zorlayan bu saldırılar kaynakların tükenmesine neden olmakta ve dügümler arasında adil kaynak kullanımını bozmaktadır [13]. IoT MAC katmanı zaman aralıkları saldırılarında ise saldırgan garantili zaman aralıklarının ag koordinatörü ile kurulması esnasındaki gerekli mesaj alışverişini sekteye ugratmaya çalışmaktadır [18].…”

Section: B Veri Bagı Katmanı Saldırılarıunclassified

Internet-of-Things security: Denial of service attacks

Arış

Oktuğ

Yalcin

2015

2015 23nd Signal Processing and Communications Applications Conference (SIU)

View full text Add to dashboard Cite

Özetçe -Nesnelerin Interneti duyargalar, eyleyiciler, mobil cihazlar ve giyilebilen cihazlar gibi işlemci ve haberleşme birimine sahip olan birçok nesnenin oluşturdugu ve Internete baglanabildikleri bir agdır. Bu ag kapsamında milyarlarca nesne çok yakın bir gelecekte birçok alanda hizmet vermeye başlayacaktır. Yeni cihazların otonom birşekilde sisteme yerleştirilebilmesi, kendini yapılandırabilme, Internete baglanabilme ve kaynak kısıtlamaları gibi özellikler bu agı saldırılara açık bir hale getirmektedir.İletişim aglarını yıllardır tehdit eden Servis Engelleme Saldırıları nesnelerin Interneti ortamını da hedef almaya başlayacaktır. Bu çalışma nesnelerin Internetine yönelen/yönelebilecek Servis Engelleme Saldırılarını incelemeyi ve farklı açılardan sınıflandırmayı hedeflemektedir. Buna ek olarak saldırıları tespit etmeye ve/veya hafifletmeye çalışan sistemler ve teknikler de analiz edilecektir.Anahtar Kelimeler-Nesnelerin Interneti, ag güvenligi, dagıtık servis engelleme saldırıları, servis engelleme saldırıları, DoS, DDoS.Abstract-Internet of Things (IoT) is a network of sensors, actuators, mobile and wearable devices, simply things that have processing and communication modules and can connect to the Internet. In a few years time, billions of such things will start serving in many fields within the concept of IoT. Selfconfiguration, autonomous device addition, Internet connection and resource limitation features of IoT causes it to be highly prone to the attacks. Denial of Service (DoS) attacks which have been targeting the communication networks for years, will be the most dangerous threats to IoT networks. This study aims to analyze and classify the DoS attacks that may target the IoT environments. In addition to this, the systems that try to detect and mitigate the DoS attacks to IoT will be evaluated.

show abstract

“…Eavesdropping, packet replay, tampering and spoofing are examples of attacks against the secrecy and authenticity. Denial of service (DoS) is the main example of an attack against the network availability and can be targeted at the different layers of the networking stack [9,10]. In the stealthy attacks, the main goal is to make a legitimate node to accept false data values generated by the attacker and, in this way, the compromised legitimate node can also be used to amplify the dissemination of false data through all other legitimate nodes.…”

Section: Security On Lowpan Networkmentioning

confidence: 99%

A Network Access Control Framework for 6LoWPAN Networks

Oliveira

Rodrigues

Sousa

et al. 2013

Sensors

Self Cite

View full text Add to dashboard Cite

Low power over wireless personal area networks (LoWPAN), in particular wireless sensor networks, represent an emerging technology with high potential to be employed in critical situations like security surveillance, battlefields, smart-grids, and in e-health applications. The support of security services in LoWPAN is considered a challenge. First, this type of networks is usually deployed in unattended environments, making them vulnerable to security attacks. Second, the constraints inherent to LoWPAN, such as scarce resources and limited battery capacity, impose a careful planning on how and where the security services should be deployed. Besides protecting the network from some well-known threats, it is important that security mechanisms be able to withstand attacks that have not been identified before. One way of reaching this goal is to control, at the network access level, which nodes can be attached to the network and to enforce their security compliance. This paper presents a network access security framework that can be used to control the nodes that have access to the network, based on administrative approval, and to enforce security compliance to the authorized nodes.

show abstract

Denial of service mitigation approach for IPv6‐enabled smart object networks

Cited by 23 publications

References 31 publications

Network Admission Control Solution for 6LoWPAN Networks

Network Admission Control Solution for 6LoWPAN Networks

Internet-of-Things security: Denial of service attacks

A Network Access Control Framework for 6LoWPAN Networks

Contact Info

Product

Resources

About