Proposal of a method to detect black hole attack in MANET

Zhang, Xiaoyang; Sekiya, Yuji; Wakahara, Yasushi

doi:10.1109/isads.2009.5207339

Cited by 33 publications

(16 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The black hole attack problem in mobile ad hoc networks and WSNs has been addressed in several works, including Refs [4,5,7]. Some researchers have provided a solution for the single black hole attack problem, others for the colluding black hole attack problem.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Mitigation of black hole attacks in Routing Protocol for Low Power and Lossy Networks

Ahmed

2016

Security Comm Networks

View full text Add to dashboard Cite

Routing Protocol for Low Power and Lossy Networks (RPL) has been standardized by the Internet Engineering Task Force to efficiently manage the functions of the network layer when providing Internet connectivity for wireless sensor networks. RPL has been designed for constrained devices and networks. Owing to their constrained nature, RPL-based networks can be exposed to a wide variety of security attacks. One of the most serious attacks in RPL is a black hole attack, where a malicious node silently drops all the packets that it is supposed to forward. This paper proposes a mitigation technique against black hole attack with low packet loss and high reliability. The proposed technique consists of a local decision and a global verification process. First, each node observes the communication behavior of its neighboring nodes by overhearing packets transmitted by its neighbors and attempts to identify suspicious nodes based on their behavior. In the second process, if a node identifies a suspicious node, then it verifies whether the suspicious node is a black hole. We demonstrate that the proposed approach increases packet delivery rate significantly and detects black hole attack effectively.

show abstract

Section: Related Workmentioning

confidence: 99%

“…Only a small number of methods have been proposed to address single and colluding black hole attacks. Two-step approaches that use judgment and verification processes were proposed to detect black hole attack in Refs [7,8]. However, to the best of our knowledge, there has been no research to address the black hole attack problem in RPL.…”

Section: Introductionmentioning

confidence: 99%

Mitigation of black hole attacks in Routing Protocol for Low Power and Lossy Networks

Ahmed

2016

Security Comm Networks

View full text Add to dashboard Cite

show abstract

“…In our opinion, considering the dynamic environment of MANETs, such mechanisms based on fixed thresholds to detect black hole attacks suffer from high false alarm rates since they have no means to adapt to changes caused by node mobility. In [42] Zhang et al proposed a black hole detection scheme based on sequence number checking of the RREP packets. They considered a scenario where an intermediate node is an attacker and suggested that, whenever a node sends a RREP back to a source node, the intermediate node should also generate a request for a sequence number to the destination node.…”

Section: Protecting Against Black Hole Attacksmentioning

confidence: 99%

A Survey of MANET Intrusion Detection & Prevention Approaches for Network Layer Attacks

Nadeem¹,

Howarth

2013

IEEE Commun. Surv. Tutorials

195

108

View full text Add to dashboard Cite

Abstract-In the last decade, mobile ad hoc networks (MANETs) have emerged as a major next generation wireless networking technology. However, MANETs are vulnerable to various attacks at all layers, including in particular the network layer, because the design of most MANET routing protocols assumes that there is no malicious intruder node in the network. In this paper, we present a survey of the main types of attack at the network layer, and we then review intrusion detection and protection mechanisms that have been proposed in the literature. We classify these mechanisms as either point detection algorithms that deal with a single type of attack, or as intrusion detection systems (IDSs) that can deal with a range of attacks. A comparison of the proposed protection mechanisms is also included in this paper. Finally, we identify areas where further research could focus.Index Terms-Intrusion detection and prevention, mobile ad hoc networks, network layer attacks, securing ad hoc networks.

show abstract

“…On the one hand, different entities located in different places and sharing information through the Internet form a Collaborative Intrusion Detection Network (CIDN) [29,30,5]. On the other hand, different wireless sensors monitoring a Mobile Ad-Hoc Network (MANET) [31,32] also constitute an IDN. The main difference between these two approaches is that while CIDNs are likely composed of well-equipped systems (i.e., having substantial memory and processing resources), MANETs are composed of resource-constrained nodes requiring lightweight detection algorithms.…”

Section: System Modelmentioning

confidence: 99%

DEFIDNET: A framework for optimal allocation of cyberdefenses in Intrusion Detection Networks

et al. 2015

View full text Add to dashboard Cite

Intrusion Detection Networks (IDN) are distributed cyberdefense systems composed of different nodes performing local detection and filtering functions, as well as sharing information with other nodes in the IDN. The security and resilience of such cyberdefense systems are paramount, since an attacker will try to evade them or render them unusable before attacking the end systems. In this paper, we introduce a system model for IDN nodes in terms of their logical components, functions, and communication channels. This allows us to model different IDN node roles (e.g., detectors, filters, aggregators, correlators, etc.) and architectures (e.g., hierarchical, centralized, fully distributed, etc.) We then introduce a threat model that considers adversarial actions executed against particular IDN nodes, and also the propagation of such actions throughout connected nodes. Based on such models, we finally introduce a countermeasure allocation model based on a multi-objective optimization algorithm to obtain optimal allocation strategies that minimize both risk and cost. Our experimental results obtained through simulation with different IDN architectures illustrate the benefit of our framework to design and reconfigure cyberdefense systems optimally.

show abstract

Proposal of a method to detect black hole attack in MANET

Cited by 33 publications

References 6 publications

Mitigation of black hole attacks in Routing Protocol for Low Power and Lossy Networks

Mitigation of black hole attacks in Routing Protocol for Low Power and Lossy Networks

A Survey of MANET Intrusion Detection & Prevention Approaches for Network Layer Attacks

DEFIDNET: A framework for optimal allocation of cyberdefenses in Intrusion Detection Networks

Contact Info

Product

Resources

About