Resilient network coding in the presence of Byzantine adversaries

Jaggi, Sidharth; Langberg, Michael; Katti, Sachin; Ho, Tracey; Katabi, Dina; Médard, Muriel

doi:10.1109/infcom.2007.78

Cited by 335 publications

(366 citation statements)

References 27 publications

Supporting

Mentioning

365

Contrasting

Order By: Relevance

“…The scheme provides only a partial solution, as it does not specify any mechanisms to recover from pollution attacks. Another approach [36] provides a distributed protocol to allow the receiver to recover native packets in the presence of pollution attacks. However, given that polluted packets are not filtered out, the throughput that can be achieved by the protocol is upper-bounded by the information-theoretic optimal rate of C − zO, where C is the network capacity from the source to the receiver and zO is the network capacity from the adversary to the receiver.…”

Section: Related Workmentioning

confidence: 99%

“…While these are elegant approaches from a theoretical perspective, they are highly inefficient when applied in practice in wireless networks, even under benign conditions when no attacks take place. Non-cryptographic solutions have also been proposed [35][36][37]. These solutions either provide only a partial solution by detecting the attacks without any response mechanism [35], or add data redundancy at the source, resulting in throughput degradation proportionally to the bandwidth available to the attacker [36,37].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Practical defenses against pollution attacks in intra-flow network coding for wireless mesh networks

Dong

Curtmola

Nita-Rotaru

2009

Proceedings of the Second ACM Conference on Wireless Network Security

View full text Add to dashboard Cite

Recent studies show that network coding can provide significant benefits to network protocols, such as increased throughput, reduced network congestion, higher reliability, and lower power consumption. The core principle of network coding is that intermediate nodes actively mix input packets to produce output packets. This mixing subjects network coding systems to a severe security threat, known as a pollution attack, where attacker nodes inject corrupted packets into the network. Corrupted packets propagate in an epidemic manner, depleting network resources and significantly decreasing throughput. Pollution attacks are particularly dangerous in wireless networks, where attackers can easily inject packets or compromise devices due to the increased network vulnerability.In this paper, we address pollution attacks against network coding systems in wireless mesh networks. We demonstrate that previous solutions to the problem are impractical in wireless networks, incurring an unacceptably high degradation of throughput. We propose a lightweight scheme, DART, that uses time-based authentication in combination with random linear transformations to defend against pollution attacks. We further improve system performance and propose EDART, which enhances DART with an optimistic forwarding scheme. A detailed security analysis shows that the probability of a polluted packet passing our verification procedure is very low. Performance results using the well-known MORE protocol and realistic link quality measurements from the Roofnet experimental testbed show that our schemes improve system performance over 20 times compared to previous solutions.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Practical defenses against pollution attacks in intra-flow network coding for wireless mesh networks

Dong

Curtmola

Nita-Rotaru

2009

Proceedings of the Second ACM Conference on Wireless Network Security

View full text Add to dashboard Cite

show abstract

“…Additional coding schemes that operate under complexity constraints, such as fixed, finite memory at intermediate nodes have also been investigated by Pakzad et al [64] and Lun et al [57]. Non-ergodic failures were studied by Jaggi et al [41] and Ho et al [36], and for unicsat by El Rouayheb et al [73] from which the example shown in Figure 6.4 is taken. Network error correcting codes and bounds have been considered by Yeung and Cai [8,90], Zhang [92] and Yang et al [87,88].…”

Section: Notesmentioning

confidence: 99%

“…The Byzantine modification detection in networks implementing random network coding was studied by Ho et al [35]. The algorithm we presented comes from Jaggi et al [41], where achievable rates and algorithms for other cases can be found as well.…”

Section: Notesmentioning

confidence: 99%

Network Coding Applications

Fragouli

Soljanin²

2007

FNT in Networking

132

View full text Add to dashboard Cite

Network coding is an elegant and novel technique introduced at the turn of the millennium to improve network throughput and performance. It is expected to be a critical technology for networks of the future. This tutorial deals with wireless and content distribution networks, considered to be the most likely applications of network coding, and it also reviews emerging applications of network coding such as network monitoring and management. Multiple unicasts, security, networks with unreliable links, and quantum networks are also addressed. The preceding companion deals with theoretical foundations of network coding.

show abstract

“…They added a simple polynomial hash value into each packet, and a receiver node can detect the presence of a Byzantine attacker with high probability, given that the attacker is unable to design and supply modified packets with complete knowledge of other packets received by other nodes. Jaggi et al [10] proposed a distributed network coding scheme for multicast network that is resilient in the presence of Byzantine adversaries. They view the adversarial nodes as a second source, and judiciously add redundancy at the real source to help the receivers distill out the source information from the received mixtures.…”

Section: Introductionmentioning

confidence: 99%

Signatures for Content Distribution with Network Coding

Zhao

Kalker²,

Médard

et al. 2007

2007 IEEE International Symposium on Information Theory

169

141

View full text Add to dashboard Cite

Abstract-Recent research has shown that network coding can be used in content distribution systems to improve the speed of downloads and the robustness of the systems. However, such systems are very vulnerable to attacks by malicious nodes, and we need to have a signature scheme that allows nodes to check the validity of a packet without decoding. In this paper, we propose such a signature scheme for network coding. Our scheme makes use of the linearity property of the packets in a coded system, and allows nodes to check the integrity of the packets received easily. We show that the proposed scheme is secure, and its overhead is negligible for large files.

show abstract

Resilient network coding in the presence of Byzantine adversaries

Cited by 335 publications

References 27 publications

Practical defenses against pollution attacks in intra-flow network coding for wireless mesh networks

Practical defenses against pollution attacks in intra-flow network coding for wireless mesh networks

Network Coding Applications

Signatures for Content Distribution with Network Coding

Contact Info

Product

Resources

About