Paper Info
Title
A specification-based intrusion detection engine for infrastructure-less networks.
Abstract
The proliferation of mobile computing devices has enabled the utilization of infrastructure-less networking as commercial solutions. However, the distributed and cooperative nature of routing in such networks makes them vulnerable to a variety of attacks. This paper proposes a host-based monitoring mechanism, called SIDE that safeguards the operation of the AODV routing protocol. SIDE encompasses two complementary functionalities: (i) a specification-based detection engine for the AODV routing protocol, and (ii) a remote attestation procedure that ensures the integrity of a running SIDE instance. The proposed mechanism operates on a trusted computing platform that provides hardware-based root of trust and cryptographic acceleration, used by the remote attestation procedure, as well as protection against runtime attacks. A key advantage of the proposed mechanism is its ability to effectively detect both known and unknown attacks, in real time. Performance analysis shows that attacks are resolved with high detection accuracy, even under conditions of high network volatility. Moreover, SIDE induces the least amount of control packet overhead in comparison with a number of other proposed IDS schemes.
Year
DOI
Venue
2014
10.1016/j.comcom.2014.08.002
Computer Communications
Keywords
Field
DocType
MANET,IDS,AODV,Detection engine,Attestation
Mobile computing,Mobile ad hoc network,Trusted Computing,Ad hoc On-Demand Distance Vector Routing,Computer science,Cryptography,Network packet,Computer network,Acceleration,Intrusion detection system
Journal
Volume
Issue
ISSN
54
C
0140-3664
Citations 
PageRank 
References 
8
0.52
29
Authors
4
Name
Order
Citations
PageRank
Christoforos Panos1463.14
Christos Xenakis222128.00
Platon Kotzias3655.79
Ioannis Stavrakakis41198121.86