论文信息 - A DOS-resilient design for delay tolerant networks

A DOS-resilient design for delay tolerant networks

Packet injection by an attacker can trigger flooding-based DOS attacks. This paper seeks to provide a simple and robust approach to protect the access control, data integrity and sender authentication security services in resource-constrained delay tolerant networks. The aim is to make security protocols providing these mandatory security services resilient to resource exhaustion DOS attacks. To achieve this we propose a hierarchical design based on the use of light-weight and hard to forge cookies. The DOS defense mechanism can proactively identify and discard attack bundles. Compromised insider nodes are identified and isolated.

Godwin Ansa | Haitham S. Cruickshank | Zhili Sun | Mohammed Al-Siyabi

[1] Georgios Loukas,et al. Protection Against Denial of Service Attacks: A Survey , 2010, Comput. J..

[2] Pekka Nikander,et al. Towards Network Denial of Service Resistant Protocols , 2000, SEC.

[3] Rui Zhang,et al. TwinRoute: Energy-Efficient Data Collection in Fixed Sensor Networks with Mobile Sinks , 2009, 2009 Tenth International Conference on Mobile Data Management: Systems, Services and Middleware.

[4] Refik Molva,et al. Denial of service prevention in satellite networks , 2004, 2004 IEEE International Conference on Communications (IEEE Cat. No.04CH37577).

[5] Amrit Lal Sangal,et al. Considerations and Open Issues in Delay Tolerant Network'S (DTNs) Security , 2010, Wirel. Sens. Netw..

[6] Stephen Farrell,et al. Bundle Security Protocol Specification , 2011, RFC.

[7] Elaine B. Barker,et al. The Keyed-Hash Message Authentication Code (HMAC) | NIST , 2002 .

[8] Stephen Farrell,et al. Licklider Transmission Protocol - Security Extensions , 2008, RFC.

[9] Godwin Ansa,et al. Mitigating Denial of Service Attacks in Delay-and Disruption-Tolerant Networks , 2010, PSATS.

[10] Scott F. Midkiff,et al. Denial-of-Service in Wireless Sensor Networks: Attacks and Defenses , 2008, IEEE Pervasive Computing.

[11] William D. Ivancic. Security analysis of DTN architecture and Bundle Protocol Specification for space-based networks , 2010, 2010 IEEE Aerospace Conference.