Distributed Detection of Replica Cluster Attacks in Sensor Networks Using Sequential Analysis

Due to the unattended nature of wireless sensor networks, an adversary can capture and compromise sensor nodes, generate replicas of those compromised nodes, and mount a variety of attacks with the replicas he injects into the network. This is a severe type of attack in the sense that the attacker can leverage the compromise of a single node to create widespread effects on the network. In particular, we are interested in replica cluster attacks, in which many replicas with the same identity form a cluster in a small region. This is also a dangerous attack because attacker can leverage a replica cluster to harmfully impact on the much of the network. To defend against replica cluster attacks, we propose an efficient and effective replica cluster detection scheme using the sequential probability ratio test. We show analytically that our scheme achieves a high replica cluster detection capability.

[1]  J. Andel Sequential Analysis , 2022, The SAGE Encyclopedia of Research Design.

[2]  Adrian Perrig,et al.  Distributed detection of node replication attacks in sensor networks , 2005, 2005 IEEE Symposium on Security and Privacy (S&P'05).

[3]  Roberto Di Pietro,et al.  A randomized, efficient, and distributed protocol for the detection of node replication attacks in wireless sensor networks , 2007, MobiHoc '07.

[4]  Sushil Jajodia,et al.  Efficient Distributed Detection of Node Replication Attacks in Sensor Networks , 2007, Twenty-Third Annual Computer Security Applications Conference (ACSAC 2007).

[5]  Hari Balakrishnan,et al.  Fast portscan detection using sequential hypothesis testing , 2004, IEEE Symposium on Security and Privacy, 2004. Proceedings. 2004.