Random neighbour-based fault localization

In the large-scale network, the router acts an increasingly important role but the malicious behaviours including packets dropping and corruption of the malicious routers harm the performance of the network. Actually, many work has been proposed to locate the potential failure nodes but they all suffer from some issues of performance and scalability, which are not practical for the network environment. To deal with these problems, we introduce random neighbour-based fault localization (RNFL). It utilizes neighbourhood nodes and message authentication code (MAC) to check the integrity of packets so that RNFL can detect the malicious nodes. Besides, it supports dynamic routing and the experiment shows that it only puts small extra computing burden (less than 10%) on the network routers.

[1]  Jean Arlat,et al.  IEEE Transactions on Dependable and Secure Computing , 2006 .

[2]  Nick McKeown,et al.  I Know What Your Packet Did Last Hop: Using Packet Histories to Troubleshoot Networks , 2014, NSDI.

[3]  Adrian Perrig,et al.  Seven cardinal properties of sensor network broadcast authentication , 2006, SASN '06.

[4]  Xin Zhang,et al.  Packet-dropping adversary identification for data plane security , 2008, CoNEXT '08.

[5]  Eddie Kohler,et al.  The Click modular router , 1999, SOSP.

[6]  Stefan Savage,et al.  Fatih: detecting and isolating malicious routers , 2005, 2005 International Conference on Dependable Systems and Networks (DSN'05).

[7]  Michael E. Kounavis,et al.  Encrypting the internet , 2010, SIGCOMM '10.

[8]  Stefan Savage,et al.  Detecting and Isolating Malicious Routers , 2006, IEEE Transactions on Dependable and Secure Computing.

[9]  Hisashi Kobayashi,et al.  Highly secure and efficient routing , 2004, IEEE INFOCOM 2004.

[10]  Ted Krovetz,et al.  UMAC: Message Authentication Code using Universal Hashing , 2006, RFC.

[11]  Bowen Zhou,et al.  WuKong: automatically detecting and localizing bugs that manifest at large system scales , 2013, HPDC '13.

[12]  Katerina J. Argyraki,et al.  Loss and Delay Accountability for the Internet , 2007, 2007 IEEE International Conference on Network Protocols.

[13]  Sharon Goldberg,et al.  Protocols and Lower Bounds for Failure Localization in the Internet , 2008, EUROCRYPT.

[14]  Xin Zhang,et al.  Secure and Scalable Fault Localization under Dynamic Traffic Patterns , 2012, 2012 IEEE Symposium on Security and Privacy.