Securing QoS signaling in IP-based military Ad Hoc networks

QoS qualifiers in the IP header are prone to attacks. Malicious modifications may lead to theft of service as well as denial of service. Standard IPsec does not cover these header fields, leaving them prone to attacks. The article proposes a variant of the IPsec authentication header that includes protection of these fields. The solution is designed for single-domain networks with planned origin, such as military ad hoc networks.

[1]  Randall J. Atkinson,et al.  Security Architecture for the Internet Protocol , 1995, RFC.

[2]  Andrew T. Campbell,et al.  INSIGNIA: An IP-Based Quality of Service Framework for Mobile ad Hoc Networks , 2000, J. Parallel Distributed Comput..

[3]  Udo W. Pooch,et al.  Quality of service (qos) security in mobile ad hoc networks , 2005 .

[4]  Scott Shenker,et al.  Integrated Services in the Internet Architecture : an Overview Status of this Memo , 1994 .

[5]  Danny Dolev,et al.  On the security of public key protocols , 1981, 22nd Annual Symposium on Foundations of Computer Science (sfcs 1981).

[6]  Andrew T. Campbell,et al.  SWAN: service differentiation in stateless wireless ad hoc networks , 2002, Proceedings.Twenty-First Annual Joint Conference of the IEEE Computer and Communications Societies.

[7]  Hugo Krawczyk,et al.  A Security Architecture for the Internet Protocol , 1999, IBM Syst. J..

[8]  E. Olaussen,et al.  A policy-based priority and precedence framework for military IP networks , 2004, IEEE MILCOM 2004. Military Communications Conference, 2004..

[9]  Kee Chaing Chua,et al.  A flexible quality of service model for mobile ad-hoc networks , 2000, VTC2000-Spring. 2000 IEEE 51st Vehicular Technology Conference Proceedings (Cat. No.00CH37026).

[10]  Lixia Zhang,et al.  Resource ReSerVation Protocol (RSVP) - Version 1 Functional Specification , 1997, RFC.

[11]  Randall J. Atkinson,et al.  IP Encapsulating Security Payload (ESP) , 1995, RFC.

[12]  David L. Black,et al.  The Addition of Explicit Congestion Notification (ECN) to IP , 2001, RFC.

[13]  Stephen T. Kent,et al.  IP Authentication Header , 1995, RFC.

[14]  David L. Black,et al.  An Architecture for Differentiated Service , 1998 .

[15]  Fred Baker,et al.  Implementing an Emergency Telecommunications Service (ETS) for Real-Time Services in the Internet Protocol Suite , 2006, RFC.