Download Document

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
Document related concepts

Internet protocol suite wikipedia , lookup

Airborne Networking wikipedia , lookup

Computer network wikipedia , lookup

CAN bus wikipedia , lookup

Wireless security wikipedia , lookup

Power over Ethernet wikipedia , lookup

Recursive InterNetwork Architecture (RINA) wikipedia , lookup

Cracking of wireless networks wikipedia , lookup

IEEE 1394 wikipedia , lookup

IEEE 802.1aq wikipedia , lookup

IEEE 1355 wikipedia , lookup

Routing in delay-tolerant networking wikipedia , lookup

IEEE 802.11 wikipedia , lookup

Transcript 
A Study of On-Off Attack Models for
Wireless Ad Hoc Networks
L. Felipe Perrone <[email protected]>
Dept. of Computer Science
Bucknell University, Lewisburg, PA, U.S.A.
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Vulnerabilities in Wireless Ad Hoc
Networks
It’s hard to guarantee the physical integrity
of the nodes and the conditions in their
surrounding environment.
Communication protocols are subject to
design and implementation faults.
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Motivation
We need to understand the risks of the
technology before we can rely on it for
mission-critical applications.
Risks can be quantified/estimated with
computer simulation, but for that we need
a model.
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
On-Off Attack Model
 A ~  A : jitter for attack A
tsA ~ TsA : start time for attack A
TsA,n  TsA   A
tsA,n ~ TsA,n : start time for attack A
on node n
p : prob. that some
anon ~ Anon , anoff ~ Anoff
node n is attacked
Anon : length of on-period
or launches an attack
Anoff : length of off-period
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
The Reboot Attack
n
Node n is attacked
while (simulation not finished) do
if Bernoulli(REBOOT PROBABILITY)==1 then
ts,n ← U [ts, ts + ]
at time ts,n do:
while (true) do
power down and stay offline for aon sec.
bootup and stay online for aoff sec.
end while
end if
end while
The periodic rebooting of node n causes the routing protocol to send
out messages to re-establish routes. A physical action against the node
(e.g., removing and reinstalling batteries) is able to create additional
control traffic in the network.
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
The Range Attack
n
Node n is attacked
while (simulation not finished) do
if Bernoulli(REBOOT PROBABILITY)==1 then
ts,n ← U [ts, ts + ]
at time ts,n do:
while (true) do
decrease TX range for aon sec.
restore original TX range for aoff sec.
end while
end if
end while
The periodic changes in the transmission power of node n cause the
routing protocol to send out messages to update shortest routes. A
physical action against the node (e.g., obstructing the node’s antenna)
is able to create additional control traffic in the network.
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
SWAN: a Simulation Tool
read terrain
features
Physical Process
Power Consumption
Model
Terrain
Model
read terrain
features
memory
Mobility
Model
Protocol
Graph
time
run
thread
OS
Model
(DaSSF
Runtime
Kernel)
Host Model
read terrain
features
9 Ottobre 2006
Università di Bologna
RF Channel Model
Proceedings of IEEE OpComm 2006
Network Model
Sub-models
APP
APP
APP


NET
NET
NET



MAC
PHY
MAC
PHY
MAC
PHY


Physical Layer:
radio sensing, bit transmission
MAC Layer:
retransmissions, contention
Network Layer:
routing algorithms
Application Layer:
traffic generation or “direct”
execution of real application
RADIO PROPAGATION SUB-MODEL
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Experimental Scenario
RF propagation: 2-ray ground
reflection, antenna height 1.5m,
tx power 15dBm, SNR threshold
packet reception.
Mobility: stationary; grid
deployment.
Traffic generation: variation of CBR;
session length=60|120,
destination is random for each
session, CBR 3072 bytes/s for
each session.
Network: 36 nodes in a 6x6 regular
grid (150 m spacing).
Transient avoidance: statistics
collected after 100 sec.
9 Ottobre 2006
Protocol stack: IEEE 802.11b PHY
(message retraining modem
capture, 11 Mbit/s), IEEE
802.11b MAC (DCF), ARP, IP,
AODV routing (no local route
repair, MAC acknowledgements,
expanding ring search, active
route time out of 10 sec., max
two retries for RREQs).
Arena size: 900 m x 900 m.
Replications: 20 runs with different
seeds for every random stream
in the model. For all metrics
estimated, we produced 95%
confidence intervals.
Università di Bologna
Proceedings of IEEE OpComm 2006
Effect of Reboot Attack Jitter on
PDR
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Effect of Reboot Attack on End-toEnd Delay
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Effect of Reboot Attack Jitter on
AODV Control Packets
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Effect of Length of Attack Cycles
on AODV Control Packets
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Effect of Range Attack AODV
Control Packets (Jitter=0)
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Effect of Range Attack on PDR
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Effect of Range Attack on End-toEnd Delay
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Summary
We presented a model that is general
within the category of on-off attack
processes.
 Our experimental results quantify the
effects of two simple attack models on a
wireless grid using ad hoc routing (AODV).

9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Future Work
• Determine the impact of the attacks on
other metrics of “network health”. We have
investigated the effects on different metrics to
quantify connectivity.
• Determine the length of the transients
experienced by different metrics when there’s
an attack state transition.
• Evaluate the impact of the attacks when the
network topology is a random graph. The
choice of analysis methodology will be
important.
• Evaluate the impact of the attacks when
cycle lengths are given by more complex
probability distributions.
9 Ottobre 2006
Università di Bologna
Proceedings of IEEE OpComm 2006
Related documents
IEEE Press Liaison - University of Hawaii
IEEE Press Liaison - University of Hawaii
Prof. Luca Languasco
Prof. Luca Languasco
Virtual Meetings
Virtual Meetings
Call for Papers The 2009 IEEE International Workshop on Intelligent
Call for Papers The 2009 IEEE International Workshop on Intelligent
Preface
Preface
IEEE Northern Jersey Section Distinguished Lecture (SMC, CS, SP
IEEE Northern Jersey Section Distinguished Lecture (SMC, CS, SP
Slide 1
Slide 1
Slide 1
Slide 1
Locandina Cold War Legacy 2014 - Unibo magazine
Locandina Cold War Legacy 2014 - Unibo magazine
Title - K.f.u.p.m. ISI
Title - K.f.u.p.m. ISI