Detection and Prevention of Selective Forwarding-Based Denial-of-Service Attacks in WSNs
Designing wireless sensor networks (WSNs) that can work reliably in the presence of inside packet drop attackers is very challenging. Current trust mechanisms and avoidance approaches are promising but have their limitations. Avoidance approaches transmit multiple copies of the packets to avoid atta...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Wiley
2013-08-01
|
| Series: | International Journal of Distributed Sensor Networks |
| Online Access: | https://doi.org/10.1155/2013/205920 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832547209283895296 |
|---|---|
| author | Youngho Cho Gang Qu |
| author_facet | Youngho Cho Gang Qu |
| author_sort | Youngho Cho |
| collection | DOAJ |
| description | Designing wireless sensor networks (WSNs) that can work reliably in the presence of inside packet drop attackers is very challenging. Current trust mechanisms and avoidance approaches are promising but have their limitations. Avoidance approaches transmit multiple copies of the packets to avoid attackers and cause high overhead. In trust mechanisms, each sensor monitors it neighbors, evaluates their trustworthiness, classifies them as either trustworthy or untrustworthy, and then discards untrustworthy sensors from the network. However, malicious insiders, which are legitimate members of the network and know exactly what their monitoring nodes know, can launch attacks carefully to avoid being detected and discarded from the network. In this paper, we first show that this is possible by introducing a selective forwarding-based denial-of-service (DoS) attack. We then propose an enhanced trust mechanism to detect such attackers and identify their victims. Furthermore, we design two attacker-aware protocols to reroute victim nodes' packets by avoiding the attackers. We conduct extensive OPNET simulations to validate our claims and demonstrate the advantages of our proposed approaches. Finally, as a complementary defensive method to our detection and avoidance approaches, we introduce a prevention routing algorithm that proactively prevents the attack and provide our preliminary results to evaluate its performance. |
| format | Article |
| id | doaj-art-32044b3b5ccc48829faa338581ba7066 |
| institution | Kabale University |
| issn | 1550-1477 |
| language | English |
| publishDate | 2013-08-01 |
| publisher | Wiley |
| record_format | Article |
| series | International Journal of Distributed Sensor Networks |
| spelling | doaj-art-32044b3b5ccc48829faa338581ba70662025-02-03T06:45:36ZengWileyInternational Journal of Distributed Sensor Networks1550-14772013-08-01910.1155/2013/205920Detection and Prevention of Selective Forwarding-Based Denial-of-Service Attacks in WSNsYoungho ChoGang QuDesigning wireless sensor networks (WSNs) that can work reliably in the presence of inside packet drop attackers is very challenging. Current trust mechanisms and avoidance approaches are promising but have their limitations. Avoidance approaches transmit multiple copies of the packets to avoid attackers and cause high overhead. In trust mechanisms, each sensor monitors it neighbors, evaluates their trustworthiness, classifies them as either trustworthy or untrustworthy, and then discards untrustworthy sensors from the network. However, malicious insiders, which are legitimate members of the network and know exactly what their monitoring nodes know, can launch attacks carefully to avoid being detected and discarded from the network. In this paper, we first show that this is possible by introducing a selective forwarding-based denial-of-service (DoS) attack. We then propose an enhanced trust mechanism to detect such attackers and identify their victims. Furthermore, we design two attacker-aware protocols to reroute victim nodes' packets by avoiding the attackers. We conduct extensive OPNET simulations to validate our claims and demonstrate the advantages of our proposed approaches. Finally, as a complementary defensive method to our detection and avoidance approaches, we introduce a prevention routing algorithm that proactively prevents the attack and provide our preliminary results to evaluate its performance.https://doi.org/10.1155/2013/205920 |
| spellingShingle | Youngho Cho Gang Qu Detection and Prevention of Selective Forwarding-Based Denial-of-Service Attacks in WSNs International Journal of Distributed Sensor Networks |
| title | Detection and Prevention of Selective Forwarding-Based Denial-of-Service Attacks in WSNs |
| title_full | Detection and Prevention of Selective Forwarding-Based Denial-of-Service Attacks in WSNs |
| title_fullStr | Detection and Prevention of Selective Forwarding-Based Denial-of-Service Attacks in WSNs |
| title_full_unstemmed | Detection and Prevention of Selective Forwarding-Based Denial-of-Service Attacks in WSNs |
| title_short | Detection and Prevention of Selective Forwarding-Based Denial-of-Service Attacks in WSNs |
| title_sort | detection and prevention of selective forwarding based denial of service attacks in wsns |
| url | https://doi.org/10.1155/2013/205920 |
| work_keys_str_mv | AT younghocho detectionandpreventionofselectiveforwardingbaseddenialofserviceattacksinwsns AT gangqu detectionandpreventionofselectiveforwardingbaseddenialofserviceattacksinwsns |