Defence against packet injection in ad hoc networks

Qijun Gu; Peng Liu; Chao Hsien Chu; Sencun Zhu

doi:10.1504/ijsn.2007.012832

Defence against packet injection in ad hoc networks

Qijun Gu, Peng Liu, Chao Hsien Chu, Sencun Zhu

Research output: Contribution to journal › Article › peer-review

12 Scopus citations

Abstract

Wireless ad hoc networks have very limited network resources and are thus susceptible to attacks that focus on resource exhaustion, such as the injection of junk packets. These attacks cause serious denial-of-service via wireless channel contention and network congestion. Although ad hoc network security has been extensively studied, most previous work focuses on secure routing, but cannot prevent attackers from injecting a large number of junk data packets into a route that has been established. We propose an on-demand hop-by-hop source authentication protocol, namely Source authentication forwarding (SAF), to defend against this type of packet injection attacks. The protocol can either immediately filter out injected junk packets with very high probability or expose the true identity of an injector. Unlike other forwarding defences, this protocol is designed to fit in the unreliable environment of ad hoc networks and incurs lightweight overhead in communication and computation.

Original language	English (US)
Pages (from-to)	154-169
Number of pages	16
Journal	International Journal of Security and Networks
Volume	2
Issue number	1-2
DOIs	https://doi.org/10.1504/ijsn.2007.012832
State	Published - 2007

All Science Journal Classification (ASJC) codes

Safety, Risk, Reliability and Quality
Computer Networks and Communications
Electrical and Electronic Engineering

Access to Document

10.1504/ijsn.2007.012832

Cite this

@article{0841bc3ee9a947b8a9392303435be038,

title = "Defence against packet injection in ad hoc networks",

abstract = "Wireless ad hoc networks have very limited network resources and are thus susceptible to attacks that focus on resource exhaustion, such as the injection of junk packets. These attacks cause serious denial-of-service via wireless channel contention and network congestion. Although ad hoc network security has been extensively studied, most previous work focuses on secure routing, but cannot prevent attackers from injecting a large number of junk data packets into a route that has been established. We propose an on-demand hop-by-hop source authentication protocol, namely Source authentication forwarding (SAF), to defend against this type of packet injection attacks. The protocol can either immediately filter out injected junk packets with very high probability or expose the true identity of an injector. Unlike other forwarding defences, this protocol is designed to fit in the unreliable environment of ad hoc networks and incurs lightweight overhead in communication and computation.",

author = "Qijun Gu and Peng Liu and Chu, {Chao Hsien} and Sencun Zhu",

year = "2007",

doi = "10.1504/ijsn.2007.012832",

language = "English (US)",

volume = "2",

pages = "154--169",

journal = "International Journal of Security and Networks",

issn = "1747-8405",

publisher = "Inderscience Enterprises Ltd",

number = "1-2",

}

TY - JOUR

T1 - Defence against packet injection in ad hoc networks

AU - Gu, Qijun

AU - Liu, Peng

AU - Chu, Chao Hsien

AU - Zhu, Sencun

PY - 2007

Y1 - 2007

N2 - Wireless ad hoc networks have very limited network resources and are thus susceptible to attacks that focus on resource exhaustion, such as the injection of junk packets. These attacks cause serious denial-of-service via wireless channel contention and network congestion. Although ad hoc network security has been extensively studied, most previous work focuses on secure routing, but cannot prevent attackers from injecting a large number of junk data packets into a route that has been established. We propose an on-demand hop-by-hop source authentication protocol, namely Source authentication forwarding (SAF), to defend against this type of packet injection attacks. The protocol can either immediately filter out injected junk packets with very high probability or expose the true identity of an injector. Unlike other forwarding defences, this protocol is designed to fit in the unreliable environment of ad hoc networks and incurs lightweight overhead in communication and computation.

AB - Wireless ad hoc networks have very limited network resources and are thus susceptible to attacks that focus on resource exhaustion, such as the injection of junk packets. These attacks cause serious denial-of-service via wireless channel contention and network congestion. Although ad hoc network security has been extensively studied, most previous work focuses on secure routing, but cannot prevent attackers from injecting a large number of junk data packets into a route that has been established. We propose an on-demand hop-by-hop source authentication protocol, namely Source authentication forwarding (SAF), to defend against this type of packet injection attacks. The protocol can either immediately filter out injected junk packets with very high probability or expose the true identity of an injector. Unlike other forwarding defences, this protocol is designed to fit in the unreliable environment of ad hoc networks and incurs lightweight overhead in communication and computation.

UR - http://www.scopus.com/inward/record.url?scp=74549177130&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=74549177130&partnerID=8YFLogxK

U2 - 10.1504/ijsn.2007.012832

DO - 10.1504/ijsn.2007.012832

M3 - Article

AN - SCOPUS:74549177130

SN - 1747-8405

VL - 2

SP - 154

EP - 169

JO - International Journal of Security and Networks

JF - International Journal of Security and Networks

IS - 1-2

ER -

Defence against packet injection in ad hoc networks

Abstract

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this