Title :
Structural Results for Combined Continuous User Authentication and Intrusion Detection in High Security Mobile Ad-Hoc Networks
Author :
Shengrong Bu ; Yu, F. Richard ; Liu, Xiaoping P. ; Tang, Hongying
Author_Institution :
Dept. of Syst. & Comput. Eng., Carleton Univ., Ottawa, ON, Canada
fDate :
9/1/2011 12:00:00 AM
Abstract :
Continuous user authentication is an important prevention-based approach to protect high security mobile ad-hoc networks (MANETs). On the other hand, intrusion detection systems (IDSs) are also important in MANETs to effectively identify malicious activities. Considering these two approaches jointly is effective in optimal security design taking into account system security requirements and resource constraints in MANETs. To obtain the optimal scheme of combining continuous user authentication and IDSs in a distributed manner, we formulate the problem as a partially observable Markov decision process (POMDP) multi-armed bandit problem. We present a structural results method to solve the problem for a large network with a variety of nodes. The policies derived from structural results are easy to implement in practical MANETs. Simulation results are presented to show the effectiveness and the performance of the proposed scheme.
Keywords :
Markov processes; government policies; mobile ad hoc networks; telecommunication security; IDS; POMDP; continuous user authentication; high security MANET; high security mobile ad-hoc network; intrusion detection system; multiarmed bandit problem; optimal security design; partially observable Markov decision process; Ad hoc networks; Authentication; Indexes; Intrusion detection; Mobile computing; Sensors; Authentication; intrusion detection; mobile ad-hoc networks; security;
Journal_Title :
Wireless Communications, IEEE Transactions on
DOI :
10.1109/TWC.2011.071411.102123
