A Formal Rule-Based Scheme for Digital Investigation in Wireless Ad-hoc Networks

Author

Rekhis, Slim ; Boudriga, Noureddine

Author_Institution

Commun. Networks & Security Res. Lab., Univ. of the 7th November, Carthage, Tunisia

fYear

2009

fDate

21-21 May 2009

Firstpage

62

Lastpage

72

Abstract

Existing investigation schemes are not suitable to cope with attacks in wireless networks, especially in MANet. We propose in this paper a formal approach for digital investigation of security attacks in wireless networks. We provide a model for describing attack scenarios in wireless environment, and system and network evidences generated consequently. We develop an inference system that integrates the two types of evidences, handles incompleteness and duplication of information in them, and allows to generate potential and provable actions and attack scenarios. To exemplify the proposal, we consider a case study dealing with a Denial of Service attack on a web server, where the attacker and the target represent mobile nodes.

Keywords

Internet; ad hoc networks; mobile radio; security of data; telecommunication security; MANet; Web server; denial of service attack; digital investigation; formal rule; inference system; security attacks; wireless ad-hoc networks; Ad hoc networks; Communication networks; Communication system security; Conferences; Digital forensics; Information security; Network topology; Proposals; Telecommunication traffic; Wireless networks; Attack Scenarios Reconstruction; Digital Investigation; Formal Proof; Network of Observation; Wireless Networks;

fLanguage

English

Publisher

ieee

Conference_Titel

Systematic Approaches to Digital Forensic Engineering, 2009. SADFE '09. Fourth International IEEE Workshop on

Conference_Location

Berkeley, CA

Print_ISBN

978-0-7695-3792-4

Type

conf

DOI

10.1109/SADFE.2009.16

Filename

5341557