Title :
A DOS-resilient design for delay tolerant networks
Author :
Ansa, Godwin ; Criuckshank, Haitham ; Sun, Zhili ; Al-Siyabi, Mohammad
Author_Institution :
Centre for Commun. Syst. Res., Univ. of Surrey, Guildford, UK
Abstract :
Packet injection by an attacker can trigger flooding-based DOS attacks. This paper seeks to provide a simple and robust approach to protect the access control, data integrity and sender authentication security services in resource-constrained delay tolerant networks. The aim is to make security protocols providing these mandatory security services resilient to resource exhaustion DOS attacks. To achieve this we propose a hierarchical design based on the use of light-weight and hard to forge cookies. The DOS defense mechanism can proactively identify and discard attack bundles. Compromised insider nodes are identified and isolated.
Keywords :
authorisation; computer network security; cryptographic protocols; telecommunication security; DOS defense mechanism; DOS-resilient design; access control; data integrity; flooding-based DOS attacks; packet injection; resource exhaustion DOS attacks; resource-constrained delay tolerant networks; security protocols; sender authentication security service; Authentication; Computer crime; Logic gates; Payloads; Satellites; Wireless sensor networks; Denial of service; attacker; delay tolerant network; resource exhaustion;
Conference_Titel :
Wireless Communications and Mobile Computing Conference (IWCMC), 2011 7th International
Conference_Location :
Istanbul
Print_ISBN :
978-1-4244-9539-9
DOI :
10.1109/IWCMC.2011.5982571
