A DOS-resilient design for delay tolerant networks

Author

Ansa, Godwin ; Criuckshank, Haitham ; Sun, Zhili ; Al-Siyabi, Mohammad

Author_Institution

Centre for Commun. Syst. Res., Univ. of Surrey, Guildford, UK

fYear

2011

fDate

4-8 July 2011

Firstpage

424

Lastpage

429

Abstract

Packet injection by an attacker can trigger flooding-based DOS attacks. This paper seeks to provide a simple and robust approach to protect the access control, data integrity and sender authentication security services in resource-constrained delay tolerant networks. The aim is to make security protocols providing these mandatory security services resilient to resource exhaustion DOS attacks. To achieve this we propose a hierarchical design based on the use of light-weight and hard to forge cookies. The DOS defense mechanism can proactively identify and discard attack bundles. Compromised insider nodes are identified and isolated.

Keywords

authorisation; computer network security; cryptographic protocols; telecommunication security; DOS defense mechanism; DOS-resilient design; access control; data integrity; flooding-based DOS attacks; packet injection; resource exhaustion DOS attacks; resource-constrained delay tolerant networks; security protocols; sender authentication security service; Authentication; Computer crime; Logic gates; Payloads; Satellites; Wireless sensor networks; Denial of service; attacker; delay tolerant network; resource exhaustion;

fLanguage

English

Publisher

ieee

Conference_Titel

Wireless Communications and Mobile Computing Conference (IWCMC), 2011 7th International

Conference_Location

Istanbul

Print_ISBN

978-1-4244-9539-9

Type

conf

DOI

10.1109/IWCMC.2011.5982571

Filename

5982571