On intrusion detection and response for mobile ad hoc networks

Thumbnail Image

Files

122.pd.pdf (228.7 KB)

Links to Files

https://ieeexplore.ieee.org/document/1395172

Permanent Link

10.1109/PCCC.2004.1395172
 http://hdl.handle.net/11603/12248

Collections

UMBC Computer Science and Electrical Engineering Department
UMBC Faculty Collection
UMBC Student Collection

Author/Creator

Author/Creator ORCID

Date

2004-04-16

Type of Work

conference papers and proceedings preprints
Text

Department

Program

Citation of Original Publication

J. Parker , J. Undercoffer , J. Pinkston , A. Joshi , On Intrusion Detection in Mobile Ad Hoc Networks, 23rd IEEE International Performance Computing and Communications Conference -- Workshop on Information Assurance , DOI: 10.1109/PCCC.2004.1395172

Rights

This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author.
© 2004 IEEE

Subjects

intrusion detection
mobile ad hoc networks
packet snooping
ad hoc cluster
routing protocols
telecommunication security
mobile radio
UMBC Ebiquity Research Group

Abstract

We present network intrusion detection mechanisms that rely upon packet snooping to detect aberrant behavior in mobile ad hoc networks. Our extensions, which are applicable to several mobile ad hoc routing protocols, offer two response mechanisms, passive -- to singularly determine if a node is intrusive and act to protect itself from attacks, or active -- to collaboratively determine if a node is intrusive and act to protect all of the nodes of an ad-hoc cluster. We have implemented our extensions using the GloMoSim simulator and detail their efficacy under a variety of operational conditions. Based upon our positive simulation results, we are currently implementing our extensions in laptop computers and PDA's and constructing a testbed that use IEEE 802.11 with mobile ad hoc extensions.