passive routing attacks in manet
play

Passive Routing Attacks in MANET ! Location privacy attack - PDF document

Jan 13, 2023 •228 likes •345 views

ANODR : AN onymous O n- D emand R outing with Untraceable Routes for Mobile Ad Hoc Networks MobiHOC 2003 June 3, 2003 Jiejun Kong, Xiaoyan Hong Wireless-Adaptive-Mobility Laboratory Department of Computer Science University of California,

  1. ANODR : AN onymous O n- D emand R outing with Untraceable Routes for Mobile Ad Hoc Networks MobiHOC 2003 June 3, 2003 Jiejun Kong, Xiaoyan Hong Wireless-Adaptive-Mobility Laboratory Department of Computer Science University of California, Los Angeles Passive Routing Attacks in MANET Location Privacy Attack: Location Privacy Attack: Correlate nodes’ ids and their locations Correlate nodes’ ids and their locations Motion Inference Attack: Motion Inference Attack: Visualize nodes’ motion patterns Visualize nodes’ motion patterns Route Tracing Attack: Route Tracing Attack: Visualize (multi-hop) ad hoc routes Visualize (multi-hop) ad hoc routes Passive Attacker 2/20 MobiHOC 2003 1

  2. Passive Routing Attacks in MANET ! Location privacy attack – Correlate a mobile node with its locations (at the granularity of adversary’s adjustable radio receiving range) – Counting/analyzing mobile nodes in a cell ! Route tracing attack – Visualizing ad hoc routes ! Motion inference attack – Visualizing motion patterns of mobile nodes – Deducing motion pattern of a set of nodes ! Other traffic analysis – Analyzing packet flow metrics (as in Internet traffic analysis) ! Orthogonal to routing disruption attacks 3/20 MobiHOC 2003 Adversary in Mobile Ad Hoc Networks ! External adversary : wireless link intruder – Eavesdropper – Traffic analyst (not necessary to break cryptosystem) – Unbounded interception: adversary can sniff anywhere anytime ! Internal adversary : mobile node intruder – Capture, compromise, tamper – Passive internal adversary is hard to detect due to lack of exhibition of malicious behavior – Bounded : otherwise secure networking is impossible 4/20 MobiHOC 2003 2

  3. Problems of Ad Hoc Routing ! Must rely on neighbors in data forwarding – Neighbors need to know routing info – “ I can forward your packets”: All existing ad hoc routing protocols reveal nodes’ identity to its neighbors — abundant chances for passive attackers to obtain static info ! [ MobiHOC’01, BasagniHBR ] Encrypted routing information can be decrypted by other internal nodes – Traceable by traffic analysts (without compromising cryptographically protected information) – Allows internal adversary, no location privacy support 5/20 MobiHOC 2003 Motivations for New Secure Routing ! Resistance against location privacy, route tracing, motion inference attacks – Using established security methodologies ! Efficiency – Comparable to existing ad hoc routing schemes ! Low probability of detection, interception, and exploitation (LPD/LPI/LPE) – Focus on data forwarding, not on physical layer radio signal processing 6/20 MobiHOC 2003 3

  4. Related Work ! Other on-demand routing – DSR, AODV ! Other anonymity research for wired network – Onion routing, Crowds, Hordes ! Other MANET security protocols with orthogonal goals – For routing integrity: SEAD, Ariadne, ARAN, etc. – For network access control: URSA, etc. ! Either do not address anonymity & untraceability concerns, or not fit in MANET 7/20 MobiHOC 2003 Design Challenges ! Passive traffic analysis – Side channels: time correlation, content correlation ! Passive internal adversary – Simple encryption does not solve the problem ! Intrusion Tolerance – No single point of compromise or failure – Fully distributed design, no centralized control in MANET ! Avoid expensive processing overheads – Our measurement & simulation show expensive processing overheads cause non-trivial routing performance degradation 8/20 MobiHOC 2003 4

  5. Processing Overhead (Measured on iPAQ3670, Intel StrongARM 206MHz CPU) Asymmetric key Single Single cryptosystem decryption/signing encryption/verifying ECAES (160-bit key) 42 ms 160 ms RSA (1024-bit key) 900 ms 30 ms El Gamal (1024-bit key) 80 ms 100 ms Symmetric key Decryption Encryption cryptosystem (128-bit) bit-rate bit-rate AES/Rijndael 29.2 Mbps 29.1 Mbps RC6 53.8 Mbps 49.2 Mbps Mars 36.8 Mbps 36.8 Mbps Serpent 15.2 Mbps 17.2 Mbps TwoFish 30.9 Mbps 30.8 Mbps 9/20 MobiHOC 2003 Goal and Design ! Efficient routing while anonymous & untraceable to all thy (legitimate & adversarial) neighbors: Mission impossible? ! Clues: MANET on-demand routing likely has two broadcast mechanisms – Global route discovery (aka. RREQ flooding) – Per-hop wireless local radio broadcast ! Our design – On demand routing – Broadcast with anonymous trapdoor assignment 10/20 MobiHOC 2003 5

  6. Framework of Anonymous Route Discovery (between src and dest) ! Similar to existing on demand routing schemes – Route-REQuest 〈 〈 〈 〈 RREQ,seqnum, to_be_opened_by_dest anonymous_trapdoor 〉 〉 〉 〉 – Route-REPly 〈 RREP, presented_by_dest anonymous_proof 〉 〈 〈 〈 〉 〉 〉 ! A global trapdoor can only be opened by dest – Not required to know where dest is – dest can present an anonymous proof of door opening ! Need more design to address per-hop 11/20 MobiHOC 2003 Per-hop Local Wireless Broadcast with Anonymous Trapdoor Assignment Efficient Efficient Trapdoor Info Trapdoor Info ! Trapdoored messages are delivered to specific node(s) – But not other nodes in the same receiving group 12/20 MobiHOC 2003 6

  7. ANODR Route Discovery (using TBO - Trapdoor Boomerang Onion) E Nym E Nym D Route-REPly Nym C C D K A ( N A , hello) K B ( N B , K A ( N A , hello)) K C ( N C , K B ( N B , K A ( N A , hello))) K A ( N A , hello) K C ( N C , K B ( N B , K A ( N A , hello))) K B ( N B , K A ( N A , hello)) B Nym B ! ANODR : destination E receives A 〈 RREQ, seqnum, open_by_ E , onion 〉 〈 〈 〈 〉 〉 〉 where Route-REQuest onion = K D ( N D , K C ( N C , K B ( N B , K A ( N A , hello)))) 〈 RREP, proof_from_ E , onion, Nym X 〉 〈 〉 〈 〈 〉 〉 Nym X is selected by X and shared on the hop 13/20 MobiHOC 2003 Make On demand Routes Untraceable ! ANODR-TBO is robust against node intrusion – Fully anonymous: no node identity revealed – Fully distributed control: avoid single point of compromise – Multiple paths feasible: avoid single point of failure ! So far anonymous only, and symmetric key only – More complexity in realizing untraceability to hide side channels & resist traffic analysis ! Protect RREP flow – Need an asymmetric secret channel • Modified RREQ: Embed a temporary asymmetric key ecpk1 〈 RREQ, ecpk1 , seqnum, open_by_ E , onion 〉 〈 〉 〈 〈 〉 〉 • Modified RREP: Exchange a secret seed Nym K seed 〈 〈 〈 〈 RREP, ecpk1 ( K seed ) , K seed ( proof_from_ E , onion ) 〉 〉 〉 〉 14/20 MobiHOC 2003 7

  8. Make Routes Untraceable (cont’d) ! Protect reused route pseudonyms – Using K seed to do self-synchronized route pseudonym update – So far all pseudonyms/aliases are one-time aliases ! ! Playout “Mixing” Buffer, Re-order, Batch send, – Resist traffic analysis: Insert dummy/decoy packets Time correlation Alice Bob MIX Content correlation Eve 15/20 MobiHOC 2003  Simulation QualNet    ! Metrics – Data delivery ratio, end-to-end latency, normalized overhead, playout “mixing” performance ! Impact of – Processing overhead (no routing optimization on ANODRs) 1) AODV with routing optimization and no cryptographic overhead 2) Anonymous-only ANODR-TBO: symmetric key processing only 3) Anonymous+Untraceable ANODR-TBO: 2) + limited asymmetric key processing 4) ANODR-PO , a naïve MIX-Net ported from wired networks, asymmetric key processing in anonymous route discovery Communication overhead ( ≈ ≈ 400bit onion, etc.) ≈ ≈ – – Mobility – Playout “mixing” buffer size r X & window size t X 16/20 MobiHOC 2003 8

  9. Evaluation: Delivery Ratio & Latency (vs. mobility) Anonymous+Untraceable Anonymous only Anonymous+Untraceable Anonymous only Anonymous only Anonymous+Untraceable Anonymous only Anonymous+Untraceable ! Acceptable delivery ratio degradation for both “anonymous-only” ( ≈ ≈ 3%) and “anonymous + untraceable” ( ≈ ≈ ≈ ≈ 12%) schemes ≈ ≈ ! If without untraceability support (which uses asymmetric key cryptosystems) , ANODR-TBO’s performance is similar to AODV – Asymmetric key processings cause performance degradation 17/20 MobiHOC 2003 Evaluation: Control Packet Overhead (vs. mobility) Anonymous+Untraceable Anonymous+Untraceable Anonymous only Anonymous only Anonymous+Untraceable Anonymous+Untraceable Anonymous only Anonymous only ! Control packet overhead largely due to onion size – Elliptic curves cryptosystems feature comparable storage (but not latency) overhead with symmetric key cryptosystems 18/20 MobiHOC 2003 9

  10. Evaluation: Playout “Mixing” Performance (vs. r X ) Anonymous+Untraceable ! Playout buffer size r X and playout time window size t X are critical parameters – In some cases, dummy/data ratio is predictable ! May consume resources like battery power, but does not significantly affect data delivery ratio 19/20 MobiHOC 2003 Conclusions and Future Work ! Anonymous on demand routing is feasible and efficient in MANET – Comparable performance to existing on-demand protocol – Intrusion tolerant, esp. against passive adversaries ! Adding untraceable route support is feasible with some efficiency degradation – Limited asymmetric key processing – Tradeoffs in playout “mixing” ! Future improvements – Adaptive “mixing” for better performance – Integration with routing integrity countermeasures – Multi-path routes to address mobility and disruption 20/20 MobiHOC 2003 10

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Next-Gen Proactive MANET Routing MANET, 62th IETF, Minneapolis, 2005 Status Background:

Next-Gen Proactive MANET Routing MANET, 62th IETF, Minneapolis, 2005 Status Background:

Next-Gen Proactive MANET Routing MANET, 62th IETF, Minneapolis, 2005 Status Background: experiences from RFC3626, RFC3648, misc I-Ds Design team: vocal implementers/users of proactive protocols Activities thus far:

357 views • 11 slides
MDBG Tzu-Tung Liao 1 OUTLINE I. Introduction MANET VANET II. Routing Protocols

MDBG Tzu-Tung Liao 1 OUTLINE I. Introduction MANET VANET II. Routing Protocols

A ROUTING METHOD OF VANET MDBG Tzu-Tung Liao 1 OUTLINE I. Introduction MANET VANET II. Routing Protocols in VANET GSR AODV III. MOVING DIRECTION BASED GREEDY(MDBG) IV. MDBG Routing Algorithm V.

511 views • 36 slides
A node in MANET is not about a host. It is about a router! Depending on radio range, not all links

A node in MANET is not about a host. It is about a router! Depending on radio range, not all links

A type of network consisting of mobile nodes that communicate with each other using wireless links to fulfill the need for IP packet routing The operation of MANET can interwork with, but does not rely on, any existing communication

148 views • 10 slides
Changing Paradigms in Mobile Agenda Ad Hoc Networks : MANET Computer Network

Changing Paradigms in Mobile Agenda Ad Hoc Networks : MANET Computer Network

Changing Paradigms in Mobile Agenda Ad Hoc Networks : MANET Computer Network Classification, IEEE 802 project Ad-Hoc Networks(MANETs) Advances in MANET Presented By: Routing Dr. Shailendra Mishra M. Abdul Rahim Khan Areas

333 views • 14 slides
Management Dr. Sulochana Sooriyaarachchi University of Moratuwa Sri Lanka Outline Disaster

Management Dr. Sulochana Sooriyaarachchi University of Moratuwa Sri Lanka Outline Disaster

Endcast for Disaster Management Dr. Sulochana Sooriyaarachchi University of Moratuwa Sri Lanka Outline Disaster scenario Mobile Adhoc Networks (MANET) for communication Traditional MANET routing Mobile stateless routing

1.02k views • 27 slides
Implementing and extending the Optimized Link State Routing Protocol Master presentation by

Implementing and extending the Optimized Link State Routing Protocol Master presentation by

Implementing and extending the Optimized Link State Routing Protocol Master presentation by Andreas Tnnesen andreto@olsr.org http://www.olsr.org Agenda MANET routing Optimized LinkState Routing The UniK OLSR implementation

715 views • 55 slides
Attacks on routing: IP hijacks How Internet number resources are managed

Attacks on routing: IP hijacks How Internet number resources are managed

Attacks on routing: IP hijacks How Internet number resources are managed IANA ARIN LACNIC APNIC RIPE NCC AfriNIC ISP #1 ISP NIC.br NIC.MX LIRs/ISPs

919 views • 40 slides
Internet Resiliency to Attacks and Failures under BGP Policy Routing D. Dolev, S. Jamin, O.

Internet Resiliency to Attacks and Failures under BGP Policy Routing D. Dolev, S. Jamin, O.

Internet Resiliency to Attacks and Failures under BGP Policy Routing D. Dolev, S. Jamin, O. Morkyn, Y. Shavitt Presenter: Shiva Kasiviswanathan Pennsylvania State University University Park Internet Resiliency to Attacks and Failures under BGP

920 views • 61 slides
Relay Attacks on Passive Keyless Entry and Start Systems in Modern Cars Aurlien Francillon,

Relay Attacks on Passive Keyless Entry and Start Systems in Modern Cars Aurlien Francillon,

Relay Attacks on Passive Keyless Entry and Start Systems in Modern Cars Aurlien Francillon, Boris Danev, Srdjan apkun Monday February 7, 2011 System Security Group 1 Modern Cars Evolution Increasing amount of electronics in cars

552 views • 24 slides
Mobile Ad-hoc Network WIDE project/KEIO University ryuji@sfc.wide.ad.jp ToC Global Internet

Mobile Ad-hoc Network WIDE project/KEIO University ryuji@sfc.wide.ad.jp ToC Global Internet

Mobile Ad-hoc Network WIDE project/KEIO University ryuji@sfc.wide.ad.jp ToC Global Internet Connectivity MANET/NEMO integration IPv6 Support on MANET MANET on the Internet Where can MANET be deployed in our daily life?

564 views • 27 slides
Secure Routing in Wireless Sensor Networks: Attacks and Countermeasures C. Karlof and D. Wagner

Secure Routing in Wireless Sensor Networks: Attacks and Countermeasures C. Karlof and D. Wagner

T-79.194 Secure Routing in Wireless Sensor Networks: Attacks and Countermeasures C. Karlof and D. Wagner presentation by Maarit Hietalahti Helsinki University of Technology Laboratory for Theoretical Computer Science

298 views • 14 slides
Threshold Implementations (Efficient TI on AES) Begl Bilgin, Benedikt Gierlichs, Svetla Nikova,

Threshold Implementations (Efficient TI on AES) Begl Bilgin, Benedikt Gierlichs, Svetla Nikova,

Threshold Implementations (Efficient TI on AES) Begl Bilgin, Benedikt Gierlichs, Svetla Nikova, Ventzislav Nikov, and Vincent Rijmen Introduction Physical Attacks Active Passive (Fault Attacks) (Observing Attacks) Side Channel Attacks

644 views • 45 slides
Automatic configuration of IPv6 addresses for MANET with multiple gateways (AMG)

Automatic configuration of IPv6 addresses for MANET with multiple gateways (AMG)

IETF 66th - AUTOCONF WG Montreal, July 2006 Automatic configuration of IPv6 addresses for MANET with multiple gateways (AMG) draft-ruffino-manet-autoconf-multigw-03 Simone Ruffino, Patrick Stupar

527 views • 14 slides
4.3 Routing protocols We first look at Routing Tables and routing mechanisms. A routing table has

4.3 Routing protocols We first look at Routing Tables and routing mechanisms. A routing table has

4.3 Routing protocols We first look at Routing Tables and routing mechanisms. A routing table has columns for the destination network (or hosts) with the corresponding cost and the next router address to reach a destination. Additional

1.08k views • 84 slides
Reduce passive income, reduce taxes We help. You grow. What is passive income and why does it

Reduce passive income, reduce taxes We help. You grow. What is passive income and why does it

Reduce passive income, reduce taxes We help. You grow. What is passive income and why does it matter? Federal government changed rules, effective for tax years that begin after 2018. Canadian controlled private corporations (CPCC) Passive

193 views • 8 slides
Passive Gas System Design PRESENTED BY BRYAN WELDON P.E. Passive System Overview 01 Passive

Passive Gas System Design PRESENTED BY BRYAN WELDON P.E. Passive System Overview 01 Passive

Passive Gas System Design PRESENTED BY BRYAN WELDON P.E. Passive System Overview 01 Passive Components 02 Integrating and Upgrading 03 Questions 04 2 Passive System Overview ___ 3 Passive Gas System ___ 4 Passive Gas System Usually

332 views • 12 slides
PKI FUNDAMENTALS, STATE OF THE ART, VULNERABILITIES by by Bl Fyem CISSP, CCNP,CCDP

PKI FUNDAMENTALS, STATE OF THE ART, VULNERABILITIES by by Bl Fyem CISSP, CCNP,CCDP

DELIVERED AT THE 11TH INTERNATIONAL CONFERENCE OF THE NIGERIA COMPUTER SOCIETY (NCS) DELIVERED AT THE 11TH INTERNATIONAL CONFERENCE OF THE NIGERIA COMPUTER SOCIETY (NCS) HELD AT THE ROYAL PARK HOTEL, ILOKO-IJESA, THE STATE OF OSUN, NIGERIA (24-26

704 views • 52 slides
Cyber Security in Europe Priorities, Standards and Cooperation Opportunities Alessandro Guarino

Cyber Security in Europe Priorities, Standards and Cooperation Opportunities Alessandro Guarino

Cyber Security in Europe Priorities, Standards and Cooperation Opportunities Alessandro Guarino ETSI TC CYBER StudioAG EU-SEA Workshop - Hanoi 2/12/2015 Hanoi National University 1 / 38 Introduction Who am I ? Day job: Information

394 views • 38 slides
your PCI I DSS program GoSec August 2019 Yves B. Desharnais, MBA, CISSP, PCIP www.p .pcir

your PCI I DSS program GoSec August 2019 Yves B. Desharnais, MBA, CISSP, PCIP www.p .pcir

Future proofing your PCI I DSS program GoSec August 2019 Yves B. Desharnais, MBA, CISSP, PCIP www.p .pcir ireso esour urces.com es.com Future-proofing your PCI DSS program GoSec August 2019 1 Agenda About Yves 1. PCI DSS &

481 views • 32 slides
Agenda 18:00 Pre-mingle 18:30 Introduction to the Blockchain and Ethereum Thomas

Agenda 18:00 Pre-mingle 18:30 Introduction to the Blockchain and Ethereum Thomas

Agenda 18:00 Pre-mingle 18:30 Introduction to the Blockchain and Ethereum Thomas Backlund - Founder Blockie 19:10 Short break 19:15 Creating Lendroid - an Ethereum-based app Vignesh M. Sundaram - Founder Lendroid

523 views • 15 slides
Communication in Distributed Systems Issues in communication (today) Message-oriented

Communication in Distributed Systems Issues in communication (today) Message-oriented

Communication in Distributed Systems Issues in communication (today) Message-oriented Communication Remote Procedure Calls Transparency but poor for passing references Remote Method Invocation RMIs are essentially RPCs

246 views • 9 slides
A Guide for Families How to use this is document: You can navigate to an area of f in

A Guide for Families How to use this is document: You can navigate to an area of f in

Distance Learning Phase 2 A Guide for Families How to use this is document: You can navigate to an area of f in interest, or jump forw rward or backward usin ing the tabs: Special Ed. Instruction Technology Q & A Expectations

359 views • 21 slides
SystemVerilogCSP: Modeling Digital Asynchronous Circuits Using SystemVerilog Interfaces Arash

SystemVerilogCSP: Modeling Digital Asynchronous Circuits Using SystemVerilog Interfaces Arash

SystemVerilogCSP: Modeling Digital Asynchronous Circuits Using SystemVerilog Interfaces Arash Saifhashemi 1 Peter A. Beerel 1,2 1 Ming Hsieh Dept. of Electrical Engineering, University of Southern California 2 Fulcrum Microsystems, Calabasas CA,

410 views • 24 slides
Multi-Party Computation Based on One-Way Functions Sandro Coretti (New York University) Juan

Multi-Party Computation Based on One-Way Functions Sandro Coretti (New York University) Juan

Constant-Round Asynchronous Multi-Party Computation Based on One-Way Functions Sandro Coretti (New York University) Juan Garay (Yahoo Research) Martin Hirt (ETH Zurich) Vassilis Zikas (RPI) Secure Multi-Party Computation (MPC) [Yao82, GMW87,

677 views • 47 slides

More recommend