The Sybil attack “One can have, some claim, as many electronic persons as one has time and energy to create.” – Judith S. Donath.

Slides:

Advertisements

Similar presentations

Energy-efficient distributed algorithms for wireless ad hoc networks Ramki Gummadi (MIT)

Advertisements

Chris Karlof and David Wagner

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.

The Sybil Attack By John R. Douceur Presented by Samuel Petreski March 31, 2009.

Kerberos Assisted Authentication in Mobile Ad-hoc Networks Authors: Asad Amir Pirzada and Chris McDonald Sources: Proceedings of the 27th Australasian.

Denial of Service in Sensor Networks Szymon Olesiak.

Michael Baswell WSN Security Wireless Ad Hoc Sensor Network Security Michael Baswell For CS591 S2007 5/7/20071.

 Introduction  Benefits of VANET  Different types of attacks and threats  Requirements and challenges  Security Architecture  Vehicular PKI.

A Survey of Secure Wireless Ad Hoc Routing

A Mobile Ad hoc Biosensor Network Muzammil KP S7,ECE Govt. Engg. College, Wayanad.

The Sybil Attack in Sensor Networks: Analysis & Defenses J. Newsome, E. Shi, D. Song and A. Perrig IPSN’04.

Identity Theft Protection in Structured Overlays Lakshmi Ganesh Ben Y. Zhao University of California, Santa Barbara NPSec 2005.

Secure Routing in Wireless Sensor Network Soumyajit Manna Kent State University 5/11/2015Kent State University1.

MANETs Routing Dr. Raad S. Al-Qassas Department of Computer Science PSUT

LAAC: A Location-Aware Access Control Protocol YounSun Cho, Lichun Bao and Michael T. Goodrich IWUAC 2006.

Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Anand Patwardhan Jim.

1-1 CMPE 259 Sensor Networks Katia Obraczka Winter 2005 Security.

1 Key Management in Mobile Ad Hoc Networks Presented by Edith Ngai Spring 2003.

ITIS 6010/8010 Wireless Network Security Dr. Weichao Wang.

Security Issues In Sensor Networks By Priya Palanivelu.

Secure Routing in Sensor Networks: Attacks and Countermeasures First IEEE International Workshop on Sensor Network Protocols and Applications 5/11/2003.

Packet Leashes: A Defense against Wormhole Attacks in Wireless Networks Yih-Chun Hu (Carnegie Mellon University) Adrian Perrig (Carnegie Mellon University)

SUMP: A Secure Unicast Messaging Protocol for Wireless Ad Hoc Sensor Networks Jeff Janies, Chin-Tser Huang, Nathan L. Johnson.

Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.

Challenge: Securing Routing Protocols Adrian Perrig

Friendly Authentication and Communication Experience (Face) for Ubiquitous Authentication on Mobile Devices Author: Benjamin Halpert Presented by: 魏聲尊.

1 The Sybil Attack John R. Douceur Microsoft Research Presented for Cs294-4 by Benjamin Poon.

1 Hidden Exponent RSA and Efficient Key Distribution author: He Ge Cryptology ePrint Archive 2005/325 PDFPDF 報告人：陳昱升.

Address Auto-configuration in Mobile Ad Hoc Networks Current Approaches and Future Directions Date ： 2005 / 1 / 20 Speaker ： Xu Jia-Hao Advisor ： Ke Kai-Wei.

Wireless Sensor Network Security Anuj Nagar CS 590.

The Sybil Attack in Sensor Networks: Analysis & Defenses James Newsome, Elaine Shi, Dawn Song, Adrian Perrig Presenter: Yi Xian.

Safeguarding Wireless Service Access Panos Papadimitratos Electrical and Computer Engineering Virginia Tech.

Secure Routing in Wireless Sensor Networks: Attacks and Countermeasures ProtocolRelevant Attacks TinyOS beaconingBogus routing information, selective forwarding,

Mark W. Propst Scientific Research Corporation.  Attack Motivations  Vulnerability Classification  Traffic Pattern Analysis  Testing Barriers  Concluding.

Security Considerations for Wireless Sensor Networks Prabal Dutta (614) Security Considerations for Wireless Sensor Networks.

Radio Frequency Identification By Bhagyesh Lodha Vinit Mahedia Vishnu Saran Mitesh Bhawsar.

Secure Localization Algorithms for Wireless Sensor Networks proposed by A. Boukerche, H. Oliveira, E. Nakamura, and A. Loureiro (2008) Maria Berenice Carrasco.

Security Security is a measure of the system’s ability to protect data and information from unauthorized access while still providing access to people.

Disrupting Peer-to-Peer Networks Sybil & Eclipse Attacks Lee Brintle University of Iowa.

An efficient secure distributed anonymous routing protocol for mobile and wireless ad hoc networks Authors: A. Boukerche, K. El-Khatib, L. Xu, L. Korba.

Terminodes and Sybil: Public-key management in MANET Dave MacCallum (Brendon Stanton) Apr. 9, 2004.

The Cryptographic Sensor FTO Libor Dostálek, Václav Novák.

Hao Yang, Fan Ye, Yuan Yuan, Songwu Lu, William Arbaugh (UCLA, IBM, U. Maryland) MobiHoc 2005 Toward Resilient Security in Wireless Sensor Networks.

Trust- and Clustering-Based Authentication Service in Mobile Ad Hoc Networks Presented by Edith Ngai 28 October 2003.

Authors: Yih-Chun Hu, Adrian Perrig, David B. Johnson

Secure routing in wireless sensor network: attacks and countermeasures Presenter: Haiou Xiang Author: Chris Karlof, David Wagner Appeared at the First.

The Sybil Attack in Sensor Networks: Analysis & Defenses

Secure Routing in Wireless Sensor Networks: Attacks and Countermeasures Chris Karlof and David Wagner (modified by Sarjana Singh)

Rushing Attacks and Defense in Wireless Ad Hoc Network Routing Protocols ► Acts as denial of service by disrupting the flow of data between a source and.

Distributed Computing Systems CSCI 4780/6780. Geographical Scalability Challenges Synchronous communication –Waiting for a reply does not scale well!!

Secure Routing in Wireless Sensor Networks: Attacks and Countermeasures Chris Karlof David Wagner University of California at Berkeley 1st IEEE International.

Partition and multi-path transmission-An encryption-free reputation sharing protocol in Gnutella-like peer-to-peer network Author: X. X. Ma, and Z. G.

© 2007 Levente Buttyán and Jean-Pierre Hubaux Security and Cooperation in Wireless Networks Chapter 4: Naming and addressing.

The Sybil Attack, J. R. Douceur, IPTPS Clifton Forlines CSC2231 Online Social Networks 11/1/2007.

Security in Wireless Ad Hoc Networks. 2 Outline  wireless ad hoc networks  security challenges  research directions  two selected topics – rational.

URP Usage Scenarios for Mobility James Kempf Sun Microsystems, Inc.

Establishing authenticated channels and secure identifiers in ad-hoc networks Authors: B. Sieka and A. D. Kshemkalyani (University of Illinois at Chicago)

Security Issues in Distributed Sensor Networks Yi Sun Department of Computer Science and Electrical Engineering University of Maryland, Baltimore County.

Defending Against Sybil Attacks Paul Parker Advisor: Shouhuai Xu.

Computer Science and Engineering 1 Mobile Computing and Security.

Energy Efficient Data Management for Wireless Sensor Networks with Data Sink Failure Hyunyoung Lee, Kyoungsook Lee, Lan Lin and Andreas Klappenecker †

1 Routing security against Threat models CSCI 5931 Wireless & Sensor Networks CSCI 5931 Wireless & Sensor Networks Darshan Chipade.

Network Security Celia Li Computer Science and Engineering York University.

Security Review Q&A Session May 1. Outline  Class 1 Security Overview  Class 2 Security Introduction  Class 3 Advanced Security Constructions  Class.

 Attacks and threats  Security challenge & Solution  Communication Infrastructure  The CA hierarchy  Vehicular Public Key  Certificates.

Security of the Internet of Things: perspectives and challenges

A Security Framework for ROLL draft-tsao-roll-security-framework-00.txt T. Tsao R. Alexander M. Dohler V. Daza A. Lozano.

Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Service in Mobile Ad Hoc Networks Presented by Edith Ngai Supervised.

Computer Science Least Privilege and Privilege Deprivation: Towards Tolerating Mobile Sink Compromises in Wireless Sensor Network Presented by Jennifer.

A Novel Correlated Attributes Model for Malicious Detection in Wireless Sensor Networks Name: Patrick Zwane University: National Taipei University of.

Presentation transcript:

The Sybil attack “One can have, some claim, as many electronic persons as one has time and energy to create.” – Judith S. Donath

The Sybil attack A B M

Terminology  Entity Collection of material resources, of specifiable minimal size, under control of a single agency E.g., one mobile node E.g., one mobile node  Identity Persistent informational abstraction provably associated Persistent informational abstraction provably associated with a set of communication events with a set of communication events E.g., a public key E.g., a public key  Validation Determination of identity distinctness Determination of identity distinctness

The Sybil attack  One entity presents multiple identities for malicious intent.  Disrupt geographic and multi-path routing protocols by “being in more than one place at once” and reducing diversity.  Relevant in many context: P2P network P2P network Ad hoc networks Ad hoc networks Wireless sensor networks Wireless sensor networks

Validation  Goal: accept all legitimate identities, but no counterfeits.  Verify identities: Direct validation Direct validation Indirect validation Indirect validation

Direct validation Validate the distinctness of two entities by asking them to perform task that one entity can not do:  If the communication resource is restricted, the verifier broadcasts a request for identities and then only accepts replies that occur within a given time interval.  If the storage resource is restricted, the verifier can challenges each identity to store large amount of unique data. The verifier verifies by keeping small excerpts of the data.  If the computation resource is restricted, the verifier challenges each identity to solve a unique computational problem.

Direct validation  Assumption: all entities have identical resource constraints. all entities have identical resource constraints. all involved entities are verified simultaneously. all involved entities are verified simultaneously. Extreme and unrealistic!

Indirect validation  Accept identities that have been validated by a sufficient count of other identities that it has already accepted.  Danger: a group of faulty entities can vouch for counterfeit identities.

Discussion  A centralized identification authority is important, but not enough.  Identity verification.  Authenticated broadcast.  Link-layer encryption and authentication.