Presentation is loading. Please wait.

Presentation is loading. Please wait.

S E A D Secure Efficient Distance Vector Routing for Mobile Wireless Ad Hoc Networks Yih-Chun Hu,David B.Johnson, Adrian Perrig.

Published byClaribel Blake Modified over 9 years ago

Similar presentations

Presentation on theme: "S E A D Secure Efficient Distance Vector Routing for Mobile Wireless Ad Hoc Networks Yih-Chun Hu,David B.Johnson, Adrian Perrig."— Presentation transcript:

1 S E A D Secure Efficient Distance Vector Routing for Mobile Wireless Ad Hoc Networks Yih-Chun Hu,David B.Johnson, Adrian Perrig

2 Introduction Ad Hoc Networks Possible attacks Secure routing protocols

3 Ad Hoc Networks Unstable link High mobility Very limited computing resources Easy to eavesdrop

4 Assumptions All links are bi-directional No physical or MAC layer attacks The network may drop, corrupt, duplicate, or reorder packets MAC layer can detect randomly corrupted packets Network diameter

5 Possible Attacks Ignorance attack (discarding packets) Jam attack (jam routing packets) Modification attack (modifying packets) Replay attack (sending old advertisements) Wormhole attack

6 Our Goal Does not need too much resource Provides security features It is robust enough against multiple uncoordinated attackers Developing a protocol that

7 Distance Vector v.s.Link State Link State routing is too expensive to use Based on Distance Vector routing. It is easy to implement and is efficient in terms of required memory and CPU processing capacity. Improving DSDV protocol

8 DSDV Destination-Sequenced Distance-Vector routing protocol Introducing a sequence number to prevent loops (it doesn't suffer from the count-to-infinity problem) Each node ’ s routing table is tagged with the most recent sequence number

9 DSDV (cont) When a node receives a routing update, the node does the update if the sequence number is greater or sequence number is the same but metric is lower. Routing updates are both “ periodic and triggered ”, and both “ full dump or incremental ”.

10 DV vs. DSDV vs. SEAD destinationmetricnext hop MH 1 3MH 5 MH 2 4MH 3 DV DSDV destinationmetricnext hopseq # MH 1 3MH 5 7 MH 2 4MH 3 7

11 DV vs. DSDV vs. SEAD (cont) SEAD destmetricn. hopseq #hash val MH 1 3MH 5 1283DF733A MH 2 4MH 3 12B938E96C MH 3 3MH 6 12F2002330

12 Security features Using one-way hash chains rather than asymmetric cryptographic operations One-way hash chains Built on a one-way hash function. H:{0,1}* → {0,1} p Simple to compute but infeasible to invert

13 One-way hash chains h 1,h 2,h 3, …,h n h 0 =x, some arbitrary value h i =H(h i-1 ) for all 1 ≦ i ≦ n Given h i it is easy to verify the authenticity of h j, if j < i

14 Message Authentication The source node randomly pick up a value x in the beginning, and then it generates a hash chain: x=h 0,h 1,h 2, …,h n Suppose m is the network diameter, and n is divisible by m It then releases h n to everybody

15 Message Authentication (cont) For authenticating a routing update with sequence number i and metric j, it sends h n-i*m+j The attacker can never forge better metrics or sequence numbers Attacker can only generate worse metrics or sequence numbers

16 Message Authentication (cont) However, other information such as node name or next hop can be forged To prevent this, stream authentication schemes such as TESLA, HORS can be used Their recent paper Ariadne has this feature!

17 Example m=5, n=20 j=01234 i=1h 15 h 16 h 17 h 18 h 19 2h 10 h 11 h 12 h 13 h 14 3h5h5 h6h6 h7h7 h8h8 h9h9 4h0h0 h1h1 h2h2 h3h3 h4h4 i=sequence number, j=metric, m=network diameter, n=length of hash chain

18 SEAD v.s. DSDV SEAD doesn't use an average weighted settling time SEAD doesn't delay any triggered update When a node detects a broken link and send a routing update, SEAD doesn't increment the sequence number. Instead, it sets the metric to infinity

19 Conclusion (pros) SEAD is robust against uncoordinated attacks SEAD is very efficient if nodes in space are distributed randomly enough

20 Conclusion (cons) SEAD doesn't provide a way to prevent an attacker from tampering with “ next hop ” or “ destination ” columns Instead, it relies on doing neighbor authentication, which is bad Hash chains are consumed very fast Either new h n needs to be released very often or the hash chain to be rather long

21 Future work Creating a secure protocol based on ZRP is a good idea

22 Questions?

23 Have a nice weekend! (Get relaxed and start partying!)

Download ppt "S E A D Secure Efficient Distance Vector Routing for Mobile Wireless Ad Hoc Networks Yih-Chun Hu,David B.Johnson, Adrian Perrig."

Similar presentations

1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.

1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.
Chris Karlof and David Wagner

Chris Karlof and David Wagner
Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 6. Security in Mobile Ad-Hoc Networks.

Computer Science Dr. Peng NingCSC 774 Adv. Net. Security1 CSC 774 Advanced Network Security Topic 6. Security in Mobile Ad-Hoc Networks.
Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)

Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)
Denial of Service in Sensor Networks Szymon Olesiak.

Denial of Service in Sensor Networks Szymon Olesiak.
A Distributed Security Framework for Heterogeneous Wireless Sensor Networks Presented by Drew Wichmann Paper by Himali Saxena, Chunyu Ai, Marco Valero,

A Distributed Security Framework for Heterogeneous Wireless Sensor Networks Presented by Drew Wichmann Paper by Himali Saxena, Chunyu Ai, Marco Valero,
A Survey of Secure Wireless Ad Hoc Routing

A Survey of Secure Wireless Ad Hoc Routing
DSR The Dynamic Source Routing Protocol Students: Mirko Gilioli Mohammed El Allali.

DSR The Dynamic Source Routing Protocol Students: Mirko Gilioli Mohammed El Allali.
Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)

Packet Leashes: Defense Against Wormhole Attacks Authors: Yih-Chun Hu (CMU), Adrian Perrig (CMU), David Johnson (Rice)
Monday, June 01, 2015 ARRIVE: Algorithm for Robust Routing in Volatile Environments 1 NEST Retreat, Lake Tahoe, June 17-19 2002.

Monday, June 01, 2015 ARRIVE: Algorithm for Robust Routing in Volatile Environments 1 NEST Retreat, Lake Tahoe, June
Analysis of a SuperSEAD Aaron Staple Mukund Sundararajan.

Analysis of a SuperSEAD Aaron Staple Mukund Sundararajan.
Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)

Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)
A Performance Comparison of Multi-Hop Wireless Ad Hoc Network Routing Protocols By Josh Broch, David A. Maltz, David B. Johnson, Yih- Chun Hu, Jorjeta.

A Performance Comparison of Multi-Hop Wireless Ad Hoc Network Routing Protocols By Josh Broch, David A. Maltz, David B. Johnson, Yih- Chun Hu, Jorjeta.
1 LINK STATE PROTOCOLS (contents) Disadvantages of the distance vector protocols Link state protocols Why is a link state protocol better?

1 LINK STATE PROTOCOLS (contents) Disadvantages of the distance vector protocols Link state protocols Why is a link state protocol better?
Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.

Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.
Packet Leashes: A Defense against Wormhole Attacks in Wireless Networks Yih-Chun Hu (Carnegie Mellon University) Adrian Perrig (Carnegie Mellon University)

Packet Leashes: A Defense against Wormhole Attacks in Wireless Networks Yih-Chun Hu (Carnegie Mellon University) Adrian Perrig (Carnegie Mellon University)
Yih-Chun Hu Carnegie Mellon University

Yih-Chun Hu Carnegie Mellon University
Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.

Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.
Challenges of Routing in Ad-hoc Networks Chandra D Yarlagadda.

Challenges of Routing in Ad-hoc Networks Chandra D Yarlagadda.
Challenge: Securing Routing Protocols Adrian Perrig

Challenge: Securing Routing Protocols Adrian Perrig

Similar presentations

Ads by Google