Presentation is loading. Please wait.

Presentation is loading. Please wait.

ANODR : AN onymous O n- D emand R outing with Untraceable Routes for Mobile Ad Hoc Networks MobiHOC 2003 June 3, 2003 Jiejun Kong, Xiaoyan Hong Wireless-Adaptive-Mobility.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "ANODR : AN onymous O n- D emand R outing with Untraceable Routes for Mobile Ad Hoc Networks MobiHOC 2003 June 3, 2003 Jiejun Kong, Xiaoyan Hong Wireless-Adaptive-Mobility."— Presentation transcript:

1

2 ANODR : AN onymous O n- D emand R outing with Untraceable Routes for Mobile Ad Hoc Networks MobiHOC 2003 June 3, 2003 Jiejun Kong, Xiaoyan Hong Wireless-Adaptive-Mobility Laboratory Department of Computer Science University of California, Los Angeles

3 MobiHOC 2003 2/20 Passive Routing Attacks in MANET Passive Attacker Location Privacy Attack: Correlate nodes’ ids and their locations Route Tracing Attack: Visualize (multi-hop) ad hoc routes Motion Inference Attack: Visualize nodes’ motion patterns Location Privacy Attack: Correlate nodes’ ids and their locations Route Tracing Attack: Visualize (multi-hop) ad hoc routes Motion Inference Attack: Visualize nodes’ motion patterns

4 MobiHOC 2003 3/20 Passive Routing Attacks in MANET Location privacy attack –Correlate a mobile node with its locations (at the granularity of adversary’s adjustable radio receiving range) –Counting/analyzing mobile nodes in a cell Route tracing attack –Visualizing ad hoc routes Motion inference attack –Visualizing motion patterns of mobile nodes –Deducing motion pattern of a set of nodes Other traffic analysis –Analyzing packet flow metrics (as in Internet traffic analysis) Orthogonal to routing disruption attacks

5 MobiHOC 2003 4/20 Adversary in Mobile Ad Hoc Networks External adversary: wireless link intruder –Eavesdropper –Traffic analyst (not necessary to break cryptosystem) –Unbounded –Unbounded interception: adversary can sniff anywhere anytime Internal adversary: mobile node intruder –Capture, compromise, tamper –Passive internal adversary is hard to detect due to lack of exhibition of malicious behavior –Bounded –Bounded: otherwise secure networking is impossible

6 MobiHOC 2003 5/20 Problems of Ad Hoc Routing Must rely on neighbors in data forwarding –Neighbors need to know routing info –“ I can forward your packets”: All existing ad hoc routing protocols reveal nodes’ identity to its neighbors — abundant chances for passive attackers to obtain static info [ MobiHOC’01, BasagniHBR ] Encrypted routing information can be decrypted by other internal nodes –Traceable by traffic analysts (without compromising cryptographically protected information) –Allows internal adversary, no location privacy support

7 MobiHOC 2003 6/20 Motivations for New Secure Routing Resistance against location privacy, route tracing, motion inference attacks –Using established security methodologies Efficiency –Comparable to existing ad hoc routing schemes Low probability of detection, interception, and exploitation (LPD/LPI/LPE) –Focus on data forwarding, not on physical layer radio signal processing

8 MobiHOC 2003 7/20 Related Work Other on-demand routing –DSR, AODV Other anonymity research for wired network –Onion routing, Crowds, Hordes Other MANET security protocols with orthogonal goals –For routing integrity: SEAD, Ariadne, ARAN, etc. –For network access control: URSA, etc. Either do not address anonymity & untraceability concerns, or not fit in MANET

9 MobiHOC 2003 8/20 Design Challenges Passive traffic analysis –Side channels: time correlation, content correlation Passive internal adversary –Simple encryption does not solve the problem Intrusion Tolerance –No single point of compromise or failure –Fully distributed design, no centralized control in MANET Avoid expensive processing overheads –Our measurement & simulation show expensive processing overheads cause non-trivial routing performance degradation

10 MobiHOC 2003 9/20 Processing Overhead (Measured on iPAQ3670, Intel StrongARM 206MHz CPU) Asymmetric key cryptosystem Single decryption/signing Single encryption/verifying ECAES (160-bit key) RSA (1024-bit key) El Gamal (1024-bit key) 42 ms 900 ms 80 ms 160 ms 30 ms 100 ms Symmetric key cryptosystem (128-bit) Decryption bit-rate Encryption bit-rate AES/Rijndael RC6 Mars Serpent TwoFish 29.2 Mbps 53.8 Mbps 36.8 Mbps 15.2 Mbps 30.9 Mbps 29.1 Mbps 49.2 Mbps 36.8 Mbps 17.2 Mbps 30.8 Mbps

11 MobiHOC 2003 10/20 Goal and Design Efficient routing while anonymous & untraceable to all thy (legitimate & adversarial) neighbors: Mission impossible? Clues: MANET on-demand routing likely has two broadcast mechanisms –Global route discovery (aka. RREQ flooding) –Per-hop wireless local radio broadcast Our design –On demand routing –Broadcast with anonymous trapdoor assignment

12 MobiHOC 2003 11/20 Framework of Anonymous Route Discovery (between src and dest) Similar to existing on demand routing schemes  –Route-REQuest  RREQ,seqnum,to_be_opened_by_dest anonymous_trapdoor   –Route-REPly  RREP, presented_by_dest anonymous_proof  A global trapdoor can only be opened by dest –Not required to know where dest is –dest can present an anonymous proof of door opening Need more design to address per-hop

13 MobiHOC 2003 12/20 Efficient Trapdoor Info Per-hop Local Wireless Broadcast with Anonymous Trapdoor Assignment Trapdoored messages are delivered to specific node(s) –But not other nodes in the same receiving group Efficient Trapdoor Info

14 MobiHOC 2003 13/20 ANODR Route Discovery (using TBO - Trapdoor Boomerang Onion)  ANODR : destination E receives  RREQ, seqnum, open_by_ E, onion  where Route-REQuest Route-REPly A E K A ( N A, hello) K B ( N B, K A ( N A, hello)) K C ( N C, K B ( N B, K A ( N A, hello))) onion = K D ( N D, K C ( N C, K B ( N B, K A ( N A, hello))))   RREP, proof_from_ E, onion, Nym X  Nym X is selected by X and shared on the hop B C D Nym E Nym D Nym C Nym B K C ( N C, K B ( N B, K A ( N A, hello))) K B ( N B, K A ( N A, hello)) K A ( N A, hello)

15 MobiHOC 2003 14/20 Untraceable Make On demand Routes Untraceable ANODR-TBO is robust against node intrusion –Fully anonymous: no node identity revealed –Fully distributed control: avoid single point of compromise –Multiple paths feasible: avoid single point of failure So far anonymous only, and symmetric key only –More complexity in realizing untraceability to hide side channels & resist traffic analysis Protect RREP flow –Need an asymmetric secret channel Modified RREQ: Embed a temporary asymmetric key ecpk1  RREQ, ecpk1, seqnum, open_by_ E, onion  Modified RREP: Exchange a secret seed Nym K seed  RREP, ecpk1(K seed ), K seed (proof_from_ E, onion) 

16 MobiHOC 2003 15/20 Make Routes Untraceable (cont’d) Protect reused route pseudonyms –Using K seed to do self-synchronized route pseudonym update –So far all pseudonyms/aliases are one-time aliases! Playout “Mixing” –Resist traffic analysis: Time correlation Content correlation MIX Alice Bob Eve Buffer, Re-order, Batch send, Insert dummy/decoy packets

17 MobiHOC 2003 16/20 QualNet  Simulation Metrics –Data delivery ratio, end-to-end latency, normalized overhead, playout “mixing” performance Impact of –Processing overhead (no routing optimization on ANODRs) 1)AODV with routing optimization and no cryptographic overhead 2)Anonymous-only ANODR-TBO: symmetric key processing only 3)Anonymous+Untraceable ANODR-TBO: 2) + limited asymmetric key processing 4)ANODR-PO, a naïve MIX-Net ported from wired networks, asymmetric key processing in anonymous route discovery  –Communication overhead (  400bit onion, etc.) –Mobility –Playout “mixing” buffer size r X & window size t X

18 MobiHOC 2003 17/20 Evaluation: Delivery Ratio & Latency (vs. mobility)  Acceptable delivery ratio degradation for both “anonymous-only” (  3%) and “anonymous + untraceable” (  12%) schemes If without untraceability support (which uses asymmetric key cryptosystems), ANODR-TBO’s performance is similar to AODV –Asymmetric key processings cause performance degradation Anonymous+Untraceable Anonymous only Anonymous+Untraceable Anonymous only Anonymous+Untraceable Anonymous only

19 MobiHOC 2003 18/20 Evaluation: Control Packet Overhead (vs. mobility) Control packet overhead largely due to onion size –Elliptic curves cryptosystems feature comparable storage (but not latency) overhead with symmetric key cryptosystems Anonymous only Anonymous+Untraceable Anonymous only Anonymous+Untraceable Anonymous only

20 MobiHOC 2003 19/20 Evaluation: Playout “Mixing” Performance (vs. r X ) Playout buffer size r X and playout time window size t X are critical parameters –In some cases, dummy/data ratio is predictable May consume resources like battery power, but does not significantly affect data delivery ratio Anonymous+Untraceable

21 MobiHOC 2003 20/20 Conclusions and Future Work Anonymous on demand routing is feasible and efficient in MANET –Comparable performance to existing on-demand protocol –Intrusion tolerant, esp. against passive adversaries Adding untraceable route support is feasible with some efficiency degradation –Limited asymmetric key processing –Tradeoffs in playout “mixing” Future improvements –Adaptive “mixing” for better performance –Integration with routing integrity countermeasures –Multi-path routes to address mobility and disruption

22 MobiHOC 2003 21/20

23 MobiHOC 2003 22/20 This slide is intentionally left blank

24 MobiHOC 2003 23/20 MIX and “Mixing” In wireless network, Eve can trivially eavesdrop packets in- and-out a node Eve can correlate incoming and outgoing message by –Contents: data and its size –Causality: arrival/departure timing “Mixing”: lower correlation ratio –Buffer, reorder, batch sending –Insert dummy packets MIX can be chained together –Multi-hop routing: MIX-Net MIX Alice Bob Eve Buffer,Re-order,Batch send Insert dummy/decoy packets

25 MobiHOC 2003 24/20 The source pre-selects the path, and sends downstream a layered message, each MIX peels off a layer — “onion” mixing –Also stops traffic analysis by “mixing”: buffer, packet reorder & shuffle, introduce random delay and dummy, batch sending MIX-Net dest source A B C D

26 MobiHOC 2003 25/20 The route pseudonymity approach works –Pseudonym collision probability is negligible for sufficiently large length l p collision is greater than ½ when k is around 2 l /2 (birthday paradox): k is not that large in MANET neighborhood. For small k, p collision is smaller than message digest failure The approach is resilient to attacks –For intrusion, define a route traceable ratio R R is 0 when no forwarder is intruded R is100% when all forwarders are intruded –For timing analysis, r=#(data+dummy), h=hop, success ratio= Rapidly approach zero when r or h increases Analysis

27 MobiHOC 2003 26/20 Comparisons Proactive: OLSR, TBRPF –All passive routing attacks applicable –Easily attacked by external adversaries On-demand: DSR, AODV –All passive routing attacks applicable –Easily attacked by external adversaries Implement futuristic link protection at any hop anywhere –Not available yet, likely based on expensive asymmetric key cryptosystems –Not robust against any passive internal adversary No location privacy support in presence of such adversary –Not robust against passive external traffic analyst

Download ppt "ANODR : AN onymous O n- D emand R outing with Untraceable Routes for Mobile Ad Hoc Networks MobiHOC 2003 June 3, 2003 Jiejun Kong, Xiaoyan Hong Wireless-Adaptive-Mobility."

Similar presentations

1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.

1 Security for Ad Hoc Network Routing. 2 Ad Hoc Networks Properties Mobile Wireless communication Medium to high bandwidth High variability of connection.
Chris Karlof and David Wagner

Chris Karlof and David Wagner
Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,

Mitigating Routing Misbehavior in Mobile Ad-Hoc Networks Reference: Mitigating Routing Misbehavior in Mobile Ad Hoc Networks, Sergio Marti, T.J. Giuli,
A Survey of Secure Wireless Ad Hoc Routing

A Survey of Secure Wireless Ad Hoc Routing
DSR The Dynamic Source Routing Protocol Students: Mirko Gilioli Mohammed El Allali.

DSR The Dynamic Source Routing Protocol Students: Mirko Gilioli Mohammed El Allali.
URSA: Providing Ubiquitous and Robust Security Support for MANET

URSA: Providing Ubiquitous and Robust Security Support for MANET
Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL 6788 11.

Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL
Reusable Anonymous Return Channels

Reusable Anonymous Return Channels
MANETs Routing Dr. Raad S. Al-Qassas Department of Computer Science PSUT

MANETs Routing Dr. Raad S. Al-Qassas Department of Computer Science PSUT
Monday, June 01, 2015 ARRIVE: Algorithm for Robust Routing in Volatile Environments 1 NEST Retreat, Lake Tahoe, June 17-19 2002.

Monday, June 01, 2015 ARRIVE: Algorithm for Robust Routing in Volatile Environments 1 NEST Retreat, Lake Tahoe, June
Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Anand Patwardhan Jim.

Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Anand Patwardhan Jim.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.

CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.

Nov.6, 2002 Secure Routing Protocol for Ad Hoc Networks Li Xiaoqi.
Secure and Anonymous Mobile Ad-hoc Routing Jiejun Kong, Mario Gerla Department of Computer Science University of California, Los Angeles August 4, 2005.

Secure and Anonymous Mobile Ad-hoc Routing Jiejun Kong, Mario Gerla Department of Computer Science University of California, Los Angeles August 4, 2005.
Denial of Service Resilience in Ad Hoc Networks Imad Aad, Jean-Pierre Hubaux, and Edward W. Knightly Designed by Yao Zhao.

Denial of Service Resilience in Ad Hoc Networks Imad Aad, Jean-Pierre Hubaux, and Edward W. Knightly Designed by Yao Zhao.
Routing Security in Ad Hoc Networks

Routing Security in Ad Hoc Networks
Secure Routing in Ad Hoc Wireless Networks 11.03.2005.

Secure Routing in Ad Hoc Wireless Networks
Security of wireless ad-hoc networks. Outline Properties of Ad-Hoc network Security Challenges MANET vs. Traditional Routing Why traditional routing protocols.

Security of wireless ad-hoc networks. Outline Properties of Ad-Hoc network Security Challenges MANET vs. Traditional Routing Why traditional routing protocols.
Security Risks for Ad Hoc Networks and how they can be alleviated By: Jones Olaiya Ogunduyilemi Supervisor: Jens Christian Godskesen © Dec. 2006.

Security Risks for Ad Hoc Networks and how they can be alleviated By: Jones Olaiya Ogunduyilemi Supervisor: Jens Christian Godskesen © Dec
Security in Wireless Sensor Networks Perrig, Stankovic, Wagner Jason Buckingham CSCI 7143: Secure Sensor Networks August 31, 2004.

Security in Wireless Sensor Networks Perrig, Stankovic, Wagner Jason Buckingham CSCI 7143: Secure Sensor Networks August 31, 2004.

Similar presentations

Ads by Google