Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Sybil attack “One can have, some claim, as many electronic persons as one has time and energy to create.” – Judith S. Donath.

Published byWilliam Goodwin Modified over 9 years ago

Similar presentations

Presentation on theme: "The Sybil attack “One can have, some claim, as many electronic persons as one has time and energy to create.” – Judith S. Donath."— Presentation transcript:

1 The Sybil attack “One can have, some claim, as many electronic persons as one has time and energy to create.” – Judith S. Donath

2 The Sybil attack A B M

3 Terminology  Entity Collection of material resources, of specifiable minimal size, under control of a single agency E.g., one mobile node E.g., one mobile node  Identity Persistent informational abstraction provably associated Persistent informational abstraction provably associated with a set of communication events with a set of communication events E.g., a public key E.g., a public key  Validation Determination of identity distinctness Determination of identity distinctness

4 The Sybil attack  One entity presents multiple identities for malicious intent.  Disrupt geographic and multi-path routing protocols by “being in more than one place at once” and reducing diversity.  Relevant in many context: P2P network P2P network Ad hoc networks Ad hoc networks Wireless sensor networks Wireless sensor networks

5 Validation  Goal: accept all legitimate identities, but no counterfeits.  Verify identities: Direct validation Direct validation Indirect validation Indirect validation

6 Direct validation Validate the distinctness of two entities by asking them to perform task that one entity can not do:  If the communication resource is restricted, the verifier broadcasts a request for identities and then only accepts replies that occur within a given time interval.  If the storage resource is restricted, the verifier can challenges each identity to store large amount of unique data. The verifier verifies by keeping small excerpts of the data.  If the computation resource is restricted, the verifier challenges each identity to solve a unique computational problem.

7 Direct validation  Assumption: all entities have identical resource constraints. all entities have identical resource constraints. all involved entities are verified simultaneously. all involved entities are verified simultaneously. Extreme and unrealistic!

8 Indirect validation  Accept identities that have been validated by a sufficient count of other identities that it has already accepted.  Danger: a group of faulty entities can vouch for counterfeit identities.

9 Discussion  A centralized identification authority is important, but not enough.  Identity verification.  Authenticated broadcast.  Link-layer encryption and authentication.

Download ppt "The Sybil attack “One can have, some claim, as many electronic persons as one has time and energy to create.” – Judith S. Donath."

Similar presentations

Energy-efficient distributed algorithms for wireless ad hoc networks Ramki Gummadi (MIT)

Energy-efficient distributed algorithms for wireless ad hoc networks Ramki Gummadi (MIT)
Chris Karlof and David Wagner

Chris Karlof and David Wagner
Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.

Security by Design A Prequel for COMPSCI 702. Perspective “Any fool can know. The point is to understand.” - Albert Einstein “Sometimes it's not enough.
The Sybil Attack By John R. Douceur Presented by Samuel Petreski March 31, 2009.

The Sybil Attack By John R. Douceur Presented by Samuel Petreski March 31, 2009.
Kerberos Assisted Authentication in Mobile Ad-hoc Networks Authors: Asad Amir Pirzada and Chris McDonald Sources: Proceedings of the 27th Australasian.

Kerberos Assisted Authentication in Mobile Ad-hoc Networks Authors: Asad Amir Pirzada and Chris McDonald Sources: Proceedings of the 27th Australasian.
Denial of Service in Sensor Networks Szymon Olesiak.

Denial of Service in Sensor Networks Szymon Olesiak.
Michael Baswell WSN Security Wireless Ad Hoc Sensor Network Security Michael Baswell For CS591 S2007 5/7/20071.

Michael Baswell WSN Security Wireless Ad Hoc Sensor Network Security Michael Baswell For CS591 S2007 5/7/20071.
 Introduction  Benefits of VANET  Different types of attacks and threats  Requirements and challenges  Security Architecture  Vehicular PKI.

 Introduction  Benefits of VANET  Different types of attacks and threats  Requirements and challenges  Security Architecture  Vehicular PKI.
A Survey of Secure Wireless Ad Hoc Routing

A Survey of Secure Wireless Ad Hoc Routing
A Mobile Ad hoc Biosensor Network Muzammil KP S7,ECE Govt. Engg. College, Wayanad.

A Mobile Ad hoc Biosensor Network Muzammil KP S7,ECE Govt. Engg. College, Wayanad.
The Sybil Attack in Sensor Networks: Analysis & Defenses J. Newsome, E. Shi, D. Song and A. Perrig IPSN’04.

The Sybil Attack in Sensor Networks: Analysis & Defenses J. Newsome, E. Shi, D. Song and A. Perrig IPSN’04.
Identity Theft Protection in Structured Overlays Lakshmi Ganesh Ben Y. Zhao University of California, Santa Barbara NPSec 2005.

Identity Theft Protection in Structured Overlays Lakshmi Ganesh Ben Y. Zhao University of California, Santa Barbara NPSec 2005.
Secure Routing in Wireless Sensor Network Soumyajit Manna Kent State University 5/11/2015Kent State University1.

Secure Routing in Wireless Sensor Network Soumyajit Manna Kent State University 5/11/2015Kent State University1.
MANETs Routing Dr. Raad S. Al-Qassas Department of Computer Science PSUT

MANETs Routing Dr. Raad S. Al-Qassas Department of Computer Science PSUT
LAAC: A Location-Aware Access Control Protocol YounSun Cho, Lichun Bao and Michael T. Goodrich IWUAC 2006.

LAAC: A Location-Aware Access Control Protocol YounSun Cho, Lichun Bao and Michael T. Goodrich IWUAC 2006.
Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Anand Patwardhan Jim.

Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Secure Routing and Intrusion Detection For Mobile Ad Hoc Networks Anand Patwardhan Jim.
1-1 CMPE 259 Sensor Networks Katia Obraczka Winter 2005 Security.

1-1 CMPE 259 Sensor Networks Katia Obraczka Winter 2005 Security.
1 Key Management in Mobile Ad Hoc Networks Presented by Edith Ngai Spring 2003.

1 Key Management in Mobile Ad Hoc Networks Presented by Edith Ngai Spring 2003.
ITIS 6010/8010 Wireless Network Security Dr. Weichao Wang.

ITIS 6010/8010 Wireless Network Security Dr. Weichao Wang.
Security Issues In Sensor Networks By Priya Palanivelu.

Security Issues In Sensor Networks By Priya Palanivelu.

Similar presentations

Ads by Google