New DoS Defense Method Based on Strong Designated Verifier Signatures

We present a novel technique for source authentication of a packet stream in a network, which intends to give guarantees that a specific network flow really comes from a claimed origin. This mechanism, named packet level authentication (PLA), can be an essential tool for addressing Denial of Service (DoS) attacks. Based on designated verifier signature schemes, our proposal is an appropriate and unprecedented solution applying digital signatures for DoS prevention. Our scheme does not rely on an expensive public-key infrastructure and makes use of light cryptography machinery that is suitable in the context of the Internet of Things (IoT). We analyze our proposed scheme as a defense measure considering known DoS attacks and present a formal proof of its resilience face to eventual adversaries. Furthermore, we compare our solution to already existent strategies, highlighting its advantages and drawbacks.

Download Full-text

Intrusion Detection and Prevention in CoAP Wireless Sensor Networks Using Anomaly Detection

Sensors ◽

10.3390/s18082445 ◽

2018 ◽

Vol 18 (8) ◽

pp. 2445 ◽

Cited By ~ 10

Author(s):

Jorge Granjal ◽

João Silva ◽

Nuno Lourenço

Keyword(s):

Intrusion Detection ◽

Anomaly Detection ◽

Denial Of Service ◽

The Internet ◽

Application Layer ◽

Dos Attacks ◽

Lower Accuracy ◽

Communication Environments ◽

The Internet Of Things ◽

Intrusion Detection And Prevention

It is well recognized that security will play a major role in enabling most of the applications envisioned for the Internet of Things (IoT). We must also note that most of such applications will employ sensing and actuating devices integrated with the Internet communications infrastructure and, from the minute such devices start to support end-to-end communications with external (Internet) hosts, they will be exposed to all kinds of threats and attacks. With this in mind, we propose an IDS framework for the detection and prevention of attacks in the context of Internet-integrated CoAP communication environments and, in the context of this framework, we implement and experimentally evaluate the effectiveness of anomaly-based intrusion detection, with the goal of detecting Denial of Service (DoS) attacks and attacks against the 6LoWPAN and CoAP communication protocols. From the results obtained in our experimental evaluation we observe that the proposed approach may viably protect devices against the considered attacks. We are able to achieve an accuracy of 93% considering the multi-class problem, thus when the pattern of specific intrusions is known. Considering the binary class problem, which allows us to recognize compromised devices, and though a lower accuracy of 92% is observed, a recall and an F_Measure of 98% were achieved. As far as our knowledge goes, ours is the first proposal targeting the usage of anomaly detection and prevention approaches to deal with application-layer and DoS attacks in 6LoWPAN and CoAP communication environments.

Download Full-text

Advanced detection Denial of Service attack in the Internet of Things network based on MQTT protocol using fuzzy logic

10.26594/register.v7i2.2340 ◽

2021 ◽

Vol 7 (2) ◽

pp. 95

Author(s):

Mochamad Soebagja Budiana ◽

Ridha Muldina Negara ◽

Arif Indra Irawan ◽

Harashta Tatimma Larasati

Keyword(s):

Fuzzy Logic ◽

Feature Selection ◽

Internet Of Things ◽

Detection System ◽

Denial Of Service ◽

The Internet ◽

Traffic Intensity ◽

Dos Attacks ◽

Fuzzy Input ◽

The Internet Of Things

Message Queuing Telemetry Transport (MQTT) is one of the popular protocols used on the Internet of Things (IoT) networks because of its lightweight nature. With the increasing number of devices connected to the internet, the number of cybercrimes on IoT networks will increase. One of the most popular attacks is the Denial of Service (DoS) attack. Standard security on MQTT uses SSL/TLS, but SSL/TLS is computationally wasteful for low-powered devices. The use of fuzzy logic algorithms with the Intrusion Detection System (IDS) scheme is suitable for detecting DoS because of its simple nature. This paper uses a fuzzy logic algorithm embedded in a node to detect DoS in the MQTT protocol with feature selection nodes. This paper's contribution is that the nodes feature selection used will monitor SUBSCRIBE and SUBACK traffic and provide this information to fuzzy input nodes to detect DoS attacks. Fuzzy performance evaluation is measured against changes in the number of nodes and attack intervals. The results obtained are that the more the number of nodes and the higher the traffic intensity, the fuzzy performance will decrease, and vice versa. However, the number of nodes and traffic intensity will affect fuzzy performance.

Download Full-text

Battery Drain Denial-of-Service Attacks and Defenses in the Internet of Things

Journal of Telecommunications and Information Technology ◽

10.26636/jtit.2019.131919 ◽

2019 ◽

Vol 2 ◽

pp. 37-45 ◽

Cited By ~ 3

Author(s):

Philokypros P. Ioulianou ◽

Vassilios G. Vassilakis ◽

Michael D. Logothetis

Keyword(s):

Internet Of Things ◽

Routing Protocol ◽

Denial Of Service ◽

The Internet ◽

Dos Attacks ◽

Lossy Networks ◽

Distributed Intrusion Detection ◽

Iot Devices ◽

The Impact ◽

The Internet Of Things

IPv6 Routing Protocol for Low-Power and Lossy Networks (RPL) is a popular routing protocol used in wireless sensor networks and in the Internet of Things (IoT). RPL was standardized by the IETF in 2012 and has been designed for devices with limited resources and capabilities. Open-source RPL implementations are supported by popular IoT operating systems (OS), such as ContikiOS and TinyOS. In this work, we investigate the possibility of battery drain Denial-of-Service (DoS) attacks in the RPL implementation of ContikiOS. In particular, we use the popular Cooja simulator and implement two types of DoS attacks, particularly version number modiﬁcation and “Hello” ﬂooding. We demonstrate the impact of these attacks on the power consumption of IoT devices. Finally, we discuss potential defenses relying on distributed intrusion detection modules.

Download Full-text

A Secure Protocol against Selfish and Pollution Attacker Misbehavior in Clustered WSNs

Electronics ◽

10.3390/electronics10111244 ◽

2021 ◽

Vol 10 (11) ◽

pp. 1244

Author(s):

Hana Rhim ◽

Damien Sauveron ◽

Ryma Abassi ◽

Karim Tamine ◽

Sihem Guemara

Keyword(s):

Denial Of Service ◽

Base Station ◽

Hierarchical Organization ◽

Secure Routing ◽

Sensor Nodes ◽

Dos Attacks ◽

Linear Network ◽

Secure Protocol ◽

Misbehaving Nodes ◽

Pollution Attacks

Wireless sensor networks (WSNs) have been widely used for applications in numerous fields. One of the main challenges is the limited energy resources when designing secure routing in such networks. Hierarchical organization of nodes in the network can make efficient use of their resources. In this case, a subset of nodes, the cluster heads (CHs), is entrusted with transmitting messages from cluster nodes to the base station (BS). However, the existence of selfish or pollution attacker nodes in the network causes data transmission failure and damages the network availability and integrity. Mainly, when critical nodes like CH nodes misbehave by refusing to forward data to the BS, by modifying data in transit or by injecting polluted data, the whole network becomes defective. This paper presents a secure protocol against selfish and pollution attacker misbehavior in clustered WSNs, known as (SSP). It aims to thwart both selfish and pollution attacker misbehaviors, the former being a form of a Denial of Service (DoS) attack. In addition, it maintains a level of confidentiality against eavesdroppers. Based on a random linear network coding (NC) technique, the protocol uses pre-loaded matrices within sensor nodes to conceive a larger number of new packets from a set of initial data packets, thus creating data redundancy. Then, it transmits them through separate paths to the BS. Furthermore, it detects misbehaving nodes among CHs and executes a punishment mechanism using a control counter. The security analysis and simulation results demonstrate that the proposed solution is not only capable of preventing and detecting DoS attacks as well as pollution attacks, but can also maintain scalable and stable routing for large networks. The protocol means 100% of messages are successfully recovered and received at the BS when the percentage of lost packets is around 20%. Moreover, when the number of misbehaving nodes executing pollution attacks reaches a certain threshold, SSP scores a reception rate of correctly reconstructed messages equal to 100%. If the SSP protocol is not applied, the rate of reception of correctly reconstructed messages is reduced by 90% at the same case.

Download Full-text

Secure and DoS-Resilient Fragment Authentication in CCN-Based Vehicular Networks

Wireless Communications and Mobile Computing ◽

10.1155/2018/8071267 ◽

2018 ◽

Vol 2018 ◽

pp. 1-12

Author(s):

Sangwon Hyun ◽

Hyoungshick Kim

Keyword(s):

Vehicular Networks ◽

Denial Of Service ◽

Content Delivery ◽

Dos Attacks ◽

Promising Alternative ◽

Content Centric Networking ◽

Transmission Unit ◽

Communication Environments ◽

Maximum Transmission

Content-Centric Networking (CCN) is considered as a promising alternative to traditional IP-based networking for vehicle-to-everything communication environments. In general, CCN packets must be fragmented and reassembled based on the Maximum Transmission Unit (MTU) size of the content delivery path. It is thus challenging to securely protect fragmented packets against attackers who intentionally inject malicious fragments to disrupt normal services on CCN-based vehicular networks. This paper presents a new secure content fragmentation method that is resistant to Denial-of-Service (DoS) attacks in CCN-based vehicular networks. Our approach guarantees the authenticity of each fragment through the immediate fragment verification at interim nodes on the routing path. Our experiment results demonstrate that the proposed approach provides much stronger security than the existing approach named FIGOA, without imposing a significant overhead in the process. The proposed method achieves a high immediate verification probability of 98.2% on average, which is 52% higher than that of FIGOA, while requiring only 14% more fragments than FIGOA.

Download Full-text

Mitigating Resource-Draining DoS Attacks on Broadcast Source Authentication on Wireless Sensors Networks

2008 International Conference on Security Technology ◽

10.1109/sectech.2008.20 ◽

2008 ◽

Author(s):

Chakib Bekara ◽

Maryline Laurent-Maknavicius ◽

Kheira Bekara

Keyword(s):

Wireless Sensors ◽

Dos Attacks ◽

Source Authentication ◽

Wireless Sensors Networks

Download Full-text

MANETs performance analysis with dos attack at different routing protocols

International Journal of Engineering & Technology ◽

10.14419/ijet.v4i2.4609 ◽

2015 ◽

Vol 4 (2) ◽

pp. 390 ◽

Cited By ~ 3

Author(s):

Alaa Zain ◽

Heba El-khobby ◽

Hatem M. Abd Elkader ◽

Mostafa Abdelnaby

Keyword(s):

Routing Protocol ◽

Routing Protocols ◽

Ad Hoc ◽

Denial Of Service ◽

Geographic Routing ◽

Security Threat ◽

Dos Attacks ◽

Reactive Routing ◽

Hoc Networks ◽

The Impact

A Mobile Ad-Hoc Networks (MANET) is widely used in many industrial and people's life applications, such as earth monitoring, natural disaster prevention, agriculture biomedical related applications, and many other areas. Security threat is one of the major aspects of MANET, as it is one of the basic requirements of wireless sensor network, yet this problem has not been sufficiently explored. The main purpose of this paper is to study different MANETs routing protocols with three scenarios of Denial of Service (DoS) attacks on network layer using proactive routing protocol i.e. Optimized Link State Routing (OLSR) and Reactive routing protocols like Ad hoc On-Demand Distance Vector (AODV), Hybrid routing protocols like Geographic Routing Protocol (GRP). Moreover, a comparative analysis of DoS attacks for throughput, Data loss, delay and network load is taken into account. The performance of MANET under the attack is studied to find out which protocol is more vulnerable to the attack and how much is the impact of the attack on both protocols. The simulation is done using OPNET 17.

Download Full-text

Control of DoS Attacks During Merging Process Over the Internet of Things

Advances in Intelligent Systems and Computing - Web, Artificial Intelligence and Network Applications ◽

10.1007/978-3-030-44038-1_75 ◽

2020 ◽

pp. 822-833

Author(s):

Albandari Alsumayt

Keyword(s):

Internet Of Things ◽

The Internet ◽

Dos Attacks ◽

Merging Process ◽

The Internet Of Things

Download Full-text

Peningkatan Keamanan Router Mikrotik Terhadap Serangan Denial of Service (DoS)

Jurnal Sistim Informasi dan Teknologi ◽

10.37034/jsisfotek.v2i4.32 ◽

2020 ◽

pp. 115-123

Author(s):

Budi Jaya ◽

Y Yuhandri ◽

S Sumijan

Keyword(s):

Denial Of Service ◽

Digital Evidence ◽

Dos Attack ◽

Dos Attacks ◽

Research Results ◽

Security Enhancement ◽

Software And Hardware ◽

Operational Activities ◽

Network Router ◽

Live Forensics

Denial of Service (DoS) attacks are one of the most common attacks on website, networks, routers and servers, including on router mikrotik. A DoS attack aims to render a network router unable to service requests from authorized users. The result will disrupt the operational activities of the organization and cause material and non-material losses. In this study, a simulation and analysis of DoS attacks using the Live Forensics method were carried out and the router security enhancement from rectangular software and hardware. From the research results obtained digital evidence of DoS attacks in the form of IP addresses and attacker activity logs. In addition, the increase in router security in terms of software by using Firewall Filter and Firewall Raw has proven effective in preventing attacks. While improving router security in terms of hardware by setting a reset button on the router and firewall devices is also very necessary so that the router can avoid physical attacks by irresponsible persons

Download Full-text

DoS Attacks at Cooperative MAC

10.31224/osf.io/h5rtc ◽

2018 ◽

Author(s):

Kiramat

Keyword(s):

Wireless Networks ◽

Performance Improvement ◽

Wireless Lan ◽

Denial Of Service ◽

Channel Access ◽

Cooperative Network ◽

Mac Layer ◽

Dos Attacks ◽

Cooperative Protocols ◽

Cooperative Mac

—Cooperative networking brings performance improvement to most of theissues in wireless networks, such as fading or delay due to slow stations. However, due tocooperation when data is relayed via other nodes, there network is more prone to attacks.Since, channel access is very important for cooperation, most of the attacks happens at MAC.One of the most critical attack is denial of service, which is reason of cooperation failure.Therefore, the cooperative network as well as simple wireless LAN must be defensive againstDOS attacks.In this article we analyzed all possible of DoS attacks that can happen at MAC layer ofWLAN. The cooperative protocols must consider defense against these attacks. This articlealso provided survey of available solutions to these attacks. At the end it described itsdamages and cost as well as how to handle these attacks while devising cooperative MAC.

Download Full-text