Detection and removal of co-operative blackhole and grayhole attacks in MANETs

2012 International Conference on System Engineering and Technology (ICSET) Pub Date : 2012-10-25 DOI:10.1109/ICSENGT.2012.6339342

Gundeep Singh Bindra, Ashish Kapoor, Ashish Narang, Arjun Agrawal

{"title":"Detection and removal of co-operative blackhole and grayhole attacks in MANETs","authors":"Gundeep Singh Bindra, Ashish Kapoor, Ashish Narang, Arjun Agrawal","doi":"10.1109/ICSENGT.2012.6339342","DOIUrl":null,"url":null,"abstract":"A MANET, by definition, comprises of nodes which are mobile. It has a dynamic topology and lacks a central controlling entity. These features along with undefined and unsecure boundaries make its security a very challenging issue. Blackhole and grayhole attacks can in fact seriously compromise the performance of a critical infrastructure like a MANET. In this paper we propose a mechanism to detect and remove the blackhole and grayhole attacks. The solution we are proposing tackles these attacks by maintaining an Extended Data Routing Information (EDRI) Table at each node in addition to the Routing Table of the AODV protocol. The mechanism is capable of detecting a malicious node. It also maintains a history of the node's previous malicious instances to account for the gray behaviour. Refresh packet, Renew Packet, BHID Packet, Further request and Further reply packets are also used in addition to the existing packets (RREQ and RREP). Our technique is capable of finding chain of cooperating malicious nodes which drop a significant fraction of packets.","PeriodicalId":325365,"journal":{"name":"2012 International Conference on System Engineering and Technology (ICSET)","volume":"21 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-10-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"65","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 International Conference on System Engineering and Technology (ICSET)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSENGT.2012.6339342","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 65

Abstract

A MANET, by definition, comprises of nodes which are mobile. It has a dynamic topology and lacks a central controlling entity. These features along with undefined and unsecure boundaries make its security a very challenging issue. Blackhole and grayhole attacks can in fact seriously compromise the performance of a critical infrastructure like a MANET. In this paper we propose a mechanism to detect and remove the blackhole and grayhole attacks. The solution we are proposing tackles these attacks by maintaining an Extended Data Routing Information (EDRI) Table at each node in addition to the Routing Table of the AODV protocol. The mechanism is capable of detecting a malicious node. It also maintains a history of the node's previous malicious instances to account for the gray behaviour. Refresh packet, Renew Packet, BHID Packet, Further request and Further reply packets are also used in addition to the existing packets (RREQ and RREP). Our technique is capable of finding chain of cooperating malicious nodes which drop a significant fraction of packets.

查看原文本刊更多论文

manet中协同黑洞和灰洞攻击的检测与去除

根据定义，MANET由可移动的节点组成。它具有动态拓扑结构，缺乏中央控制实体。这些特性以及未定义和不安全的边界使其安全性成为一个非常具有挑战性的问题。黑洞和灰洞攻击实际上会严重损害像MANET这样的关键基础设施的性能。本文提出了一种检测和消除黑洞和灰洞攻击的机制。我们提出的解决方案通过在每个节点上维护除AODV协议路由表之外的扩展数据路由信息表(EDRI)来解决这些攻击。该机制能够检测恶意节点。它还维护节点以前恶意实例的历史记录，以解释灰色行为。除了现有的报文(RREQ和RREP)外，还使用了Refresh packet、Renew packet、BHID packet、Further request和Further reply报文。我们的技术能够发现协作的恶意节点链，这些节点会丢失大量的数据包。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2012 International Conference on System Engineering and Technology (ICSET)

自引率

0.00%

发文量