Li-MSD: A lightweight mitigation solution for DAO insider attack in RPL-based IoT

arXiv - CS - Networking and Internet Architecture Pub Date : 2024-09-16 DOI:arxiv-2409.10020

Abhishek Verma, Sachin Kumar Verma, Avinash Chandra Pandey, Jyoti Grover, Girish Sharma

{"title":"Li-MSD: A lightweight mitigation solution for DAO insider attack in RPL-based IoT","authors":"Abhishek Verma, Sachin Kumar Verma, Avinash Chandra Pandey, Jyoti Grover, Girish Sharma","doi":"arxiv-2409.10020","DOIUrl":null,"url":null,"abstract":"Many IoT applications run on a wireless infrastructure supported by\nresource-constrained nodes which is popularly known as Low-Power and Lossy\nNetworks (LLNs). Currently, LLNs play a vital role in digital transformation of\nindustries. The resource limitations of LLNs restrict the usage of traditional\nrouting protocols and therefore require an energy-efficient routing solution.\nIETF's Routing Protocol for Low-power Lossy Networks (RPL, pronounced 'ripple')\nis one of the most popular energy-efficient protocols for LLNs, specified in\nRFC 6550. In RPL, Destination Advertisement Object (DAO) control message is\ntransmitted by a child node to pass on its reachability information to its\nimmediate parent or root node. An attacker may exploit the insecure DAO sending\nmechanism of RPL to perform 'DAO insider attack' by transmitting DAO multiple\ntimes. This paper shows that an aggressive DAO insider attacker can drastically\ndegrade network performance. We propose a Lightweight Mitigation Solution for\nDAO insider attack, which is termed as 'Li-MSD'. Li-MSD uses a blacklisting\nstrategy to mitigate the attack and restore RPL performance, significantly. By\nusing simulations, it is shown that Li-MSD outperforms the existing solution in\nthe literature.","PeriodicalId":501280,"journal":{"name":"arXiv - CS - Networking and Internet Architecture","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2024-09-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"arXiv - CS - Networking and Internet Architecture","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/arxiv-2409.10020","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Many IoT applications run on a wireless infrastructure supported by resource-constrained nodes which is popularly known as Low-Power and Lossy Networks (LLNs). Currently, LLNs play a vital role in digital transformation of industries. The resource limitations of LLNs restrict the usage of traditional routing protocols and therefore require an energy-efficient routing solution. IETF's Routing Protocol for Low-power Lossy Networks (RPL, pronounced 'ripple') is one of the most popular energy-efficient protocols for LLNs, specified in RFC 6550. In RPL, Destination Advertisement Object (DAO) control message is transmitted by a child node to pass on its reachability information to its immediate parent or root node. An attacker may exploit the insecure DAO sending mechanism of RPL to perform 'DAO insider attack' by transmitting DAO multiple times. This paper shows that an aggressive DAO insider attacker can drastically degrade network performance. We propose a Lightweight Mitigation Solution for DAO insider attack, which is termed as 'Li-MSD'. Li-MSD uses a blacklisting strategy to mitigate the attack and restore RPL performance, significantly. By using simulations, it is shown that Li-MSD outperforms the existing solution in the literature.

查看原文本刊更多论文

Li-MSD：基于 RPL 的物联网中 DAO 内部攻击的轻量级缓解方案

许多物联网应用都运行在由资源受限节点支持的无线基础设施上，这就是俗称的低功耗和低损耗网络（LLN）。目前，LLN 在各行业的数字化转型中发挥着至关重要的作用。IETF 的低功耗有损网络路由协议（RPL，读作 "涟漪"）是最流行的低功耗有损网络节能协议之一，由 RFC 6550 规定。在 RPL 中，子节点会发送目的地广告对象（DAO）控制消息，将其可达性信息传递给其父节点或根节点。攻击者可能会利用 RPL 不安全的 DAO 发送机制，通过多次发送 DAO 来实施 "DAO 内部攻击"。本文表明，攻击性 DAO 内部攻击者会大幅降低网络性能。我们提出了一种针对 DAO 内部攻击的轻量级缓解方案，称为 "Li-MSD"。Li-MSD 使用黑名单策略来缓解攻击，并显著恢复 RPL 性能。模拟结果表明，Li-MSD 优于现有的文献解决方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

arXiv - CS - Networking and Internet Architecture

自引率

0.00%

发文量