TraceGray:一种基于移动代理的MANET入侵检测的应用层方案

2011 Third International Conference on Communication Systems and Networks (COMSNETS 2011) Pub Date : 2011-02-17 DOI:10.1109/COMSNETS.2011.5716475

Amar Taggu, Ani Taggu

{"title":"TraceGray:一种基于移动代理的MANET入侵检测的应用层方案","authors":"Amar Taggu, Ani Taggu","doi":"10.1109/COMSNETS.2011.5716475","DOIUrl":null,"url":null,"abstract":"Many intrusion detection algorithms have been proposed to detect network attacks on Mobile Ad-Hoc Networks (MANET). Most of such proposals require extensive modifications to routing algorithms or lower layers which might not be always feasible in practice. This paper proposes a simple but non-trivial scheme TraceGray, that uses mobile agents (MA) to carry out intrusion detection in a MANET without modifying either the underlying routing algorithms or other layers like the datalink layer. TraceGray works only in the application layer and detects multiple gray holes in a DSR protocol based MANET, while traversing the network from a given source to a destination. Since mobile agents work in the application layer, our approach requires no changes to any existing routing protocols or lower layers and is essentially protocol independent. The ns-2 based implementation show successful detection of multiple gray holes in networks with moderate mobility.","PeriodicalId":302678,"journal":{"name":"2011 Third International Conference on Communication Systems and Networks (COMSNETS 2011)","volume":"34 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2011-02-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"16","resultStr":"{\"title\":\"TraceGray: An application-layer scheme for intrusion detection in MANET using mobile agents\",\"authors\":\"Amar Taggu, Ani Taggu\",\"doi\":\"10.1109/COMSNETS.2011.5716475\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Many intrusion detection algorithms have been proposed to detect network attacks on Mobile Ad-Hoc Networks (MANET). Most of such proposals require extensive modifications to routing algorithms or lower layers which might not be always feasible in practice. This paper proposes a simple but non-trivial scheme TraceGray, that uses mobile agents (MA) to carry out intrusion detection in a MANET without modifying either the underlying routing algorithms or other layers like the datalink layer. TraceGray works only in the application layer and detects multiple gray holes in a DSR protocol based MANET, while traversing the network from a given source to a destination. Since mobile agents work in the application layer, our approach requires no changes to any existing routing protocols or lower layers and is essentially protocol independent. The ns-2 based implementation show successful detection of multiple gray holes in networks with moderate mobility.\",\"PeriodicalId\":302678,\"journal\":{\"name\":\"2011 Third International Conference on Communication Systems and Networks (COMSNETS 2011)\",\"volume\":\"34 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2011-02-17\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"16\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2011 Third International Conference on Communication Systems and Networks (COMSNETS 2011)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/COMSNETS.2011.5716475\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2011 Third International Conference on Communication Systems and Networks (COMSNETS 2011)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/COMSNETS.2011.5716475","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 16

摘要

为了检测移动自组织网络(MANET)上的网络攻击，已经提出了许多入侵检测算法。大多数这样的建议需要对路由算法或较低层次进行广泛的修改，这在实践中可能并不总是可行的。本文提出了一种简单而重要的方案TraceGray，该方案在不修改底层路由算法或数据链路层等其他层的情况下，使用移动代理(MA)在MANET中进行入侵检测。TraceGray仅在应用层工作，并在从给定源到目的地遍历网络时检测基于MANET的DSR协议中的多个灰洞。由于移动代理在应用层中工作，我们的方法不需要更改任何现有的路由协议或更低层，并且本质上是协议独立的。基于ns-2的实现成功地检测了具有中等移动性的网络中的多个灰洞。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

TraceGray: An application-layer scheme for intrusion detection in MANET using mobile agents

Many intrusion detection algorithms have been proposed to detect network attacks on Mobile Ad-Hoc Networks (MANET). Most of such proposals require extensive modifications to routing algorithms or lower layers which might not be always feasible in practice. This paper proposes a simple but non-trivial scheme TraceGray, that uses mobile agents (MA) to carry out intrusion detection in a MANET without modifying either the underlying routing algorithms or other layers like the datalink layer. TraceGray works only in the application layer and detects multiple gray holes in a DSR protocol based MANET, while traversing the network from a given source to a destination. Since mobile agents work in the application layer, our approach requires no changes to any existing routing protocols or lower layers and is essentially protocol independent. The ns-2 based implementation show successful detection of multiple gray holes in networks with moderate mobility.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2011 Third International Conference on Communication Systems and Networks (COMSNETS 2011)

自引率

0.00%

发文量