利用多因素身份验证防止MANET中的冒充攻击

Third International Symposium on Modeling and Optimization in Mobile, Ad Hoc, and Wireless Networks (WiOpt'05) Pub Date : 2005-04-04 DOI:10.1109/WIOPT.2005.42

Dimitris Glynos, P. Kotzanikolaou, C. Douligeris

{"title":"利用多因素身份验证防止MANET中的冒充攻击","authors":"Dimitris Glynos, P. Kotzanikolaou, C. Douligeris","doi":"10.1109/WIOPT.2005.42","DOIUrl":null,"url":null,"abstract":"Existing MANET authentication schemes cannot fully protect nodes from well-known impersonation attacks. Although these schemes cryptographically link an entity to a claimed identity, the actual entity is never linked to the physical node device. However, the link is implicitly assumed. This shortcoming may be easily exploited within a MANET setting, due to the broadcast nature of the access medium. In this paper we propose a multifactor authentication framework that extends the cryptographic link, binding an entity to a physical node device. This is achieved by using two distinct authentication factors; certified keys and certified node characteristics. Although the proposed framework requires additional sensing capabilities from the MANET nodes, it provides the additional confidence level required for node authentication in critical applications.","PeriodicalId":109366,"journal":{"name":"Third International Symposium on Modeling and Optimization in Mobile, Ad Hoc, and Wireless Networks (WiOpt'05)","volume":"7 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2005-04-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"55","resultStr":"{\"title\":\"Preventing impersonation attacks in MANET with multi-factor authentication\",\"authors\":\"Dimitris Glynos, P. Kotzanikolaou, C. Douligeris\",\"doi\":\"10.1109/WIOPT.2005.42\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Existing MANET authentication schemes cannot fully protect nodes from well-known impersonation attacks. Although these schemes cryptographically link an entity to a claimed identity, the actual entity is never linked to the physical node device. However, the link is implicitly assumed. This shortcoming may be easily exploited within a MANET setting, due to the broadcast nature of the access medium. In this paper we propose a multifactor authentication framework that extends the cryptographic link, binding an entity to a physical node device. This is achieved by using two distinct authentication factors; certified keys and certified node characteristics. Although the proposed framework requires additional sensing capabilities from the MANET nodes, it provides the additional confidence level required for node authentication in critical applications.\",\"PeriodicalId\":109366,\"journal\":{\"name\":\"Third International Symposium on Modeling and Optimization in Mobile, Ad Hoc, and Wireless Networks (WiOpt'05)\",\"volume\":\"7 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2005-04-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"55\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Third International Symposium on Modeling and Optimization in Mobile, Ad Hoc, and Wireless Networks (WiOpt'05)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/WIOPT.2005.42\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Third International Symposium on Modeling and Optimization in Mobile, Ad Hoc, and Wireless Networks (WiOpt'05)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WIOPT.2005.42","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 55

摘要

现有的MANET认证方案不能完全保护节点免受众所周知的冒充攻击。尽管这些方案以加密方式将实体链接到声明的身份，但实际实体从未链接到物理节点设备。然而，这种联系是隐式假设的。由于访问媒体的广播性质，这个缺点很容易在MANET设置中被利用。在本文中，我们提出了一个扩展加密链接的多因素身份验证框架，将实体绑定到物理节点设备。这是通过使用两个不同的身份验证因素实现的;认证密钥和认证节点特征。尽管提出的框架需要来自MANET节点的额外感知能力，但它提供了关键应用中节点认证所需的额外置信度。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Preventing impersonation attacks in MANET with multi-factor authentication

Existing MANET authentication schemes cannot fully protect nodes from well-known impersonation attacks. Although these schemes cryptographically link an entity to a claimed identity, the actual entity is never linked to the physical node device. However, the link is implicitly assumed. This shortcoming may be easily exploited within a MANET setting, due to the broadcast nature of the access medium. In this paper we propose a multifactor authentication framework that extends the cryptographic link, binding an entity to a physical node device. This is achieved by using two distinct authentication factors; certified keys and certified node characteristics. Although the proposed framework requires additional sensing capabilities from the MANET nodes, it provides the additional confidence level required for node authentication in critical applications.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Third International Symposium on Modeling and Optimization in Mobile, Ad Hoc, and Wireless Networks (WiOpt'05)

自引率

0.00%

发文量