• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>Association for Computing Machinery Conference on Wireless Network Security >Practical Defenses Against Pollution Attacks in Intra-Flow Network Coding for Wireless Mesh Networks
【24h】

Practical Defenses Against Pollution Attacks in Intra-Flow Network Coding for Wireless Mesh Networks

机译:用于无线网状网络的流动网络中的污染攻击的实际防御

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Recent studies show that network coding can provide significant benefits to network protocols, such as increased throughput, reduced network congestion, higher reliability, and lower power consumption. The core principle of network coding is that intermediate nodes actively mix input packets to produce output packets. This mixing subjects network coding systems to a severe security threat, known as a pollution attack, where attacker nodes inject corrupted packets into the network. Corrupted packets propagate in an epidemic manner, depleting network resources and significantly decreasing throughput. Pollution attacks are particularly dangerous in wireless networks, where attackers can easily inject packets or compromise devices due to the increased network vulnerability. In this paper, we address pollution attacks against network coding systems in wireless mesh networks. We demonstrate that previous solutions to the problem are impractical in wireless networks, incurring an unacceptably high degradation of throughput. We propose a lightweight scheme, DART, that uses time-based authentication in combination with random linear transformations to defend against pollution attacks. We further improve system performance and propose EDART, which enhances DART with an optimistic forwarding scheme. A detailed security analysis shows that the probability of a polluted packet passing our verification procedure is very low. Performance results using the well-known MORE protocol and realistic link quality measurements from the Roofnet experimental testbed show that our schemes improve system performance over 20 times compared to previous solutions.
机译:最近的研究表明,网络编码可以为网络协议提供显着的好处,例如增加的吞吐量,降低网络拥塞,更高的可靠性和更低的功耗。网络编码的核心原理是中间节点主动混合输入分组以产生输出分组。该混合对象对网络编码系统到严重的安全威胁,称为污染攻击,攻击者节点将损坏的数据包注入网络。损坏的数据包以疫情方式传播,耗尽网络资源并显着降低吞吐量。污染攻击在无线网络中特别危险,攻击者由于网络漏洞增加而容易注入数据包或危害设备。在本文中,我们在无线网状网络中解决了对网络编码系统的污染攻击。我们证明,在无线网络中对此问题的先前解决方案是不切实际的,这产生了不可接受的吞吐量。我们提出了一种轻量级方案,飞镖,使用基于时间的身份验证与随机线性变换结合使用以防御污染攻击。我们进一步提高了系统性能并提出了EDART,增强了具有乐观转发方案的飞镖。详细的安全分析表明,通过我们验证程序的污染数据包的概率非常低。使用众所周知的更多协议和Realistic Link质量测量的性能结果从屋顶网络实验测试平台表明,与以前的解决方案相比,我们的计划可以提高系统性能超过20次。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号