SlideShare a Scribd company logo

isc2015

Yi Ling
Yi Ling
1 of 1
Download to read offline
In-Band Wormhole Detection in Wireless Ad Hoc Networks Using Change Point Detection Method Student: Yi Ling Faculty Advisor: Dr. Maggie Cheng Department of Computer Science, Missouri University Science and Technology 1) The Sequential Change Point Detection Algorithm 3.Wormhole Detection Scheme 2) New Sequential Change Point Detection Algorithm: SW-CLT 5. Conclusion and Future Work • A new in-band wormhole detection SW-CLT method was proposed. • Identification of wormhole end nodes and removal the wormhole or mitigation the damage caused by the wormhole in future 1. Background 2. Project Objective Wormhole attack • Fake a route that is shorter than the original one within the network • Confuse routing mechanisms which rely on distance between nodes • Captures from one wormhole node and replays on the other • Easily be launched Out-band wormhole attack • Utilizes an external link between the two control points In-band wormhole attack • Redirect the traffic to a multi-hop tunnel over existing wireless medium Identify the in-band wormhole in wireless ad hoc network by detecting abrupt increase in end-to-end delay. • Detect a change point in a time series{x1,x2,…, xt , …,}, however, manually-set thresholds or parameters that limit the application. • The parametric version CUSUM algorithm is the best when the pre- and post-change distributions are known • The non-parametric version CUSUM need to preset threshold and related constant parameter. • The repeated sequential probability ratio test (R-SPRT) is used when the distributions are known or can be reliably estimated. • No requirement about the data characteristics. • Use a sliding window to calculate its detection statistics, and the detection threshold is decided based on the Central Limit Theory. • m – window size , t – time 0<=t<=n-2m Windows: • Compare the difference between the sums of the two windows with a threshold DTh. • ) is CDF for standard normal distribution. is a desired false alarm rate. • As the windows slide from the low end to the high end of the time series. If • Then The algorithm decides a change point has occurred between the boundary of two windows, and report change time μ ̃ = t + m. • For a true positive, the detection delay is the time difference between a reported change point and the true change point: • The algorithm is based on the Central Limit Theory and it works regardless of the underlying distribution of the end- to-end delay {x1 , . . . , xn }. 3) Simulation A. Wormhole Detection in a Stationary Network 1. All traffic is redirected to the wormhole tunnel • flows: 18-28 and 17-38. No background traffic. Wormhole attacks on 50s 2. Some flows go through the wormhole tunnel while others follow their previous routes. • Affected flows: 9-24, 18-28,17-38 • background traffic: 18-10, 37-12 • Wormhole attacks on 50s • Using NS3 simulator deployed 40 random node equipped with 802.11b Wifi interface with data rate 11 Mbps on a 500 m*500 m square region • Node transmission range: 100m B. Wormhole Detection in a Mobile Network • Benign case : node 1 and node 2 are moving towards each other. • Attack case : route change is caused by wormhole. Identify the in-band wormhole in wireless ad hoc network by detecting abrupt increase in end-to-end delay. C. Comparison of SW-CLT and NP-CUSUM • Scenario 1 : 18-28 and 17-38 flows • Scenario 2 : attack case with three flows:9-24,17-38, and 18-12

Recommended

Vampire attacks draining life from wireless ad hoc sensor networks
Vampire attacks draining life from wireless ad hoc sensor networksVampire attacks draining life from wireless ad hoc sensor networks
Vampire attacks draining life from wireless ad hoc sensor networksIEEEFINALYEARPROJECTS
 
JPN1414 Distributed Deployment Algorithms for Improved Coverage in a Networ...
JPN1414 Distributed Deployment Algorithms for Improved Coverage in a Networ...JPN1414 Distributed Deployment Algorithms for Improved Coverage in a Networ...
JPN1414 Distributed Deployment Algorithms for Improved Coverage in a Networ...chennaijp
 
Tqds time stamped quantum digital signature to defend
Tqds time stamped quantum digital signature to defendTqds time stamped quantum digital signature to defend
Tqds time stamped quantum digital signature to defendeSAT Publishing House
 
MP2P 2008 (PerCom 2008) - Elisa Rondini
MP2P 2008 (PerCom 2008) - Elisa RondiniMP2P 2008 (PerCom 2008) - Elisa Rondini
MP2P 2008 (PerCom 2008) - Elisa RondiniElisa Rondini
 
Stability Analysis in a Cognitive Radio System with Cooperative Beamforming
Stability Analysis in a Cognitive Radio System with Cooperative BeamformingStability Analysis in a Cognitive Radio System with Cooperative Beamforming
Stability Analysis in a Cognitive Radio System with Cooperative BeamformingMohamed Seif
 
Applications to Central Limit Theorem and Law of Large Numbers
Applications to Central Limit Theorem and Law of Large NumbersApplications to Central Limit Theorem and Law of Large Numbers
Applications to Central Limit Theorem and Law of Large NumbersUniversity of Salerno
 
Lecture slides stats1.13.l09.air
Lecture slides stats1.13.l09.airLecture slides stats1.13.l09.air
Lecture slides stats1.13.l09.airatutor_te
 
Central limit theorem
Central limit theoremCentral limit theorem
Central limit theoremVijeesh Soman
 

Recommended

Vampire attacks draining life from wireless ad hoc sensor networks
Vampire attacks draining life from wireless ad hoc sensor networksVampire attacks draining life from wireless ad hoc sensor networks
Vampire attacks draining life from wireless ad hoc sensor networksIEEEFINALYEARPROJECTS
 
JPN1414 Distributed Deployment Algorithms for Improved Coverage in a Networ...
JPN1414 Distributed Deployment Algorithms for Improved Coverage in a Networ...JPN1414 Distributed Deployment Algorithms for Improved Coverage in a Networ...
JPN1414 Distributed Deployment Algorithms for Improved Coverage in a Networ...chennaijp
 
Tqds time stamped quantum digital signature to defend
Tqds time stamped quantum digital signature to defendTqds time stamped quantum digital signature to defend
Tqds time stamped quantum digital signature to defendeSAT Publishing House
 
MP2P 2008 (PerCom 2008) - Elisa Rondini
MP2P 2008 (PerCom 2008) - Elisa RondiniMP2P 2008 (PerCom 2008) - Elisa Rondini
MP2P 2008 (PerCom 2008) - Elisa RondiniElisa Rondini
 
Stability Analysis in a Cognitive Radio System with Cooperative Beamforming
Stability Analysis in a Cognitive Radio System with Cooperative BeamformingStability Analysis in a Cognitive Radio System with Cooperative Beamforming
Stability Analysis in a Cognitive Radio System with Cooperative BeamformingMohamed Seif
 
Applications to Central Limit Theorem and Law of Large Numbers
Applications to Central Limit Theorem and Law of Large NumbersApplications to Central Limit Theorem and Law of Large Numbers
Applications to Central Limit Theorem and Law of Large NumbersUniversity of Salerno
 
Lecture slides stats1.13.l09.air
Lecture slides stats1.13.l09.airLecture slides stats1.13.l09.air
Lecture slides stats1.13.l09.airatutor_te
 
Central limit theorem
Central limit theoremCentral limit theorem
Central limit theoremVijeesh Soman
 
Decentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio Networks
Decentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio NetworksDecentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio Networks
Decentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio NetworksIffat Anjum
 
On Detecting Termination in Cognitive Radio Networks
On Detecting Termination in Cognitive Radio NetworksOn Detecting Termination in Cognitive Radio Networks
On Detecting Termination in Cognitive Radio NetworksShantanu Sharma
 
Analysis and reactive measures on the blackhole attack
Analysis and reactive measures on the blackhole attackAnalysis and reactive measures on the blackhole attack
Analysis and reactive measures on the blackhole attackJyotiVERMA176
 
WSU EECS REU poster
WSU EECS REU posterWSU EECS REU poster
WSU EECS REU posterJinyanzi Luo
 
66672670-Wireless-Sensor-Network.ppt
66672670-Wireless-Sensor-Network.ppt66672670-Wireless-Sensor-Network.ppt
66672670-Wireless-Sensor-Network.ppt073AamirFarooq
 
Wormhole attack
Wormhole attackWormhole attack
Wormhole attackHarsh Kishore Mishra
 
1570265619
15702656191570265619
1570265619Bob Gill, P.Eng. FEC
 
Secure and Efficient Transmission Using Jammer and Relay Networks
Secure and Efficient Transmission Using Jammer and Relay NetworksSecure and Efficient Transmission Using Jammer and Relay Networks
Secure and Efficient Transmission Using Jammer and Relay NetworksInternational Journal of Engineering Inventions www.ijeijournal.com
 
Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...
Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...
Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...Editor IJCATR
 
Ijetr012022
Ijetr012022Ijetr012022
Ijetr012022ER Publication.org
 
Lec7 cellular network
Lec7 cellular networkLec7 cellular network
Lec7 cellular networkPraveen Thomas
 
EC6651 COMMUNICATION ENGINEERING UNIT 2
EC6651 COMMUNICATION ENGINEERING UNIT 2EC6651 COMMUNICATION ENGINEERING UNIT 2
EC6651 COMMUNICATION ENGINEERING UNIT 2RMK ENGINEERING COLLEGE, CHENNAI
 
Node detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor networkNode detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor networkRamesh Patriotic
 
Iisrt 6-node detection technique for node replication attack in mobile sensor...
Iisrt 6-node detection technique for node replication attack in mobile sensor...Iisrt 6-node detection technique for node replication attack in mobile sensor...
Iisrt 6-node detection technique for node replication attack in mobile sensor...IISRTJournals
 
Node detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor networkNode detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor networkIISRT
 
Ar03302620266
Ar03302620266Ar03302620266
Ar03302620266ijceronline
 
Call Admission Control In Mobile Wireless Networks
Call Admission Control In Mobile Wireless NetworksCall Admission Control In Mobile Wireless Networks
Call Admission Control In Mobile Wireless NetworksMervat AbuElkheir
 
Vasserman-TMC13-slide
Vasserman-TMC13-slideVasserman-TMC13-slide
Vasserman-TMC13-slidemanoj kumar s
 
Threats in wireless sensor networks
Threats in wireless sensor networksThreats in wireless sensor networks
Threats in wireless sensor networksPriya Kaushal
 
MU- mimo [autosaved]
MU- mimo [autosaved]MU- mimo [autosaved]
MU- mimo [autosaved]Haramaya University, Haramaya Instute o
 

More Related Content

Similar to isc2015

Decentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio Networks
Decentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio NetworksDecentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio Networks
Decentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio NetworksIffat Anjum
 
On Detecting Termination in Cognitive Radio Networks
On Detecting Termination in Cognitive Radio NetworksOn Detecting Termination in Cognitive Radio Networks
On Detecting Termination in Cognitive Radio NetworksShantanu Sharma
 
Analysis and reactive measures on the blackhole attack
Analysis and reactive measures on the blackhole attackAnalysis and reactive measures on the blackhole attack
Analysis and reactive measures on the blackhole attackJyotiVERMA176
 
WSU EECS REU poster
WSU EECS REU posterWSU EECS REU poster
WSU EECS REU posterJinyanzi Luo
 
66672670-Wireless-Sensor-Network.ppt
66672670-Wireless-Sensor-Network.ppt66672670-Wireless-Sensor-Network.ppt
66672670-Wireless-Sensor-Network.ppt073AamirFarooq
 
Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...
Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...
Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...Editor IJCATR
 
Node detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor networkNode detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor networkRamesh Patriotic
 
Iisrt 6-node detection technique for node replication attack in mobile sensor...
Iisrt 6-node detection technique for node replication attack in mobile sensor...Iisrt 6-node detection technique for node replication attack in mobile sensor...
Iisrt 6-node detection technique for node replication attack in mobile sensor...IISRTJournals
 
Node detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor networkNode detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor networkIISRT
 
Call Admission Control In Mobile Wireless Networks
Call Admission Control In Mobile Wireless NetworksCall Admission Control In Mobile Wireless Networks
Call Admission Control In Mobile Wireless NetworksMervat AbuElkheir
 
Vasserman-TMC13-slide
Vasserman-TMC13-slideVasserman-TMC13-slide
Vasserman-TMC13-slidemanoj kumar s
 
Threats in wireless sensor networks
Threats in wireless sensor networksThreats in wireless sensor networks
Threats in wireless sensor networksPriya Kaushal
 

Similar to isc2015 (20)

Decentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio Networks
Decentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio NetworksDecentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio Networks
Decentralized Predictive MAC Protocol for Ad Hoc Cognitive Radio Networks
 
On Detecting Termination in Cognitive Radio Networks
On Detecting Termination in Cognitive Radio NetworksOn Detecting Termination in Cognitive Radio Networks
On Detecting Termination in Cognitive Radio Networks
 
Analysis and reactive measures on the blackhole attack
Analysis and reactive measures on the blackhole attackAnalysis and reactive measures on the blackhole attack
Analysis and reactive measures on the blackhole attack
 
WSU EECS REU poster
WSU EECS REU posterWSU EECS REU poster
WSU EECS REU poster
 
66672670-Wireless-Sensor-Network.ppt
66672670-Wireless-Sensor-Network.ppt66672670-Wireless-Sensor-Network.ppt
66672670-Wireless-Sensor-Network.ppt
 
Wormhole attack
Wormhole attackWormhole attack
Wormhole attack
 
1570265619
15702656191570265619
1570265619
 
Secure and Efficient Transmission Using Jammer and Relay Networks
Secure and Efficient Transmission Using Jammer and Relay NetworksSecure and Efficient Transmission Using Jammer and Relay Networks
Secure and Efficient Transmission Using Jammer and Relay Networks
 
Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...
Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...
Hop- by- Hop Message Authentication and Wormhole Detection Mechanism in Wirel...
 
Ijetr012022
Ijetr012022Ijetr012022
Ijetr012022
 
Lec7 cellular network
Lec7 cellular networkLec7 cellular network
Lec7 cellular network
 
EC6651 COMMUNICATION ENGINEERING UNIT 2
EC6651 COMMUNICATION ENGINEERING UNIT 2EC6651 COMMUNICATION ENGINEERING UNIT 2
EC6651 COMMUNICATION ENGINEERING UNIT 2
 
Node detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor networkNode detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor network
 
Iisrt 6-node detection technique for node replication attack in mobile sensor...
Iisrt 6-node detection technique for node replication attack in mobile sensor...Iisrt 6-node detection technique for node replication attack in mobile sensor...
Iisrt 6-node detection technique for node replication attack in mobile sensor...
 
Node detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor networkNode detection technique for node replication attack in mobile sensor network
Node detection technique for node replication attack in mobile sensor network
 
Ar03302620266
Ar03302620266Ar03302620266
Ar03302620266
 
Call Admission Control In Mobile Wireless Networks
Call Admission Control In Mobile Wireless NetworksCall Admission Control In Mobile Wireless Networks
Call Admission Control In Mobile Wireless Networks
 
Vasserman-TMC13-slide
Vasserman-TMC13-slideVasserman-TMC13-slide
Vasserman-TMC13-slide
 
Threats in wireless sensor networks
Threats in wireless sensor networksThreats in wireless sensor networks
Threats in wireless sensor networks
 
MU- mimo [autosaved]
MU- mimo [autosaved]MU- mimo [autosaved]
MU- mimo [autosaved]
 

isc2015

  • 1. In-Band Wormhole Detection in Wireless Ad Hoc Networks Using Change Point Detection Method Student: Yi Ling Faculty Advisor: Dr. Maggie Cheng Department of Computer Science, Missouri University Science and Technology 1) The Sequential Change Point Detection Algorithm 3.Wormhole Detection Scheme 2) New Sequential Change Point Detection Algorithm: SW-CLT 5. Conclusion and Future Work • A new in-band wormhole detection SW-CLT method was proposed. • Identification of wormhole end nodes and removal the wormhole or mitigation the damage caused by the wormhole in future 1. Background 2. Project Objective Wormhole attack • Fake a route that is shorter than the original one within the network • Confuse routing mechanisms which rely on distance between nodes • Captures from one wormhole node and replays on the other • Easily be launched Out-band wormhole attack • Utilizes an external link between the two control points In-band wormhole attack • Redirect the traffic to a multi-hop tunnel over existing wireless medium Identify the in-band wormhole in wireless ad hoc network by detecting abrupt increase in end-to-end delay. • Detect a change point in a time series{x1,x2,…, xt , …,}, however, manually-set thresholds or parameters that limit the application. • The parametric version CUSUM algorithm is the best when the pre- and post-change distributions are known • The non-parametric version CUSUM need to preset threshold and related constant parameter. • The repeated sequential probability ratio test (R-SPRT) is used when the distributions are known or can be reliably estimated. • No requirement about the data characteristics. • Use a sliding window to calculate its detection statistics, and the detection threshold is decided based on the Central Limit Theory. • m – window size , t – time 0<=t<=n-2m Windows: • Compare the difference between the sums of the two windows with a threshold DTh. • ) is CDF for standard normal distribution. is a desired false alarm rate. • As the windows slide from the low end to the high end of the time series. If • Then The algorithm decides a change point has occurred between the boundary of two windows, and report change time μ ̃ = t + m. • For a true positive, the detection delay is the time difference between a reported change point and the true change point: • The algorithm is based on the Central Limit Theory and it works regardless of the underlying distribution of the end- to-end delay {x1 , . . . , xn }. 3) Simulation A. Wormhole Detection in a Stationary Network 1. All traffic is redirected to the wormhole tunnel • flows: 18-28 and 17-38. No background traffic. Wormhole attacks on 50s 2. Some flows go through the wormhole tunnel while others follow their previous routes. • Affected flows: 9-24, 18-28,17-38 • background traffic: 18-10, 37-12 • Wormhole attacks on 50s • Using NS3 simulator deployed 40 random node equipped with 802.11b Wifi interface with data rate 11 Mbps on a 500 m*500 m square region • Node transmission range: 100m B. Wormhole Detection in a Mobile Network • Benign case : node 1 and node 2 are moving towards each other. • Attack case : route change is caused by wormhole. Identify the in-band wormhole in wireless ad hoc network by detecting abrupt increase in end-to-end delay. C. Comparison of SW-CLT and NP-CUSUM • Scenario 1 : 18-28 and 17-38 flows • Scenario 2 : attack case with three flows:9-24,17-38, and 18-12