Uploaded byHabitamuAsimare
PPTX, PDF213 views

Classification and review of security schemes

Mobile computing systems face security challenges due to their vulnerability. This document analyzes security schemes for mobile computing, classifying approaches for mobile ad hoc networks (MANETs) and mobile agents. For MANETs, threats include denial of service attacks and routing attacks. For mobile agents, protecting agents from hostile hosts is difficult. The taxonomy highlights contributions to address different attack types and approaches, identifying limitations and open issues to better secure mobile networks.

Embed presentation

Download to read offline
CLASSIFICATION AND REVIEW OF SECURITY SCHEMES IN MOBILE COMPUTING By: Habitamu Asimare ID: BDU1000227PR By: Sathish Alampalayam Kumar Cryptography and Network Security Paper presentation
Contents  Introduction  Mobile Computing System Security  MANET attacks  Taxonomy of mobile agent  MANET security approaches  Mobile Agent Attacked by  Another Agent ,  Mobile agent, and  the host  The security research issues  Conclusion
Introduction  Mobile computing and networking should not be confused with the portable computing and networking we have today.  Providing security services in the mobile computing environment is challenging because it is more vulnerable for intrusion and eavesdropping  Authentication mechanisms are designed to protect a sys-tem from unauthorized access to its resources and data.  However, at present, completely preventing breaches of security seems unrealistic, especially in mobile computing systems  A Personal Area Network (PAN) level firewall as envisioned for the next generation
Continued …  firewalls and Virtual Private Network (VPN) sandboxes cannot be directly applied to the wireless mobile world  Even if the fire-wall concept were achieved by creating a private extra-net (VPN) which extends the firewall protected domain to wherever the user moves, this would still lead to in-efficient routing.  Security is a fundamental concern for mobile network based system.  The identified security as a “severe concern” and regard it as the primary obstacle to adopting mobile systems
Mobile Computing Systems Security  Let’s see the taxonomy of security
Continued…  A Mobile Ad hoc Network (MANET) is a collection of wireless mobile nodes forming a temporary network without any centralized authority.  In a MANET, each wireless mobile node operates not only as an end-system, but also as a router to forward packets.  A MANET is a possible solution to quickly establish communications in a mobile, transient and infrastructure-less environment  Mobile ad-hoc networks are the future of wireless networks. Nodes in these networks will generate both user and application traffic and perform various network functions.
Continued  Intrusion is defined as an attack or a deliberate unauthorized attempt to access information, manipulate information, or render a system unreliable or unusable.  A MANET can be subjected to active attacks and passive attacks.  Active attacks refer to the direct attacks by a hostile entity during execution or transmission phase.  Some of the major types of active attacks are routing attacks and active DoS attacks. Passive attacks refer to the indirect attacks by an entity in the network during collaboration. Some of the major types of passive attacks include actions like selfishness, eavesdropping, traffic analysis and passive DoS attacks.
MANET Attacks Routing loop attack. DoS attack. Packet mistreatment attack.
Taxonomy of mobile agent
MANET security approaches  There are many approaches of MANET security  Routing is an important aspect of moving packets around in a network  Group key Diffie-Hellman (GDH) model that provides a flexible solution to group key management  MOCA (Mobile Certification Authority) protocol that helps manage heterogeneous mobile nodes as part of a MANET.  Basically there are two methods used for routing: AODV (Ad hoc On-demand Distance Vector) routing and DSDV (Destination Sequenced Distance Vector) routing.
Continued …  The impact of authentication attacks is quite wide-spread and it includes unauthorized access, denial of service, masquerading, information leakage, and domain hijacking.  Techniques for Intrusion-Resistant Ad Hoc Routing Algorithms (TIARA) was proposed by Ramanujam et al. to detect and eliminate DoS .  On-demand Secure Routing Protocol (OSRP) that defines a reliability metric based on past records and use it to select the secure path
Continued …  MOCA protocol do not take into account the direction of Certification REQuests (CREQs).  One possible solution for such a scenario is to utilize the next hop field in the cached routing table entries.  The SEAD approach does not incorporate mechanisms to detect and expose nodes that advertise routes but do not forward packets  IDS Model proposed by Brutch and Ko is a statistical anomaly detection algorithm. It works by first as-suming that the audit trail generated from a host has been converted to a canonical audit trail (CAT) format  The algorithm analyzes a session vector in three steps: 1) it calculates a Bernoulli vector, 2) it calculates the weighted intrusion score, and 3) it calculates the suspicion quotient.
Continued …  The Bernoulli vector is generated from the session vectors as well as some threshold vectors.  The weighted intrusion score is generated for a particular session and for a particular intrusion type.  suspicion value, or suspicion quotient, for a session is determined by what percentage of ran-dom sessions have a weighted intrusion score less than or equal to the weighted intrusion score of the current ses-sion.
Continued …  To summarize, the related existing intrusion detection and intrusion response approaches suffer from one or more of the following limitations specifically with respect to mobile ad hoc networks:  Lower detection rate when mobility is used as a parameter.  Higher false positive rate when mobility is used as a parameter.  Appropriate response techniques to protect Mobile Ad Hoc Networks after threat detection.
Mobile Agent Attacked by Another Agent , Mobile agent, and the host  Secure and open mobile agents (SOMA) provide secrecy and integrity to the mobile agents by means of encryption and authenticated channels.  AJANATA provides secure access to system resources and supports isolated protection domains for agents by using supported thread groups and class loaders.  Enhanced privacy and authentication for GSM by C. H. proposes three improved methods to enhance the security, to reduce the storage space, to eliminate the sensitive information stored in VLR, and consequently to improve the performance of the system.  Profiling mobile users by Bayesian decision algorithm proposes to provide detection and response solution for an agent attacked by agent privacy problems like masquerade and unauthorized access.
Continued …  The proposal of SOMA architecture provides authentication and authorization for the host security from mobile agents.  This scheme attempts to provide a solution for masquerade and unauthorized access at-tacks by agents on host  The solution through Proof Carrying Code (PCC) provides a security for hosts in the masquerade and un-authorized attacks via proof checker ensured by code producer which is “tamper proof” and “self certifying code/agent”.  MACKMAN propose a solution motivated by the deficiencies found in the registration and authentication service of the existing protocols such as GSM, CDPD, and IS-41. This solution employs mutual authentication and digital signatures to provide a more secure registration and authentication service for mobile computing by using Elliptic Curve RSA (ECRSA) for the efficiency reasons.
Continued …  The scheme provides solution for unauthorized access, denial of service and masquerade attacks by ad- dressing the following issues:  Trustworthiness of Intermediate Network.  Mutual Authentication between a mobile agent and mobile host.  Data Confidentiality against both active and passive intrusion by malicious agents.  Un traceability requires protection of registered users from unauthorized entities. A mobile host should be able to request network services without divulging any access control information to eavesdroppers. The degree of intractability availability to mobile host depends upon the policies enforced by the underlying system and the tradeoffs between cost and benefits.
Continued …  Time Synchronization, since the mobile agents travel across various time zones and administrative authorities and hence the time synchronization in security systems for mobile environments is not recommended.  Optional Security and Modes of Security: Due to the scarce mobile environment resources likes bandwidth and power and hence various modes of security should be made optional.  Flexibility: The security system for mobile environments should provide enough flexibility to incorporate future advances in shared-key cryptographic techniques.  Interoperability: The security system for mobile environments should provide for interoperability between numerous variations and versions of cryptographic pro- ducts.
The security research issues  The security research issues could be summarized as follows:  Can a mobile agent protect itself against tampering by a mobile host? (code and execution integrity)  Can a mobile agent remotely sign a document without disclosing the user’s private key? (computing with secrets in public).  Can a mobile agent conceal the program it wants to have executed? (code privacy)  Secure routing or denial of service attacks protection.  Can a host (computer) execute a cipher program without understanding it?
Conclusion  Viewed points  taxonomy of security schemes for mobile computing systems  Classification of for mobile computing systems  With respect to the MANET based mobile computing system, our analysis shows that the potential threats faced by MANETs come in the form of denial of service, selfish node behavior, or routing attack.  With respect to the mobile agent model based mobile computing system, providing security for the mobile agent from the fixed host seems to be more challenging than providing the security for fixed host from mobile agents.  The taxonomy developed in this paper highlights the contributions for different types of attacks and shows the different types of approaches taken to provide security. This taxonomy should help researchers focus on underlying methods, limitations of the existing schemes and open research issues needed to secure MANETs.
Classification and review of security schemes

More Related Content

PDF
Iaetsd baack better adaptive
byIaetsd Iaetsd
 
PDF
EFFICIENT DETECTION OF SYBIL ATTACK BASED ON CRYPTOGRAPHY IN VANET
byIJNSA Journal
 
PDF
International Journal of Computational Engineering Research(IJCER)
byijceronline
 
PDF
Am03402220229
byijceronline
 
PDF
Ijcet 06 07_001
byIAEME Publication
 
PDF
A technical review and comparative analysis of machine learning techniques fo...
byIJECEIAES
 
PPTX
Privacy & Security Aspects in Mobile Networks
byDefCamp
 
PDF
www.ijerd.com
byIJERD Editor
 
Iaetsd baack better adaptive
byIaetsd Iaetsd
 
EFFICIENT DETECTION OF SYBIL ATTACK BASED ON CRYPTOGRAPHY IN VANET
byIJNSA Journal
 
International Journal of Computational Engineering Research(IJCER)
byijceronline
 
Am03402220229
byijceronline
 
Ijcet 06 07_001
byIAEME Publication
 
A technical review and comparative analysis of machine learning techniques fo...
byIJECEIAES
 
Privacy & Security Aspects in Mobile Networks
byDefCamp
 
www.ijerd.com
byIJERD Editor
 

What's hot

PDF
A Modular Approach To Intrusion Detection in Homogenous Wireless Network
byIOSR Journals
 
PDF
IRJET- Detection and Localization of IDS Spoofing Attack in Wireless Sensor N...
byIRJET Journal
 
PDF
Ktr an efficient key management scheme for secure data access control in wire...
byambitlick
 
PDF
A Study of Sybil and Temporal Attacks in Vehicular Ad Hoc Networks: Types, Ch...
byEditor IJCATR
 
PDF
Implementing High Grade Security in Cloud Application using Multifactor Auth...
byIJwest
 
PDF
Detection of-sybil-attack-using-position-verification-method-in-manets
byEditor IJMTER
 
PDF
International Refereed Journal of Engineering and Science (IRJES)
byirjes
 
PDF
3778975074 january march 2015 1
bynicfs
 
PDF
A Performance Analysis of Chasing Intruders by Implementing Mobile Agents
byCSCJournals
 
PDF
Review of authentication techniques for wireless networks & manet
byeSAT Journals
 
PDF
Review of Security Issues in Mobile Wireless Sensor Networks
byEswar Publications
 
PPT
Tutorial on Wirless Security in Medical Devices
bygvrangaraj
 
PDF
A44080104
byIJERA Editor
 
PPT
Tutorial on Wireless Security in Medical Devices
bygvrangaraj
 
PDF
Security attacks and solutions in vehicular ad hoc networks a survey
bypijans
 
PDF
BYZANTINE BEHAVIOUR (B2) – MITIGATING MIDWAY MULTICAST MISBEHAVIOUR (M4) IN A...
byIJNSA Journal
 
PDF
TRUST FACTOR AND FUZZY-FIREFLY INTEGRATED PARTICLE SWARM OPTIMIZATION BASED I...
byIJCNCJournal
 
PDF
RESOLVING NETWORK DEFENSE CONFLICTS WITH ZERO TRUST ARCHITECTURES AND OTHER E...
byIJNSA Journal
 
PDF
RESOLVING NETWORK DEFENSE CONFLICTS WITH ZERO TRUST ARCHITECTURES AND OTHER E...
byIJNSA Journal
 
PDF
S ECURITY C ONSIDERATIONS IN A M ARINE C OMMUNICATION N ETWORK FOR F ISH...
byIJCI JOURNAL
 
A Modular Approach To Intrusion Detection in Homogenous Wireless Network
byIOSR Journals
 
IRJET- Detection and Localization of IDS Spoofing Attack in Wireless Sensor N...
byIRJET Journal
 
Ktr an efficient key management scheme for secure data access control in wire...
byambitlick
 
A Study of Sybil and Temporal Attacks in Vehicular Ad Hoc Networks: Types, Ch...
byEditor IJCATR
 
Implementing High Grade Security in Cloud Application using Multifactor Auth...
byIJwest
 
Detection of-sybil-attack-using-position-verification-method-in-manets
byEditor IJMTER
 
International Refereed Journal of Engineering and Science (IRJES)
byirjes
 
3778975074 january march 2015 1
bynicfs
 
A Performance Analysis of Chasing Intruders by Implementing Mobile Agents
byCSCJournals
 
Review of authentication techniques for wireless networks & manet
byeSAT Journals
 
Review of Security Issues in Mobile Wireless Sensor Networks
byEswar Publications
 
Tutorial on Wirless Security in Medical Devices
bygvrangaraj
 
A44080104
byIJERA Editor
 
Tutorial on Wireless Security in Medical Devices
bygvrangaraj
 
Security attacks and solutions in vehicular ad hoc networks a survey
bypijans
 
BYZANTINE BEHAVIOUR (B2) – MITIGATING MIDWAY MULTICAST MISBEHAVIOUR (M4) IN A...
byIJNSA Journal
 
TRUST FACTOR AND FUZZY-FIREFLY INTEGRATED PARTICLE SWARM OPTIMIZATION BASED I...
byIJCNCJournal
 
RESOLVING NETWORK DEFENSE CONFLICTS WITH ZERO TRUST ARCHITECTURES AND OTHER E...
byIJNSA Journal
 
RESOLVING NETWORK DEFENSE CONFLICTS WITH ZERO TRUST ARCHITECTURES AND OTHER E...
byIJNSA Journal
 
S ECURITY C ONSIDERATIONS IN A M ARINE C OMMUNICATION N ETWORK FOR F ISH...
byIJCI JOURNAL
 

Similar to Classification and review of security schemes

PDF
A Survey of Techniques against Security Threats in Mobile Ad Hoc Networks
bydrsrinivasanvenkataramani
 
PDF
Survey of Security Threats and Protection Techniques in Mobile Ad Hoc Networks
bydrsrinivasanvenkataramani
 
PDF
An enhanced approach for securing mobile agents from
byeSAT Publishing House
 
PDF
How to Counter-act Security Threats in Mobile Ad Hoc Networks?
bydrsrinivasanvenkataramani
 
PDF
Comprehensive Study of Counter-acting Security Threats in Mobile Ad Hoc Networks
bydrsrinivasanvenkataramani
 
PDF
JCC_2015120915212763
byZia ul haq Arain
 
PDF
New Security Threats and Protection Techniques in Mobile Ad Hoc Networks
bydrsrinivasanvenkataramani
 
PDF
Probabilistic Random Range Technique for Securing Text Over Mobile Adhoc Network
byIRJET Journal
 
PDF
Towards the security issues in Mobile Ad Hoc Networks
byAM Publications,India
 
PDF
A Review on various Security Attacks in Mobile Adhoc Network
byIRJET Journal
 
PPT
Attacks in MANET
bySunita Sahu
 
PDF
A Survey of Key Management Framework for Wireless Mobile Environment
byAM Publications,India
 
PDF
Biometric Based Intrusion Detection System using Dempster-Shafer Theory for M...
byrahulmonikasharma
 
PDF
Manet mobile ad hoc network – challenges, security and protocols-2
byprjpublications
 
PDF
MOBILE ADHOC NETWORKS SECURITY CHALLENGES: A SURVEY
byIAEME Publication
 
PDF
MOBILE ADHOC NETWORKS SECURITY CHALLENGES: A SURVEY
byIAEME Publication
 
PPTX
Study of security attacks in manet
byKunal Prajapati
 
PPT
Manet
byAayush Khandelwal
 
PDF
Jamming attacks in wireless networks
byThesis Scientist Private Limited
 
PPT
secure_mobile.ppt
bySameer Ali
 
A Survey of Techniques against Security Threats in Mobile Ad Hoc Networks
bydrsrinivasanvenkataramani
 
Survey of Security Threats and Protection Techniques in Mobile Ad Hoc Networks
bydrsrinivasanvenkataramani
 
An enhanced approach for securing mobile agents from
byeSAT Publishing House
 
How to Counter-act Security Threats in Mobile Ad Hoc Networks?
bydrsrinivasanvenkataramani
 
Comprehensive Study of Counter-acting Security Threats in Mobile Ad Hoc Networks
bydrsrinivasanvenkataramani
 
JCC_2015120915212763
byZia ul haq Arain
 
New Security Threats and Protection Techniques in Mobile Ad Hoc Networks
bydrsrinivasanvenkataramani
 
Probabilistic Random Range Technique for Securing Text Over Mobile Adhoc Network
byIRJET Journal
 
Towards the security issues in Mobile Ad Hoc Networks
byAM Publications,India
 
A Review on various Security Attacks in Mobile Adhoc Network
byIRJET Journal
 
Attacks in MANET
bySunita Sahu
 
A Survey of Key Management Framework for Wireless Mobile Environment
byAM Publications,India
 
Biometric Based Intrusion Detection System using Dempster-Shafer Theory for M...
byrahulmonikasharma
 
Manet mobile ad hoc network – challenges, security and protocols-2
byprjpublications
 
MOBILE ADHOC NETWORKS SECURITY CHALLENGES: A SURVEY
byIAEME Publication
 
MOBILE ADHOC NETWORKS SECURITY CHALLENGES: A SURVEY
byIAEME Publication
 
Study of security attacks in manet
byKunal Prajapati
 
Manet
byAayush Khandelwal
 
Jamming attacks in wireless networks
byThesis Scientist Private Limited
 
secure_mobile.ppt
bySameer Ali
 

Recently uploaded

DOCX
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
PPTX
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
PDF
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
PDF
The year in review - MarvelClient in 2025
bypanagenda
 
PDF
GPUS and How to Program Them by Manya Bansal
byScyllaDB
 
PPTX
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
PDF
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
PPTX
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
PPTX
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
PPTX
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
PDF
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
PDF
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
PDF
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
PDF
Day 2 - Network Security ~ 2nd Sight Lab ~ Cloud Security Class ~ 2020
by2nd Sight Lab
 
PDF
API-First Architecture in Financial Systems
bycyy111112
 
PPTX
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PDF
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
PDF
Day 1 - Cloud Security Strategy and Planning ~ 2nd Sight Lab ~ Cloud Security...
by2nd Sight Lab
 
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
Data Virtualization in Action: Scaling APIs and Apps with FME
bySafe Software
 
The year in review - MarvelClient in 2025
bypanagenda
 
GPUS and How to Program Them by Manya Bansal
byScyllaDB
 
Conversational Agents – Building Intelligent Assistants [Virtual Hands-on Wor...
byUiPathCommunity
 
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
Six Shifts For 2026 (And The Next Six Years)
byDavid Armano
 
Energy Storage Landscape Clean Energy Ministerial
bySurajitBanerjee38
 
Access Control 2025: From Security Silo to Software-Defined Ecosystem
byMemoori
 
Day 2 - Network Security ~ 2nd Sight Lab ~ Cloud Security Class ~ 2020
by2nd Sight Lab
 
API-First Architecture in Financial Systems
bycyy111112
 
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
Day 1 - Cloud Security Strategy and Planning ~ 2nd Sight Lab ~ Cloud Security...
by2nd Sight Lab
 

Classification and review of security schemes

  • 1.
    CLASSIFICATION AND REVIEWOF SECURITY SCHEMES IN MOBILE COMPUTING By: Habitamu Asimare ID: BDU1000227PR By: Sathish Alampalayam Kumar Cryptography and Network Security Paper presentation
  • 2.
    Contents  Introduction  MobileComputing System Security  MANET attacks  Taxonomy of mobile agent  MANET security approaches  Mobile Agent Attacked by  Another Agent ,  Mobile agent, and  the host  The security research issues  Conclusion
  • 3.
    Introduction  Mobile computingand networking should not be confused with the portable computing and networking we have today.  Providing security services in the mobile computing environment is challenging because it is more vulnerable for intrusion and eavesdropping  Authentication mechanisms are designed to protect a sys-tem from unauthorized access to its resources and data.  However, at present, completely preventing breaches of security seems unrealistic, especially in mobile computing systems  A Personal Area Network (PAN) level firewall as envisioned for the next generation
  • 4.
    Continued …  firewallsand Virtual Private Network (VPN) sandboxes cannot be directly applied to the wireless mobile world  Even if the fire-wall concept were achieved by creating a private extra-net (VPN) which extends the firewall protected domain to wherever the user moves, this would still lead to in-efficient routing.  Security is a fundamental concern for mobile network based system.  The identified security as a “severe concern” and regard it as the primary obstacle to adopting mobile systems
  • 5.
    Mobile Computing Systems Security Let’s see the taxonomy of security
  • 6.
    Continued…  A MobileAd hoc Network (MANET) is a collection of wireless mobile nodes forming a temporary network without any centralized authority.  In a MANET, each wireless mobile node operates not only as an end-system, but also as a router to forward packets.  A MANET is a possible solution to quickly establish communications in a mobile, transient and infrastructure-less environment  Mobile ad-hoc networks are the future of wireless networks. Nodes in these networks will generate both user and application traffic and perform various network functions.
  • 7.
    Continued  Intrusion isdefined as an attack or a deliberate unauthorized attempt to access information, manipulate information, or render a system unreliable or unusable.  A MANET can be subjected to active attacks and passive attacks.  Active attacks refer to the direct attacks by a hostile entity during execution or transmission phase.  Some of the major types of active attacks are routing attacks and active DoS attacks. Passive attacks refer to the indirect attacks by an entity in the network during collaboration. Some of the major types of passive attacks include actions like selfishness, eavesdropping, traffic analysis and passive DoS attacks.
  • 8.
    MANET Attacks Routing loopattack. DoS attack. Packet mistreatment attack.
  • 9.
  • 10.
    MANET security approaches There are many approaches of MANET security  Routing is an important aspect of moving packets around in a network  Group key Diffie-Hellman (GDH) model that provides a flexible solution to group key management  MOCA (Mobile Certification Authority) protocol that helps manage heterogeneous mobile nodes as part of a MANET.  Basically there are two methods used for routing: AODV (Ad hoc On-demand Distance Vector) routing and DSDV (Destination Sequenced Distance Vector) routing.
  • 11.
    Continued …  Theimpact of authentication attacks is quite wide-spread and it includes unauthorized access, denial of service, masquerading, information leakage, and domain hijacking.  Techniques for Intrusion-Resistant Ad Hoc Routing Algorithms (TIARA) was proposed by Ramanujam et al. to detect and eliminate DoS .  On-demand Secure Routing Protocol (OSRP) that defines a reliability metric based on past records and use it to select the secure path
  • 12.
    Continued …  MOCAprotocol do not take into account the direction of Certification REQuests (CREQs).  One possible solution for such a scenario is to utilize the next hop field in the cached routing table entries.  The SEAD approach does not incorporate mechanisms to detect and expose nodes that advertise routes but do not forward packets  IDS Model proposed by Brutch and Ko is a statistical anomaly detection algorithm. It works by first as-suming that the audit trail generated from a host has been converted to a canonical audit trail (CAT) format  The algorithm analyzes a session vector in three steps: 1) it calculates a Bernoulli vector, 2) it calculates the weighted intrusion score, and 3) it calculates the suspicion quotient.
  • 13.
    Continued …  TheBernoulli vector is generated from the session vectors as well as some threshold vectors.  The weighted intrusion score is generated for a particular session and for a particular intrusion type.  suspicion value, or suspicion quotient, for a session is determined by what percentage of ran-dom sessions have a weighted intrusion score less than or equal to the weighted intrusion score of the current ses-sion.
  • 14.
    Continued …  Tosummarize, the related existing intrusion detection and intrusion response approaches suffer from one or more of the following limitations specifically with respect to mobile ad hoc networks:  Lower detection rate when mobility is used as a parameter.  Higher false positive rate when mobility is used as a parameter.  Appropriate response techniques to protect Mobile Ad Hoc Networks after threat detection.
  • 15.
    Mobile Agent Attackedby Another Agent , Mobile agent, and the host  Secure and open mobile agents (SOMA) provide secrecy and integrity to the mobile agents by means of encryption and authenticated channels.  AJANATA provides secure access to system resources and supports isolated protection domains for agents by using supported thread groups and class loaders.  Enhanced privacy and authentication for GSM by C. H. proposes three improved methods to enhance the security, to reduce the storage space, to eliminate the sensitive information stored in VLR, and consequently to improve the performance of the system.  Profiling mobile users by Bayesian decision algorithm proposes to provide detection and response solution for an agent attacked by agent privacy problems like masquerade and unauthorized access.
  • 16.
    Continued …  Theproposal of SOMA architecture provides authentication and authorization for the host security from mobile agents.  This scheme attempts to provide a solution for masquerade and unauthorized access at-tacks by agents on host  The solution through Proof Carrying Code (PCC) provides a security for hosts in the masquerade and un-authorized attacks via proof checker ensured by code producer which is “tamper proof” and “self certifying code/agent”.  MACKMAN propose a solution motivated by the deficiencies found in the registration and authentication service of the existing protocols such as GSM, CDPD, and IS-41. This solution employs mutual authentication and digital signatures to provide a more secure registration and authentication service for mobile computing by using Elliptic Curve RSA (ECRSA) for the efficiency reasons.
  • 17.
    Continued …  Thescheme provides solution for unauthorized access, denial of service and masquerade attacks by ad- dressing the following issues:  Trustworthiness of Intermediate Network.  Mutual Authentication between a mobile agent and mobile host.  Data Confidentiality against both active and passive intrusion by malicious agents.  Un traceability requires protection of registered users from unauthorized entities. A mobile host should be able to request network services without divulging any access control information to eavesdroppers. The degree of intractability availability to mobile host depends upon the policies enforced by the underlying system and the tradeoffs between cost and benefits.
  • 18.
    Continued …  TimeSynchronization, since the mobile agents travel across various time zones and administrative authorities and hence the time synchronization in security systems for mobile environments is not recommended.  Optional Security and Modes of Security: Due to the scarce mobile environment resources likes bandwidth and power and hence various modes of security should be made optional.  Flexibility: The security system for mobile environments should provide enough flexibility to incorporate future advances in shared-key cryptographic techniques.  Interoperability: The security system for mobile environments should provide for interoperability between numerous variations and versions of cryptographic pro- ducts.
  • 19.
    The security researchissues  The security research issues could be summarized as follows:  Can a mobile agent protect itself against tampering by a mobile host? (code and execution integrity)  Can a mobile agent remotely sign a document without disclosing the user’s private key? (computing with secrets in public).  Can a mobile agent conceal the program it wants to have executed? (code privacy)  Secure routing or denial of service attacks protection.  Can a host (computer) execute a cipher program without understanding it?
  • 20.
    Conclusion  Viewed points taxonomy of security schemes for mobile computing systems  Classification of for mobile computing systems  With respect to the MANET based mobile computing system, our analysis shows that the potential threats faced by MANETs come in the form of denial of service, selfish node behavior, or routing attack.  With respect to the mobile agent model based mobile computing system, providing security for the mobile agent from the fixed host seems to be more challenging than providing the security for fixed host from mobile agents.  The taxonomy developed in this paper highlights the contributions for different types of attacks and shows the different types of approaches taken to provide security. This taxonomy should help researchers focus on underlying methods, limitations of the existing schemes and open research issues needed to secure MANETs.