Mitigating Denial-of-Service Attacks in MANET by Incentive-based Packet Filtering: A Game-theoretic Approach
Author
Xiaoxin Wu, David K. Y. Yau
Tech report number
CERIAS TR 2007-53
Abstract
Defending against denial-of-service attacks (DoS) in a mobile ad hoc network (MANET) is challenging because the network topology is dynamic and nodes are selfish. In this paper, we propose a DoS mitigation technique that uses digital signatures to verify legitimate packets, and drop packets that do not pass the verification. Since nodes are selfish, they may not perform the verification in order to avoid paying the overhead. A bad packet that escapes verification along the whole network path will bring a penalty to all its forwarders. A network game can be formulated in which notes along a network path, in optimizing their own benefits, are encouraged to act collectively to filter out bad packets. Analytical results show that Nash equilibrium can be attained for players in the proposed game, and significant benefits can be provided to forwarders such that many of the bad packets will be eliminated by verification.
Series
Proceedings of IEEE SecureComm
Acknowledgement
Research was supported in part b the U.S. National Science Foundation under grant number CNS-0305496, and in part by an Asian Initiative grant awarded by Purdue University.
Affiliation
Intel Communication Beijing Lab, Purdue University
Publication Date
2007-09-01
Contents
I. Introduction
II. Game Theoretic DoS Mitigation in Market
III. Game Formulation
IV. Discussions
V. Numerical Results
VI. Conclusions and Future Work
VII. Acknowledgement
Keywords
Mitigating Denial-of-Service Attacks, Incentive-based Packet Filtering
Subject
Mitigating Denial-of-Service Attacks in MANET by Incentive-based Packet Filtering