Xiaoxin Wu, David K. Y. Yau

CERIAS TR 2007-53

inproceedings

Defending against denial-of-service attacks (DoS) in a mobile ad hoc network (MANET) is challenging because the network topology is dynamic and nodes are selfish. In this paper, we propose a DoS mitigation technique that uses digital signatures to verify legitimate packets, and drop packets that do not pass the verification. Since nodes are selfish, they may not perform the verification in order to avoid paying the overhead. A bad packet that escapes verification along the whole network path will bring a penalty to all its forwarders. A network game can be formulated in which notes along a network path, in optimizing their own benefits, are encouraged to act collectively to filter out bad packets. Analytical results show that Nash equilibrium can be attained for players in the proposed game, and significant benefits can be provided to forwarders such that many of the bad packets will be eliminated by verification.

PDF

2007 – 09

Nice, France

Wu

Proceedings of IEEE SecureComm

Research was supported in part b the U.S. National Science Foundation under grant number CNS-0305496, and in part by an Asian Initiative grant awarded by Purdue University.

Intel Communication Beijing Lab, Purdue University

2007-09-01

I. Introduction II. Game Theoretic DoS Mitigation in Market III. Game Formulation IV. Discussions V. Numerical Results VI. Conclusions and Future Work VII. Acknowledgement

Mitigating Denial-of-Service Attacks, Incentive-based Packet Filtering

English

Mitigating Denial-of-Service Attacks in MANET by Incentive-based Packet Filtering