Defending against path-based dos attacks in wireless sensor networks

Jing Deng; Richard Han; Shivakant Mishra

doi:10.1145/1102219.1102235

Defending against path-based dos attacks in wireless sensor networks

Jing Deng^*, Richard Han, Shivakant Mishra

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

138 Citations (Scopus)

Abstract

Denial of service (DoS) attacks can cause serious damage in resource-constrained, wireless sensor networks (WSNs). This paper addresses an especially damaging form of DoS attack, called PDoS (Path-based Denial of Service). In a PDoS attack, an adversary overwhelms sensor nodes a long distance away by flooding a multi-hop end-to-end communication path with either replayed packets or injected spurious packets. This paper proposes a solution using one-way hash chains to protect end-to-end communications in WSNs against PDoS attacks. The proposed solution is lightweight, tolerates bursty packet losses, and can easily be implemented in modern WSNs. The paper reports on performance measured from a prototype implementation.

Original language	English
Title of host publication	SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks
Place of Publication	New York, NY
Publisher	Association for Computing Machinery, Inc
Pages	89-96
Number of pages	8
ISBN (Print)	1595932275, 9781595932273
DOIs	https://doi.org/10.1145/1102219.1102235
Publication status	Published - 2005
Externally published	Yes
Event	SASN'05 - 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks - Alexandria, VA, United States Duration: 7 Nov 2005 → 7 Nov 2005

Publication series

Name	SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks
Volume	2005

Conference

Conference	SASN'05 - 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks
Country/Territory	United States
City	Alexandria, VA
Period	7/11/05 → 7/11/05

Keywords

Denial of Services Attacks
Security
Sensor Networks

Access to Document

10.1145/1102219.1102235

Cite this

Deng, J., Han, R., & Mishra, S. (2005). Defending against path-based dos attacks in wireless sensor networks. In SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks (pp. 89-96). (SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks; Vol. 2005). Association for Computing Machinery, Inc. https://doi.org/10.1145/1102219.1102235

Deng, Jing ; Han, Richard ; Mishra, Shivakant. / Defending against path-based dos attacks in wireless sensor networks. SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks. New York, NY : Association for Computing Machinery, Inc, 2005. pp. 89-96 (SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks).

@inproceedings{8069fcdfa05144c5a5ff7e27751c3804,

title = "Defending against path-based dos attacks in wireless sensor networks",

abstract = "Denial of service (DoS) attacks can cause serious damage in resource-constrained, wireless sensor networks (WSNs). This paper addresses an especially damaging form of DoS attack, called PDoS (Path-based Denial of Service). In a PDoS attack, an adversary overwhelms sensor nodes a long distance away by flooding a multi-hop end-to-end communication path with either replayed packets or injected spurious packets. This paper proposes a solution using one-way hash chains to protect end-to-end communications in WSNs against PDoS attacks. The proposed solution is lightweight, tolerates bursty packet losses, and can easily be implemented in modern WSNs. The paper reports on performance measured from a prototype implementation.",

keywords = "Denial of Services Attacks, Security, Sensor Networks",

author = "Jing Deng and Richard Han and Shivakant Mishra",

year = "2005",

doi = "10.1145/1102219.1102235",

language = "English",

isbn = "1595932275",

series = "SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks",

publisher = "Association for Computing Machinery, Inc",

pages = "89--96",

booktitle = "SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks",

note = "SASN'05 - 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks ; Conference date: 07-11-2005 Through 07-11-2005",

}

Deng, J, Han, R & Mishra, S 2005, Defending against path-based dos attacks in wireless sensor networks. in SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks. SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks, vol. 2005, Association for Computing Machinery, Inc, New York, NY, pp. 89-96, SASN'05 - 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks, Alexandria, VA, United States, 7/11/05. https://doi.org/10.1145/1102219.1102235

Defending against path-based dos attacks in wireless sensor networks. / Deng, Jing; Han, Richard; Mishra, Shivakant.
SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks. New York, NY: Association for Computing Machinery, Inc, 2005. p. 89-96 (SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks; Vol. 2005).

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - Defending against path-based dos attacks in wireless sensor networks

AU - Deng, Jing

AU - Han, Richard

AU - Mishra, Shivakant

PY - 2005

Y1 - 2005

N2 - Denial of service (DoS) attacks can cause serious damage in resource-constrained, wireless sensor networks (WSNs). This paper addresses an especially damaging form of DoS attack, called PDoS (Path-based Denial of Service). In a PDoS attack, an adversary overwhelms sensor nodes a long distance away by flooding a multi-hop end-to-end communication path with either replayed packets or injected spurious packets. This paper proposes a solution using one-way hash chains to protect end-to-end communications in WSNs against PDoS attacks. The proposed solution is lightweight, tolerates bursty packet losses, and can easily be implemented in modern WSNs. The paper reports on performance measured from a prototype implementation.

AB - Denial of service (DoS) attacks can cause serious damage in resource-constrained, wireless sensor networks (WSNs). This paper addresses an especially damaging form of DoS attack, called PDoS (Path-based Denial of Service). In a PDoS attack, an adversary overwhelms sensor nodes a long distance away by flooding a multi-hop end-to-end communication path with either replayed packets or injected spurious packets. This paper proposes a solution using one-way hash chains to protect end-to-end communications in WSNs against PDoS attacks. The proposed solution is lightweight, tolerates bursty packet losses, and can easily be implemented in modern WSNs. The paper reports on performance measured from a prototype implementation.

KW - Denial of Services Attacks

KW - Security

KW - Sensor Networks

UR - http://www.scopus.com/inward/record.url?scp=33745969132&partnerID=8YFLogxK

U2 - 10.1145/1102219.1102235

DO - 10.1145/1102219.1102235

M3 - Conference proceeding contribution

SN - 1595932275

SN - 9781595932273

T3 - SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks

SP - 89

EP - 96

BT - SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks

PB - Association for Computing Machinery, Inc

CY - New York, NY

T2 - SASN'05 - 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks

Y2 - 7 November 2005 through 7 November 2005

ER -

Deng J, Han R, Mishra S. Defending against path-based dos attacks in wireless sensor networks. In SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks. New York, NY: Association for Computing Machinery, Inc. 2005. p. 89-96. (SASN'05 - Proceedings of the 2005 ACM Workshop on Security of Ad Hoc and Sensor Networks). doi: 10.1145/1102219.1102235

Defending against path-based dos attacks in wireless sensor networks

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this