TY - GEN
T1 - Securing internet coordinate embedding systems
AU - Kaafar, Mohamed Ali
AU - Mathy, Laurent
AU - Barakat, Chadi
AU - Salamatian, Kave
AU - Turletti, Thierry
AU - Dabbous, Walid
PY - 2007
Y1 - 2007
N2 - This paper addresses the issue of the security of Internet Coordinate Systems,by proposing a general method for malicious behavior detection during coordinate computations. We first show that the dynamics of a node, in a coordinate system without abnormal or malicious behavior, can be modeled by a Linear State Space model and tracked by a Kalman filter. Then we show, that the obtained model can be generalized in the sense that the parameters of a filtercalibrated at a node can be used effectively to model and predict the dynamic behavior at another node, as long as the two nodes are not too far apart in the network. This leads to the proposal of a Surveyor infrastructure: Surveyor nodes are trusted, honest nodes that use each other exclusively to position themselves in the coordinate space, and are therefore immune to malicious behavior in the system.During their own coordinate embedding, other nodes can thenuse the filter parameters of a nearby Surveyor as a representation of normal, clean system behavior to detect and filter out abnormal or malicious activity. A combination of simulations and PlanetLab experiments are used to demonstrate the validity, generality, and effectiveness of the proposed approach for two representative coordinate embedding systems, namely Vivaldi and NPS.
AB - This paper addresses the issue of the security of Internet Coordinate Systems,by proposing a general method for malicious behavior detection during coordinate computations. We first show that the dynamics of a node, in a coordinate system without abnormal or malicious behavior, can be modeled by a Linear State Space model and tracked by a Kalman filter. Then we show, that the obtained model can be generalized in the sense that the parameters of a filtercalibrated at a node can be used effectively to model and predict the dynamic behavior at another node, as long as the two nodes are not too far apart in the network. This leads to the proposal of a Surveyor infrastructure: Surveyor nodes are trusted, honest nodes that use each other exclusively to position themselves in the coordinate space, and are therefore immune to malicious behavior in the system.During their own coordinate embedding, other nodes can thenuse the filter parameters of a nearby Surveyor as a representation of normal, clean system behavior to detect and filter out abnormal or malicious activity. A combination of simulations and PlanetLab experiments are used to demonstrate the validity, generality, and effectiveness of the proposed approach for two representative coordinate embedding systems, namely Vivaldi and NPS.
KW - network positioning systems
KW - internet Coordinates-embedding systems
KW - security
KW - malicious behavior detection
KW - Kalman filter
UR - http://www.scopus.com/inward/record.url?scp=36949037494&partnerID=8YFLogxK
U2 - 10.1145/1282380.1282388
DO - 10.1145/1282380.1282388
M3 - Conference proceeding contribution
AN - SCOPUS:36949037494
SN - 1595937137
SN - 9781595937131
T3 - Computer Communication Review
SP - 61
EP - 72
BT - ACM SIGCOMM 2007
PB - ACM
CY - New York
T2 - ACM SIGCOMM 2007: Conference on Computer Communications
Y2 - 27 August 2007 through 30 August 2007
ER -