Securing internet coordinate embedding systems

Mohamed Ali Kaafar*, Laurent Mathy, Chadi Barakat, Kave Salamatian, Thierry Turletti, Walid Dabbous

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference proceeding contributionpeer-review

40 Citations (Scopus)

Abstract

This paper addresses the issue of the security of Internet Coordinate Systems,by proposing a general method for malicious behavior detection during coordinate computations. We first show that the dynamics of a node, in a coordinate system without abnormal or malicious behavior, can be modeled by a Linear State Space model and tracked by a Kalman filter. Then we show, that the obtained model can be generalized in the sense that the parameters of a filtercalibrated at a node can be used effectively to model and predict the dynamic behavior at another node, as long as the two nodes are not too far apart in the network. This leads to the proposal of a Surveyor infrastructure: Surveyor nodes are trusted, honest nodes that use each other exclusively to position themselves in the coordinate space, and are therefore immune to malicious behavior in the system.During their own coordinate embedding, other nodes can thenuse the filter parameters of a nearby Surveyor as a representation of normal, clean system behavior to detect and filter out abnormal or malicious activity. A combination of simulations and PlanetLab experiments are used to demonstrate the validity, generality, and effectiveness of the proposed approach for two representative coordinate embedding systems, namely Vivaldi and NPS.

Original languageEnglish
Title of host publicationACM SIGCOMM 2007
Subtitle of host publicationConference on Computer Communications
Place of PublicationNew York
PublisherACM
Pages61-72
Number of pages12
ISBN (Print)1595937137, 9781595937131
DOIs
Publication statusPublished - 2007
Externally publishedYes
EventACM SIGCOMM 2007: Conference on Computer Communications - Kyoto, Japan
Duration: 27 Aug 200730 Aug 2007

Publication series

NameComputer Communication Review
Number4
Volume37
ISSN (Print)0146-4833

Conference

ConferenceACM SIGCOMM 2007: Conference on Computer Communications
CountryJapan
CityKyoto
Period27/08/0730/08/07

Keywords

  • network positioning systems
  • internet Coordinates-embedding systems
  • security
  • malicious behavior detection
  • Kalman filter

Fingerprint

Dive into the research topics of 'Securing internet coordinate embedding systems'. Together they form a unique fingerprint.

Cite this