Article in Proceedings INPROC-2008-90

BibliographySchuhmann, Stephan; Völker, Lars: Combining Passive Autoconfiguration and Anomaly-based Intrusion Detection in Ad-hoc Networks.
In: Proceedings of the 8th International Workshop on Applications and Services in Wireless Networks (ASWN 2008); Kassel, Germany, October 9-10, 2008.
University of Stuttgart, Faculty of Computer Science, Electrical Engineering, and Information Technology.
pp. 87-95, english.
IEEE, October 2008.
Article in Proceedings (Workshop Paper).
CR-SchemaC.2.0 (Computer-Communication Networks, General)
 C.2.2 (Network Protocols)
KeywordsMANET; Intrusion Detection; Anomalies; OLSR
Abstract

Two essential services of Ad-hoc networks are IP address autoconfiguration and intrusion detection systems. Since both autoconfiguration and intrusion detection may base their decisions on routing protocol anomalies, their interdependencies can cause problems. In this paper, we present our approach to efficiently combine autoconfiguration and intrusion detection, and present our enhancements in attack detection for an autoconfiguration system. We have identified anomalies indicating specific attacks, implemented suitable anomaly detectors, and evaluated our system. The results show that it is possible to detect both the attacks and IP address conflicts in an efficient way.

Full text and
other links		PDF (478736 Bytes)
The original publication is available at IEEE Xplore
CopyrightThis material is posted here with permission of the IEEE. Such permission of the IEEE does not in any way imply IEEE endorsement of any products or services. Internal or personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution must be obtained from the IEEE (contact pubs-permissions@ieee.org). By choosing to view this document, you agree to all provisions of the copyright laws protecting it.
Department(s)University of Stuttgart, Institute of Parallel and Distributed Systems, Distributed Systems
Project(s)3PC
SPP1140
UBICONF
Entry dateSeptember 9, 2008
   Publ. Institute   Publ. Computer Science