Ad hoc Network Security

The purpose of the project is to analyzes common security threats to MANET protocols, like Neighborhood Discovery Protocol (NHDP), OLSRv2, Simplified Multicast Forwarding (SMF), etc.

NHDP defines a HELLO messages exchange, enabling each NHDP Router to acquire topological information describing its 1-hop and 2-hop neighbors, and specifies information bases for recording this information.

An NHDP Router periodically transmits HELLO messages using a link-local multicast on each of its interfaces with a hop-limit of 1 (i.e., HELLOs are never forwarded). In these HELLO messages, an NHDP Router announces the IP addresses as heard, symmetric or lost neighbor interface addresses.

An Attacker has several ways of harming this neighbor discovery process: It can announce “wrong” information about its identity, postulate non-existent links, and replay HELLO messages.

The different ways of attacking an NHDP deployment may eventually lead to inconsistent information bases, not accurately reflecting the correct topology of the MANET. The consequence hereof is that protocols using NHDP will base their operation on incorrect information, causing routing protocols to not be able to calculate correct (or any) paths, degrade the performance of flooding operations based on reduced relay sets, etc.

ttl

An example of replay attack using TTL/hop-limit field

 

Related documents:

2016

Herberg, Ulrich; Clausen, Thomas; Yi, Jiazi

Security Threats for the Optimized Link State Routing Protocol version 2 (OLSRv2) Miscellaneous

2016.

Links | BibTeX

Yi, Jiazi; Clausen, Thomas H; Herberg, Ulrich

Security Threats to Simplified Multicast Forwarding (SMF) Miscellaneous

RFC 7985, 2016.

Abstract | Links | BibTeX

2014

Yi, Jiazi; Herberg, Ulrich; Clausen, Thomas

Security Threats for the Neighborhood Discovery Protocol (NHDP) Miscellaneous

RFC 7186, 2014.

Abstract | Links | BibTeX

2012

Yi, Jiazi; Clausen, Thomas

Vulnerability Analysis of Relay Set Selection Algorithms for the Simplified Multicast Forwarding (SMF) Protocol for Mobile Ad Hoc Networks Inproceedings

The 15th International Conference on Network-Based Information Systems (NBiS-2012), 2012.

Abstract | Links | BibTeX

2011

Yi, Jiazi; Clausen, Thomas; Herberg, Ulrich

Vulnerability Analysis of the SMF Protocol for Mobile Ad Hoc Networks Inproceedings

IEEE CPSCom 2011, 2011, (http://ieeexplore.ieee.org/xpl/articleDetails.jsp?reload=true&arnumber=6142260).

Abstract | Links | BibTeX

2008

Yi, Jiazi

A Survey on the security of MANETs Technical Report

Polytech'Nantes Nantes, France, 2008.

Abstract | Links | BibTeX