Academia.eduAcademia.edu

Outline

Title
Abstract
Introduction
Ids Background
Conslusion & Future Work
References
All Topics
Computer Science
Cybersecurity

A Survey on MANET Intrusion Detection

Profile image of Satria MandalaSatria Mandala

Abstract

In recent years, the security issues on MANET have become one of the primary concerns. The MANET is more vulnerable to be attacked than wired network. These vulnerabilities are nature of the MANET structure that cannot be removed. As a result, attacks with malicious intent have been and will be devised to exploit these vulnerabilities and to cripple the MANET operation. Attack prevention measures, such as authentication and encryption, can be used as the first line of defense for reducing the possibilities of attacks. However, these techniques have a limitation on the effects of prevention techniques in general and they are designed for a set of known attacks. They are unlikely to prevent newer attacks that are designed for circumventing the existing security measures. For this reason, there is a need of second mechanism to "detect and response" these newer attacks, i.e. "intrusion detection". This paper aims to explore and to classify current techniques of Intrusion Detection System (IDS) aware MANET. To support these ideas, a discussion regarding attacks, IDS architectures, and researches achievement on MANET are presented inclusively, and then the comparison among several researches achievement will be evaluated based on these parameters. By this way, several existing security problems on MANET can be probed quickly for future researches.

Related papers

INTRUSION DETECTION SYSTEM FOR MANET
IJESRT Journal

Mobile Ad hoc Network is a collection of wireless mobile nodes forming a network without using any existing infrastructure. MANET is a collection of mobile nodes equipped with both a wireless-transmitter and receiver that communicate with each other via bi-directional wireless links either directly or indirectly. This paper aims to pioneer and to assort current techniques of Intrusion Detection System (IDS) aware MANET. MANET is infrastructure-less, pervasive in nature with multi-hop routing, without any centralized authority. To support these ideas, a discussion regarding attacks and researches achievement on MANET are presented inclusively in this paper, and then the comparison among several researches achievement is evaluated based on these parameter.

View PDFchevron_right
A Comprehensive Survey on Intrusion Detection in MANET
Sunita Sahu

With the progression of computer networks extending boundaries, Mobile ad hoc network (MANET) has emerged as a new frontier of technology to provide any where, any time communication. Due to its deployment nature, MANETs are more vulnerable to malicious attack. The absolute security in the mobile ad hoc network is very hard to achieve because of its fundamental characteristics, such as dynamic topology, open medium, limited power and limited bandwidth. The Prevention methods like authentication and cryptography techniques alone are not able to provide the security to these types of networks. Therefore, efficient intrusion detection must be deployed to facilitate the identification and isolation of attacks. In this paper we have surveyed various intrusion detection techniques in MANET and analyzed their fruitfulness.

View PDFchevron_right
Intrusion Detection Systems in MANET: A Review
Bachala Sathyanarayana

Mobile Ad hoc Network consists of some nodes that are stand randomly in operational environment. Because nodes are without any predefined infrastructure and mobility then that are susceptible for intrusion and attack. Securing is an important field in this type of network. In this paper we aim to representing concept of intrusion detection and then survey some of major intrusion detection approach in MANET and aim to comparing in some important field such as: use methods, type of attacks addressed, overhead, and architecture.

View PDFchevron_right
Intrusion Detection System in MANETS: A Survey
Palanivel Kuppusamy

A mobile ad hoc network is an infrastructure less network which is prone to various malicious attacks when incorporated in applications. It is a dreadful task for attaining security to the greatest degree in MANET. This is awaited to the diverse characteristics of mobile ad hoc networks which unlike from well-established infrastructure network. In order to overcome this security challenges the Intrusion detection systems have been deployed in the ad hoc network. In this paper we focus on surveying heterogeneous intrusion detection systems used in MANET for defending various attacks. Keywords— Mobile Ad hoc Network; IDS; Routing protocols; Attacks

View PDFchevron_right
A SPECIAL INTRUSION-DETECTION SYSTEM FOR MANETS
IJRCAR JOURNAL

IJRCAR, 2015

In past few decades the wired network technology most wide spread network in global trend. Now the technology has been migration to wireless network from wired network. In wireless networks a scalable and mobility is brought by in many applications. Among all the specifications of wireless networks, MANET is one of the most important and different applications. On the specification of traditional network architecture, actually MANET does not require a fixed network infrastructure; because the transmitter and receiver work on every single node. The communication is done in nodes within the specific range. Otherwise, they rely on their neighbours to relay messages. But the self-configuring ability of nodes in MANET made it popular among critical mission applications like military use or emergency recovery. However, the open medium and wide distribution of nodes make MANET vulnerable to malicious attackers. In this case, it is crucial to develop efficient intrusion-special detection mechanisms described to protect MANET from attacks. With the development of the technology MANETs used into industrial applications to reach such trend, the potential security issues occur in many industrials. To deploy this situation, we propose a special implement a new intrusion-detection system named Special Enhanced Adaptive Acknowledgment (SEAACK) specially designed for MANETs. Compared to contemporary approaches, SEAACK demonstrates higher malicious-behaviourdetection rates in certain circumstances while does not greatly affect the network performances.

View PDFchevron_right
Protection of MANETs from a range of attacks using an intrusion detection and prevention system
Dr Adnan Nadeem

Springer Telecommunication System Journal , 2011

Mobile ad hoc networks (MANETs) are well known to be vulnerable to various attacks due to their lack of centralized control, and their dynamic topology and energyconstrained operation. Much research in securing MANETs has focused on proposals which detect and prevent a specific kind of attack such as sleep deprivation, black hole, grey hole, rushing or sybil attacks. In this paper we propose a generalized intrusion detection and prevention mechanism. We use a combination of anomaly-based and knowledgebased intrusion detection to secure MANETs from a wide variety of attacks. This approach also has the capability to detect new unforeseen attacks. Simulation results of a case study shows that our proposed mechanism can successfully detect attacks, including multiple simultaneous different attacks, and identify and isolate the intruders causing a variety of attacks, with an affordable network overhead.We also investigate the impact on the MANET performance of (a) the various attacks and (b) the type of intrusion response, and we demonstrate the need for an adaptive intrusion response.

View PDFchevron_right
Investigating Intrusion Detection Systems in MANET and Comparing IDSs for Detecting Misbehaving Nodes
Ali Movaghar

World Academy of Science, Engineering and Technology, International Journal of Electrical, Computer, Energetic, Electronic and Communication Engineering, 2008

As mobile ad hoc networks (MANET) have different characteristics from wired networks and even from standard wireless networks, there are new challenges related to security issues that need to be addressed. Due to its unique features such as open nature, lack of infrastructure and central management, node mobility and change of dynamic topology, prevention methods from attacks on them are not enough. Therefore intrusion detection is one of the possible ways in recognizing a possible attack before the system could be penetrated. All in all, techniques for intrusion detection in old wireless networks are not suitable for MANET. In this paper, we classify the architecture for Intrusion detection systems that have so far been introduced for MANETs, and then existing intrusion detection techniques in MANET presented and compared. We then indicate important future research directions. Keywords—Intrusion Detection System(IDS), Misbehaving nodes, Mobile Ad Hoc Network(MANET), Security.

View PDFchevron_right
Secure Intrusion Detection System for MANET
IJSTE - International Journal of Science Technology and Engineering

In today's era MANET (mobile adhoc network) is a common technology which has great potential to be applied in commercial applications and also in military procedures. In this network the nodes are connected by wireless links and send data to each other forming an autonomous system. The nodes themselves work as the transmitter and receiver. MANETs do not have any centralised system and usually have a routable networking environment on top of a link layer adhoc network. Since it is self-routing and agile in nature its security has many flaws. In this project an intrusion detection system(IDS) is built to solve these security issues. So without prior knowledge of the attack the attacks can be detected. Among attacks on adhoc networks DDoS (distributed denial of service) is one of the most prominent attacks. The DDoS attack happens through the coordination of large amount of hosts distributed in the network which sends large number of packet to the target node. As a result, at the victim side due to the large traffic bandwidth gets consumed and important packets cannot be send to the victim in the network. In this project the effect of DDoS attack is analysed through three different criteria's using 12 nodes with the help of DSDV protocol. The three different criterias are Normal case, the attack case and the IDS case. The effect of DDoS in routing load, packet drop rate, end to end delay, i.e. maximizing due to attack on network is evaluated. And with these parameters a secure IDS is made to detect this kind of attack and block it. Using this the need of centralised trusted authority for security is eliminated in adhoc network.

View PDFchevron_right
INTRUSION DETECTION SYSTEM AND ITS TYPES IN MANET
TJPRC Publication

TJPRC, 2013

Mobile Ad hoc Networks (MANET) are utilized to set up wireless communication in improvised environments without a predefined infrastructure or centralized administration. An IDS is used to detect attempted intrusion into a computer or network. It processes audit data, performs analysis and takes certain set of actions against the intruder. In this paper, MANET, IDS and its architecture, attacks and previous work are explained.

View PDFchevron_right
Survey on Intrusion Detection and Prevention System: A MANET Perspective
Indraneel Mukhopadhyay

Abstract—These Recent computer systems are affected by viruses and malware. There are many techniques via which networks can be secured like encryption, firewalls, DMZ etc. Intrusion Detection System (IDS) is a type of system which detects attacks and notifies the same. Intrusion Prevention System (IPS) detects the attack and then prevents the system from further attacks. In recent times we have merge these two types of systems and rechristened it as Intrusion Detection and Prevention System (IDPS) the new system will ...

View PDFchevron_right

References (49)

  1. REFERENCES
  2. D.B. Johnson, D.A. Maltz, et.al. "The dynamic Source Routing Protocol for Mobile Ad hoc Networks (DSR)". Internet Draft, draft-ietf-manet-dsr-07.txt, work in progress, 2002
  3. T. Clausen, P. Jaquet, et.al. "Optimized link state routing protocol". Internet Draft, draft-ietf- manet-olsr-06.txt, work in progress, 2001
  4. C.E. Perkins, P. Bhagwat. "Highly dynamic destination-sequenced distance-vector routing (DSDV) for mobile computers". SIGCOMM 94 Conference on Communications Architectures, Protocols and Applications, 1994
  5. C.E Perkins, E. Belding-Royer. "Ad hoc On-demand Distance Vector (AODV)", Request For Comments (RFC) 3561, 2003
  6. C. Endorf, E. Schultz and J. Mellander, "Intrusion Detection & Prevention", McGraw-Hill, ISBN: 0072229543 (2004)
  7. J. P. Anderson. "Computer Security Threat Monitoring and Surveillance". Technical Report, James P. Anderson Co., Fort Washington, PA, 1980
  8. D.E. Denning, "An Intrusion-Detection Model". IEEE Transactions on Software Engineering, pp. 222-231, 1987
  9. L. Heberlein, G. Dias, et.al. "A network security monitor". In Proceedings of the IEEE Symposium on Security and Privacy, pp. 296-304, 1990
  10. A. Hijazi and N. Nasser. "Using Mobile Agents for Intrusion Detection in Wireless Ad Hoc Networks". In Wireless and Optical Communications Networks (WOCN), 2005
  11. T. F. Lunt, R. Jagannathan, et al. "IDES: The Enhanced Prototype C a Realtime Intrusion- Detection Expert System". Technical Report SRI-CSL-88-12, SRI International, Menlo Park, CA, 1988
  12. M. Esposito, C. Mazzariello, et.al. "Evaluating Pattern Recognition Techniques in Intrusion Detection Systems". The 7th International Workshop on Pattern Recognition in Information Systems, pp. 144-153, 2005
  13. S. Kumar and E. Spafford, "A Pattern Matching Model for Misuse Intrusion Detection". The 17th National Computer Security Conference, pp. 11-21, 1994
  14. P.A. Porras and R. Kemmerer, "Penetration State Transition Analysis C a Rule-Based Intrusion Detection Approach". The 8th Annual Computer Security Application Conference, pp. 220-229, 1992
  15. P. Porras and A. Valdes, "Live Traffic Analysis of TCP/IP Gateways". ISOC Symposium on Network and Distributed System Security, San Diego, CA, 1998
  16. H. Debar, M. Becker and D. Siboni. "A Neural Network Component for an Intrusion Detection System". Proceedings of IEEE Symposium on Research in Security and Privacy, Oakland, CA, pp. 240-250, 1992
  17. S. Forrest, S.A. Hofmeyr, and A. Somayaji. "Computer Immunology". Communications of the ACM, pp. 88-96, 1997
  18. N. Ye, X. Li, et.al. "Probabilistic Techniques for Intrusion Detection Based on Computer Audit Data". IEEE Transactions on Systems, Man, and Cybernetics, pp. 266-274, 2001
  19. W. Lee, S.J. Stolfo, K.W. Mok. "A Data Mining Framework for Building Intrusion Detection Models". IEEE Symposium on Security and Privacy (Oakland, California), 1999
  20. G. Florez, S.M. Bridges, and R.B. Vaughn, "An Improved Algorithm for Fuzzy Data Mining for Intrusion Detection". The North American Fuzzy Information Processing Society Conference, New Orleans, LA, 2002
  21. H. Debar, M. Dacier, and A.Wespi, "A Revised Taxonomy for Intrusion-Detection Systems". Annales des Telecommunications, pp. 361-378, 2000
  22. A.J. Menezes, S.A. Vanstone, P.C. Van Oorschot, "Handbook of Applied Cryptography". CRC Press, Inc., USA (2001)
  23. A. Mishra, K. Nadkarni, and A. Patcha. "Intrusion Detection in Wireless Ad Hoc Networks". IEEE Wireless Communications, Vol. 11, Issue 1, pp. 48-60, 2004
  24. L. Zhou and Z. J. Haas. "Securing ad hoc networks". IEEE Network Magazine , 1999
  25. Y. Zhang, W. Lee, and Y. Huang. "Intrusion Detection Techniques for Mobile Wireless Networks". Wireless Networks Journal (ACM WINET), 9(5): 545-556, 2003.
  26. E.C.H. Ngai, M.R. Lyu, R.T. Chin. "An authentication service against dishonest users in mobile ad hoc networks", IEEE Proceedings on Aerospace Conference, vol. 2, pp. 1275- 1285 2004.
  27. L. Blazevic et al. "Self-organization in mobile ad-hoc networks: the approach of terminodes", IEEE Communications Magazine , pp. 166-173, 2001
  28. W. Zhang, R. Rao, et. al. "Secure routing in ad hoc networks and a related intrusion detection problem", IEEE Military Communications Conference (MILCOM), vol. 2, 13-16 p. 735-740, 2003
  29. J. Kong et al. "Adaptive security for multi-layer ad-hoc networks". Special Issue of Wireless Communications and Mobile Computing, John Wiley Inter Science Press (2002)
  30. P. Kyasanur, N. Vaidya. "Detection and handling of MAC layer misbehavior in wireless networks". International Conference on Dependable Systems and Networks. pp. 173-182, 2003
  31. Y. Zhang, W. Lee, "Intrusion detection in wireless ad-hoc networks", The 6th Annual International Conference on Mobile Computing and Networking, pp. 275-283, 2000
  32. Y. Hu, A. Perrig, and D. Johnson. "Packet leashes: A defense against wormhole attacks in wireless ad hoc networks". In Proceedings of IEEE INFOCOM'03, 2003
  33. Y. Hu, A. Perrig, D. Johnson, "Ariadne: a secure on-demand routing protocol for ad hoc networks". ACM MOBICOM, 2002
  34. Y. Hu, A. Perrig, and D. Johnson. "Rushing attacks and defense in wireless ad hoc network routing protocols". In Proceedings of ACM MobiCom Workshop -WiSe'03, 2003
  35. J. R. Douceur. "The sybil attack". The 1st International Workshop on Peer-to-Peer Systems pp. 251-260, 2002.
  36. J. Hubaux, L. Buttya´n, S. Capkun, "The quest for security in mobile ad hoc networks." The 2nd ACM International Symposium on Mobile Ad Hoc Networking and Computing, 2001
  37. P. Papadimitratos, Z.J. Haas, E.G. Sirer, "Path set selection in mobile ad hoc networks", The Proceedings of the 3rd ACM International Symposium on Mobile Ad Hoc Networking and Computing, pp. 1-11, 2002
  38. B. DeCleene et al. "Secure group communications for wireless networks". IEEE Military Communications Conference, 2001.
  39. S. Bo, W. Kui, U.W. Pooch. "Towards adaptive intrusion detection in mobile ad hoc networks". IEEE Global Telecommunications Conference, pp. 3551-3555, 2004
  40. C. Douligeris, A. Mitrokosta, "DDoS attacks and defense mechanisms: classification and state-of-the-art". Computer Networks: The International Journal of Computer and Telecommunications Networking 44 (5):643-666, 2004
  41. C.M. Chlamtac, J.J.-N. Liu, "Mobile ad hoc networking: imperatives and challenges", Ad Hoc Networks 1, 2003
  42. H. Yang, H.Y. Luo, et.al. "Security in Mobile Ad Hoc networks: challenges and solutions". IEEE Wireless Communications, pp.38-47, 2004.
  43. C. Krugel and T. Toth. "Applying mobile agent technology to intrusion detection". In ICSE Workshop on Software Engineering and Mobility, 2001.
  44. T. Anantvalee and J. Wu. "A Survey on Intrusion Detection in Mobile Ad Hoc Networks", Book Series Wireless Network Security, Springer, pp. 170 -196, ISBN: 978-0-387-28040-0 (2007)
  45. P. Albers, O. Camp, et al. "Security in Ad Hoc Networks: a General Intrusion Detection Architecture Enhancing Trust Based Approaches". Proceedings of the 1st International Workshop on Wireless Information Systems (WIS-2002), pp. 1-12, April 2002
  46. O. Kachirski, R. Guha. "Effective Intrusion Detection Using Multiple Sensors in Wireless Ad Hoc Networks." Proceedings of the 36th Hawaii International Conference on System Sciences (HICSS'03), IEEE, 2003
  47. D. Sterne, P. Balasubramanyam, et al. "A General Cooperative Intrusion Detection Architecture for MANETs". In Proceedings of the 3rd IEEE International Workshop on Information Assurance (IWIA'05), pp. 57-70, 2005
  48. B. Sun, K.Wu, and U. W. Pooch. "Alert Aggregation in Mobile Ad Hoc Networks". The 2003 ACM Workshop on Wireless Security in conjuction with the 9th Annual International Conference on Mobile Computing and Networking (MobiCom'03), pp. 69-78, 2003
  49. C. Ko, J. Rowe, P. Brutch, K. Levitt, "System Health and Intrusion Monitoring Using a hierarchy of Constraints". In Proceedings of 4th International Symposium, RAID, 2001

Related papers

SECURITY IN MANET VIA DIFFERENT INTRUSION DETECTION TECHNIQUES
IAEME Publication

IAEME PUBLICATION, 2014

MANET which means Mobile Ad hoc Networks is popular because it requires no network infrastructure for the mobile nodes within the network to communicate. Any node can join or leave the network independently. The important features of MANET are dynamic topology, self-configuring, peer to peer architecture, use of wireless medium and so on. Due to the dynamic infrastructure, MANET provides high flexibility that attracts them to many application as well as prone to security threats. Many of the vulnerability in MANET are hard to detect. Even though the IDS was used as a security measure in wired network, researchers had explore the IDS as the security solution for the mobile ad hoc network In this paper, we study the different IDS techniques that can be applied on MANET. We will first describe briefly about the different types of security threats and then describe the IDS technique to counter the attacks.

View PDFchevron_right
An Effective Intrusion Detection System for MANETs
Prasanna Venkatesan T

In the recent decades the mobile wireless communication becomes more attractive because of its applications in many fields. Moving from the wired communication to wireless communication, the security is the most important property to consider. Specifically in the mobile environment it has the vulnerability, because of its portability and scalability. The mobile ad hoc wireless communication has characteristics such as open medium, distributed environment and changing topology, it makes the network into most vulnerable to the attackers to make the intrusion. The attackers (intruders) can easily enter into the network and compromises the network to behave in the favors of his choice. The Mobile Ad hoc NETwork (MANET) should have the capability to detect such intrusion (attacks) and remove it. To survive the MANET from such intrusion, an Intrusion Detection System (IDS) should be enhanced to the MANET, which can efficiently identify the attacks of the intruders. In this paper it is discussed about various intrusion detection mechanisms and techniques for the MANET to detect the intrusion and intruders.

View PDFchevron_right
Exploring Intrusion Detection Schemes and their Comparison in MANETs
Ankita Chaturvedi

International Journal of Computer Applications, 2013

The feasibility of mobile ad hoc networks (MANETs) is gaining popularity widely. Due to its fundamental characteristics like dynamic topology, open medium, absence of infrastructure, limited power and limited bandwidth, these networks are more prone to malicious attacks. The prevention methods like encryption and cryptography are not sufficient to make them secure. The reason behind this is that these techniques focus on how to protect the data but do not take any action against the intruder. Therefore some detection mechanism must be deployed to facilitate the identification and isolation of attacks before an attacker breaches the system. This paper presents the existing architectures for intrusion detection systems (IDS) along with intrusion detection techniques in MANETs and their comparison.

View PDFchevron_right
Intrusion Detection Mechanism To Mitigate Intrusion In MANET
Rana M U D A S S A R Rasool

Ad Hoc Network due to its infrastructure less ability. It has been providing lots of benefits in the field of communication and has changed the word into Global village. It has many features for example deployment facility, limited resources, dynamic topology and physical insecurity, the chances of attack increased than any other network. And due to dynamic topology, no static solution is applicable. There are two defense mechanism that can reduce the attack. First includes cryptography etc. If this defense is broken then intrusion detection system helps to reduce the attack ratio. In this survey paper, intrusion detection system taxonomy has been observed through different point of view. But the IDS detection mechanism has been elaborated in detail. And a comparison has been performed between the detection mechanism been used so far. Finally, we concluded useful information related to different mechanism and which mechanism has been used the most and performed well.

View PDFchevron_right
A NOVEL ENHANCED INTRUSION DETECTION SCHEME FOR MANET
IJRCAR JOURNAL

IJRCAR, 2014

In the recent decades the mobile wireless communication becomes more attractive because of its applications in many fields. Moving from the wired communication to wireless communication, the security is the most important property to consider. Specifically in the mobile environment it has the vulnerability, because of its portability and scalability. The mobile ad hoc wireless communication has characteristics such as open medium, distributed environment and changing topology, it makes the network into most vulnerable to the attackers to make the intrusion. The attackers (intruders) can easily enter into the network and compromises the network to behave in the favours of his choice. The Mobile Ad hoc NETwork (MANET) should have the capability to detect such intrusion (attacks) and remove it. To survive the MANET from such intrusion, an Intrusion Detection System (IDS) should be enhanced to the MANET, which can efficiently identify the attacks of the intruders. In this paper it is discussed about various intrusion detection mechanisms and techniques for the MANET to detect the intrusion and intruders

View PDFchevron_right

Related topics

  • Intrusion Detection System
  • Wireless Ad Hoc Network
    • 580 California St., Suite 400
    San Francisco, CA, 94104
    © 2025 Academia. All rights reserved