on the use of radio resource tests in wireless ad hoc networks
TRANSCRIPT
![Page 1: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/1.jpg)
1 28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Distributed Systems Group - INESC-ID
technologyfrom seed
On the Use of Radio Resource Tests in Wireless ad hoc
Networks
Diogo Mónica, João Leitão, Luís Rodrigues, Carlos Ribeiro
INESC-ID/IST
{diogo.monica, joao.c.leitao, ler, carlos.ribeiro} @ist.utl.pt
![Page 2: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/2.jpg)
Introduction
Radio Resource Tests
Analysis
Summary
2
Distributed Systems Group - INESC-ID
technologyfrom seed
Road Map
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
![Page 3: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/3.jpg)
3
Distributed Systems Group - INESC-ID
technologyfrom seed
Introduction – Wireless ad hoc
Networks
Securing Wireless ad hoc Networks is
particularly difficult
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• Denial-of-service
• Eavesdropping
• Node hijacking
• Impersonation
- Sybil
Attack
![Page 4: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/4.jpg)
4
Distributed Systems Group - INESC-ID
technologyfrom seed
Introduction – The Sybil Attack
The sybil identity can be generated by the malicious node, or
stolen from an existing correct node
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
A Sybil attack happens when a malicious node
participates with multiple identities in a system
![Page 5: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/5.jpg)
5
Distributed Systems Group - INESC-ID
technologyfrom seed
Introduction – The Sybil Attack
The sybil identity can be generated by the malicious node, or
stolen from an existing correct node
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
A Sybil attack happens when a malicious node
participates with multiple identities in a system
![Page 6: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/6.jpg)
6
Distributed Systems Group - INESC-ID
technologyfrom seed
Introduction – The Sybil Attack
The sybil identity can be generated by the malicious node, or
stolen from an existing correct node
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
A Sybil attack happens when a malicious node
participates with multiple identities in a system
![Page 7: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/7.jpg)
7
Distributed Systems Group - INESC-ID
technologyfrom seed
Introduction – The Sybil Attack
Easily defeats quorum systems, or other voting
schemes
In order to obtain a majority in a network with 5 correct nodes,
a malicious node has to create 5 sybil identities
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
![Page 8: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/8.jpg)
8
Distributed Systems Group - INESC-ID
technologyfrom seed
Introduction – Resource Tests
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
In resource testing we determine if a set of
identities possess fewer aggregated
resources than would be expected
• Computational Power
• Storage
• Network Bandwidth
•…• Radio Resource
![Page 9: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/9.jpg)
Introduction
Radio Resource Tests
Analysis
Summary
9
Distributed Systems Group - INESC-ID
technologyfrom seed
Road Map
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
![Page 10: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/10.jpg)
10
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests
Radio Resource Tests (RRTs) assume that each
node has access to a single radio device, and
builds upon the limitations of these devices
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
The first RRT was introduced by Newsome et. al
2004
We will call it Sender Test
![Page 11: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/11.jpg)
11
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests – Sender Test
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• The Sender Test is based on the assumption that nodes
cannot simultaneously transmit in more than one channel
Sender Test (SST)
![Page 12: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/12.jpg)
12
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests – Sender Test
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Sender Test (SST)
• The Sender Test is based on the assumption that nodes
cannot simultaneously transmit in more than one channel
![Page 13: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/13.jpg)
13
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests – Detection
Probability
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• Denoting by h the number of simultaneously tested
identities, and by pd the probability of detection of a Sybil
Identity in a test, we have
The challenger is unable listen in more than
one channel at the same time, so we repeat
the test r times
![Page 14: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/14.jpg)
14
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests – Contribution
We introduce two new tests and an
optimization for the Sender Test
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• Optimized Sender Test (oSST)
• Receiver Test (SRT)
• Collision Test (FCT)
![Page 15: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/15.jpg)
15
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests - Framework
Each RRT is characterized by a set of
parameters, RRT(h, c, w)
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• h – Size of the set of simultaneously tested identities
• c – Number of challenger identities actively participating in
the test
• w – Number of tester nodes that extract information from
the test
![Page 16: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/16.jpg)
16
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests – Sender Test
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• h is limited by the number of available channels (K)
• c is one, since the challenger needs to assign in which
channel identities transmit in
• w is one since only the challenger extracts information
from the test
The Sender Test is a RRT(K,1,1)
![Page 17: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/17.jpg)
17
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests – Optimized
Receiver Test
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• h is limited by the number of available channels (K)
• c is zero, since the channels can be chosen
deterministically
• w is N – K, since every node not participating in the test
can extract information from it
The Optimized Sender Test is a RRT(K,0,N-K)
![Page 18: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/18.jpg)
18
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests – Receiver Test
Receiver Test
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• The Simultaneous Receiver Test is based on the assumption that
nodes cannot simultaneously listen in more than one channel
![Page 19: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/19.jpg)
19
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests – Receiver Test
Receiver Test
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• The Simultaneous Receiver Test is based on the assumption that
nodes cannot simultaneously listen in more than one channel
![Page 20: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/20.jpg)
20
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests – Receiver Test
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• h is limited by the number of available channels K
• c is one, since the challenger needs to send a challenge
on one of the channels
• w is one since only the challenger can extract information
from the test (no other node knows the chosen channel)
The Receiver Test is a RRT(K,1,1)
![Page 21: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/21.jpg)
Introduction
Radio Resource Tests
Analysis
Summary
21
Distributed Systems Group - INESC-ID
technologyfrom seed
Road Map
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
![Page 22: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/22.jpg)
22
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests - Analysis
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• Vulnerability to collusion
• Message cost
• Resource consumption
• Synchronization requirements
• Number of messages needed to achieve
a desired probability of detection
We compared the tests using the following
metrics
![Page 23: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/23.jpg)
23
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Optimized Sender Test –
Vulnerability to collusion
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Vulnerability to collusion
![Page 24: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/24.jpg)
24
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Optimized Sender Test –
Vulnerability to collusion
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
The Optimized Sender Test Handles at most h – 1 colluding
malicious nodes (m)
Vulnerability to collusion
![Page 25: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/25.jpg)
25
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Optimized Sender Test –
Message Cost
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Message Cost
![Page 26: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/26.jpg)
26
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Optimized Sender Test –
Message Cost
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
In the Optimized Sender Test, tested nodes send a total
of h messages per round
Message Cost
![Page 27: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/27.jpg)
27
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Optimized Sender Test –
Resource Consumption
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Resource Consumption (DoS Opportunity)
![Page 28: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/28.jpg)
28
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Optimized Sender Test –
Resource Consumption
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
In the Optimized Sender Test, when there is a malicious
tester, Δ = rh – 1.
Resource Consumption (DoS Opportunity)
![Page 29: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/29.jpg)
29
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Optimized Sender Test –
Synchronization Requirements
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Synchronization Requirements
![Page 30: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/30.jpg)
30
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Optimized Sender Test –
Synchronization Requirements
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
In the Optimized Sender Test, tested nodes are required
to transmit simultaneously
Synchronization Requirements
![Page 31: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/31.jpg)
31
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Comparison Table
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Metric Tests
Optimized
Sender Test
Receiver Test Collision Test
Collusion h - 1 h - 1 1
Message Cost h 2 2
Resource
Consumption
(malicious tester)
Synchronization Strong Strong Weak
![Page 32: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/32.jpg)
Metric Tests
Optimized
Sender Test
Receiver Test Collision Test
Collusion h - 1 h - 1 1
Message Cost h 2 2
Resource
Consumption
(malicious tester)
Synchronization Strong Strong Weak
32
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Comparison Table
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
![Page 33: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/33.jpg)
33
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Testing a Population of
Nodes
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Every node in the one-hop neighborhood has to test every
other node
Testing a group of nodes
![Page 34: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/34.jpg)
34
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Testing a Population of
Nodes
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Every node in the one-hop neighborhood has to test every
other node
Testing a group of nodes
![Page 35: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/35.jpg)
35
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Testing a Population of
Nodes
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Every node in the one-hop neighborhood has to test every
other node
Testing a group of nodes
![Page 36: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/36.jpg)
36
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Testing a Population of
Nodes
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Every node in the one-hop neighborhood has to test every
other node
Testing a group of nodes
![Page 37: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/37.jpg)
37
Distributed Systems Group - INESC-ID
technologyfrom seed
Analysis – Testing a Population of
Nodes
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Every node in the one-hop neighborhood has to test every
other node
Testing a group of nodes
![Page 38: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/38.jpg)
38
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests - Performance
Performance in number of messages
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
For a probability of sybil detection of 0.95.
![Page 39: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/39.jpg)
39
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests - Performance
Performance with collusion tolerance
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
For a network with 20 nodes and a probability of sybil
detection of 0.95.
Higher collusion
![Page 40: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/40.jpg)
40
Distributed Systems Group - INESC-ID
technologyfrom seed
Radio Resource Tests – Application
Scenarios
Application Scenarios
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
Test Best Performance Context
Optimized
Sender Test
No DoS threat
Receiver Test High collusion and/or DoS threat
Collision Test One Channel
![Page 41: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/41.jpg)
Introduction
Radio Resource Tests
Analysis
Summary
41
Distributed Systems Group - INESC-ID
technologyfrom seed
Road Map
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
![Page 42: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/42.jpg)
42
Distributed Systems Group - INESC-ID
technologyfrom seed
Summary
28/06/09On the Use of Radio Resource Tests in Wireless ad hoc Networks
• Radio Resource Tests are a viable mechanism for
detecting sybil identities in Wireless ad hoc Networks
• We presented two new RRTs and an optimization to an
existing RRT
• We presented a framework to compare the RRTs
• We analyzed all the tests both in isolation, and when used
to test a one-hop neighborhood.
• We have shown that each test is best adapted to a specific
scenario, which we described.
![Page 43: On the use of radio resource tests in wireless ad hoc networks](https://reader033.vdocuments.us/reader033/viewer/2022042816/559ac5191a28abea138b45c1/html5/thumbnails/43.jpg)
43 10/08/2008Thwarting the Sybil Attack in Wireless Ad Hoc Networks
Distributed Systems Group - INESC-ID
technologyfrom seed
technologyfrom seed