Sciweavers

ACNS
2011
Springer

Misuse Detection in Consent-Based Networks

13 years 4 months ago
Misuse Detection in Consent-Based Networks
Consent-based networking, which requires senders to have permission to send traffic, can protect against multiple attacks on the network. Highly dynamic networks like Mobile Ad-hoc Networks (MANETs) require destination-based consent networking, where consent needs to be given to send to a destination in any path. These networks are susceptible to multipath misuses by misbehaving nodes. In this paper, we identify the misuses in destination-based consent networking, and provide solution for detecting and recovering from the misuses. Our solution is based on our previously introduced DIPLOMA architecture. DIPLOMA is a deny-by-default distributed policy enforcement architecture that can protect the end-host services and network bandwidth. DIPLOMA uses capabilities to provide consent for sending traffic. In this paper, we identify how senders and receivers can misuse capabilities by using them in multiple paths, and provide distributed solutions for detecting those misuses. To that end, we ...
Mansoor Alicherry, Angelos D. Keromytis
Added 24 Aug 2011
Updated 24 Aug 2011
Type Journal
Year 2011
Where ACNS
Authors Mansoor Alicherry, Angelos D. Keromytis
Comments (0)