Ad hoc networks are a new wireless networking paradigm for mobile hosts. Unlike traditional mobile wireless networks, ad hoc networks do not rely on any fixed infrastructure. Instead, hosts rely on each other to keep the network connected. The military tactical and other security-sensitive operations are still the main applications of ad hoc networks, although there is a trend to adopt ad hoc networks for commercial uses due to their unique properties. One main challenge in design of these networks is their vulnerability to security attacks. In this paper, we study the threats an ad hoc network faces and the security goals to be achieved. We identify the new challenges and opportunities posed by this new networking environment and explore new approaches to secure its communication. In particular, we take advantage of the inherent redundancy in ad hoc networks--- multiple routes between nodes--- to defend routing against denial of service attacks. We also use replication and new cryptographic schemes, such as threshold cryptography, to build a highly secure and highly available key management service, which forms the core of our security framework. 1
|
1338
|
Dynamic Source Routing in Ad Hoc Wireless Networks, in
– Johnson, Maltz
- 1996
|
|
1105
|
Ad Hoc On-Demand Distance Vector Routing
– Perkins, Royer
- 1999
|
|
1073
|
Impossibility of distributed consensus with one faulty process
– Fischer, Lynch, et al.
- 1985
|
|
618
|
A highly adaptive distributed routing algorithm for mobile wireless networks
– Park, Corson
- 1997
|
|
572
|
Implementing fault-tolerant services using the state machine approach: A tutorial
– Schneider
- 1990
|
|
353
|
Practical Byzantine Fault Tolerance
– Castro, Liskov
- 1999
|
|
284
|
Byzantine quorum systems
– Malkhi, Reiter
- 1998
|
|
202
|
Non-interactive and information-theoretic secure veri secret sharing
– Pedersen
|
|
196
|
Threshold cryptosystem
– Desmedt, Frankel
- 1989
|
|
174
|
Optimized link state routing protocol
– Clausen, Jacquet, et al.
- 2001
|
|
168
|
The performance of query control schemes for the zone routing protocol
– HAAS, PEARLMAN
- 1998
|
|
152
|
A practical scheme for non-interactive verifiable secret sharing
– Feldman
- 1987
|
|
137
|
Network layer protocols with Byzantine robustness
– Perlman
- 1988
|
|
132
|
Proactive secret sharing, or: How to cope with perpetual leakage,”, Crypto 95
– Herzberg, Jarecki, et al.
- 1995
|
|
127
|
Associativity-based routing for ad-hoc mobile networks
– Toh
- 1996
|
|
126
|
A design concept for reliable mobile radio networks with frequency hopping signaling
– Ephremides, Wieselthier, et al.
- 1987
|
|
126
|
A network architecture providing host migration transparency
– Teraoka, Yokote, et al.
- 1991
|
|
113
|
The rampart toolkit for building high-integrity services
– Reiter
- 1995
|
|
110
|
How to Withstand Mobile Virus Attacks
– Ostrovsky, Yung
|
|
96
|
Robust threshold DSS signatures
– Gennaro, Jarecki, et al.
- 1996
|
|
82
|
The Digital distributed system security architecture
– GASSER, GOLDSTEIN, et al.
- 1989
|
|
80
|
Threshold cryptography
– Desmedt
- 1994
|
|
68
|
Secure and scalable replication in phalanx
– Malkhi, Reiter
- 1998
|
|
63
|
SPX Global authentication using public key certificates
– TARDO, ALAGAPPAN
- 1991
|
|
60
|
Garcia-Luna-Aceves. Securing distance-vector routing protocols
– Smith, Murphy, et al.
- 1997
|
|
49
|
Distributing trust with the Rampart toolkit
– REITER
- 1996
|
|
47
|
Increasing availability and security of an authentication service
– Gong
- 1993
|
|
42
|
Future directions in packet radio architectnres and protocols
– Shacham, Westcott
- 1987
|
|
38
|
Optimal resilience proactive public-key cryptosystems
– Frankel, Gemmell, et al.
- 1997
|
|
33
|
Proactive RSA
– Frankel, Gemmell, et al.
|
|
33
|
The Ω key management service
– Reiter
- 1996
|
|
28
|
Redistributing secret shares to new access structures and its applications
– Desmedt, Jajodia
- 1997
|
|
24
|
Integration of Security in Network Routing Protocols
– Kumar
- 1993
|
|
24
|
Securing the Nimrod Routing Architecture
– Sirois, Kent
- 1997
|
|
20
|
Diversity coding for transparent self-healing and fault-tolerant communication networks
– Ayanoglu, Chih-Lin, et al.
- 1993
|
|
18
|
Routing in Frequency-Hop Packet Radio Networks with Partial-Band Jamming
– Pursley, Russell
- 1993
|
|
17
|
secret sharing and Public Key Cryptosystems
– Jarecki
- 1995
|
|
17
|
DASS: Distributed Authentication Security Service
– Kaufman
- 1993
|
|
16
|
Proactive public-key and signature schemes
– Herzberg, Jakobsson, et al.
- 1997
|
|
14
|
A mobile radio network architecture with dynamically changing topology using virtual subnets
– Sharony
- 1996
|
|
12
|
Robust and ecient sharing of RSA functions
– Gennaro, Jarecki, et al.
- 1996
|
|
12
|
Lowering security overhead in link state routing
– Hauser, Przygienda, et al.
- 1999
|
|
6
|
IP mobility support. Request for Comments
– Perkins
- 2002
|
|
4
|
Frequency-hopped spread spectrum in the presence of a flower partial-band jammer
– Hassan, Stark, et al.
- 1993
|
|
3
|
IP based protocols for mobile internetworking
– Ioannidis, Duchamp, et al.
- 1991
|
|
3
|
MANET authentication architecture. Internet draftdraft-jacobs-imep-auth-arch-01.txt, expired 2000
– Jacobs, Corson
- 1999
|
|
2
|
Ad hoc mobility management using quorum systems
– Haas, Liang
- 1999
|
|
1
|
Garcia-Luna-Aceves. An e#cient routing algorithm for mobile wireless networks
– Murphy, J
- 1996
|
|
