Title: Detect DDoS flooding attacks in mobile ad hoc networks

Authors: Yinghua Guo, Sylvie Perreau

Addresses: Defence and Systems Institute, University of South Australia, SPRI Building, Mawson Lakes Boulevard, Mawson Lakes, SA 5095, Australia. ' Institute for Telecommunications Research, Signal Processing Research Institute, Mawson Lakes Boulevard, Mawson Lakes, South Australia, SA 5095, Australia

Abstract: Mobile Ad hoc NETworks (MANETs) are vulnerable to the Denial of Service (DoS) attack. In this work, we focus on one specific DoS attack, Distributed DoS (DDoS) flooding attack. First of all, we present a quantitative model to characterise the flooding attack. We then provide analytical models of detecting flooding attack. In these models, we give an analytical framework to evaluate the number of routing control packets. At last, we design two flow based detection features to identify the flooding attacks. Both simulation and analytical results show that our proposed detection approach can detect the flooding attack accurately and effectively.

Keywords: DoS attacks; denial of service; flooding attacks; network security; intrusion detection; ad hoc networks; modelling; routing control packets; simulation.

DOI: 10.1504/IJSN.2010.037666

International Journal of Security and Networks, 2010 Vol.5 No.4, pp.259 - 269

Published online: 23 Dec 2010 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article