Skip to Main content Skip to Navigation
Conference papers

Log-based Intrusion Detection for MANET

Abstract : Ad hoc networks operate over open environments and are hence vulnerable to a large body of threats. To tackle this issue, we propose a distributed, signature-based anomaly detector that evaluates the trustworthiness of others so as to secure such a distributed detection. Contrary to existing detectors that passively observe packets, our detector analyses logs so as to identify patterns of misuse and proactively collaborate with others to gather additional evidences. As a result, no change is requested in the implementation of the node. The main challenge stems from difficulty involved in stating the occurence of an attack based on second-hands evidences that may come from colluding attacker(s). To tackle this issue, we propose an entropy-based trust system that evaluates the trustworthiness of the nodes that provide the evidences. We further introduce a novel indicator which measures the level of confidence in the detection. Preliminary evaluations of the trust system along with the confidence measure have been conducted.
Complete list of metadatas

https://hal.archives-ouvertes.fr/hal-01126105
Contributor : Laboratoire Cedric <>
Submitted on : Friday, March 6, 2015 - 11:40:20 AM
Last modification on : Saturday, February 9, 2019 - 1:26:27 AM

Identifiers

  • HAL Id : hal-01126105, version 1

Collections

Citation

Mouhannad Alattar, Francoise Sailhan, Julien Bourgeois. Log-based Intrusion Detection for MANET. 8th IEEE Wireless Communications and Mobile Computing Conference (IWCMC), Aug 2012, X, France. pp.1-6. ⟨hal-01126105⟩

Share

Metrics

Record views

49