We found a match
Your institution may have rights to this item. Sign in to continue.
- Title
CoSec-RPL: detection of copycat attacks in RPL based 6LoWPANs using outlier analysis.
- Authors
Verma, Abhishek; Ranga, Virender
- Abstract
The IPv6 routing protocol for low-power and lossy networks (RPL) is the standard routing protocol for IPv6 based low-power wireless personal area networks (6LoWPANs). In RPL protocol, DODAG information object (DIO) messages are used to disseminate routing information to other nodes in the network. A malicious node may eavesdrop DIO messages of its neighbor nodes and later replay the captured DIO many times with fixed intervals. In this paper, we present and investigate one of the severe attacks named as a non-spoofed copycat attack, a type of replay based DoS attack against RPL protocol. It is shown that the non-spoofed copycat attack increases the average end-to-end delay (AE2ED) and packet delivery ratio of the network. Thus, to address this problem, an intrusion detection system (IDS) named CoSec-RPL is proposed in this paper. The attack detection logic of CoSec-RPL is primarily based on the idea of outlier detection (OD). CoSec-RPL significantly mitigates the effects of the non-spoofed copycat attack on the network's performance. The effectiveness of the proposed IDS is compared with the standard RPL protocol. The experimental results indicate that CoSec-RPL detects and mitigates non-spoofed copycat attack efficiently in both static and mobile network scenarios without adding any significant overhead to the nodes. To the best of our knowledge, CoSec-RPL is the first RPL specific IDS that utilizes OD for intrusion detection in 6LoWPANs.
- Subjects
WIRELESS personal area networks; END-to-end delay; DENIAL of service attacks; OUTLIER detection; NETWORK routing protocols; NETWORK performance; DELAY-tolerant networks
- Publication
Telecommunication Systems, 2020, Vol 75, Issue 1, p43
- ISSN
1018-4864
- Publication type
Article
- DOI
10.1007/s11235-020-00674-w