Limits...
Detecting unknown attacks in wireless sensor networks that contain mobile nodes.

Banković Z, Fraga D, Moya JM, Vallejo JC - Sensors (Basel) (2012)

Bottom Line: The data produced in the presence of an attacker are treated as outliers, and detected using clustering techniques.These techniques are further coupled with a reputation system, in this way isolating compromised nodes in timely fashion.The proposal exhibits good performances at detecting and confining previously unseen attacks, including the cases when mobile nodes are compromised.

View Article: PubMed Central - PubMed

Affiliation: Departamento de Ingeniería Electrónica, ETSI Telecomunicación, Universidad Politécnica de Madrid, Av. Complutense, 30, 28040 Madrid, Spain. zorana@die.upm.es

ABSTRACT
As wireless sensor networks are usually deployed in unattended areas, security policies cannot be updated in a timely fashion upon identification of new attacks. This gives enough time for attackers to cause significant damage. Thus, it is of great importance to provide protection from unknown attacks. However, existing solutions are mostly concentrated on known attacks. On the other hand, mobility can make the sensor network more resilient to failures, reactive to events, and able to support disparate missions with a common set of sensors, yet the problem of security becomes more complicated. In order to address the issue of security in networks with mobile nodes, we propose a machine learning solution for anomaly detection along with the feature extraction process that tries to detect temporal and spatial inconsistencies in the sequences of sensed values and the routing paths used to forward these values to the base station. We also propose a special way to treat mobile nodes, which is the main novelty of this work. The data produced in the presence of an attacker are treated as outliers, and detected using clustering techniques. These techniques are further coupled with a reputation system, in this way isolating compromised nodes in timely fashion. The proposal exhibits good performances at detecting and confining previously unseen attacks, including the cases when mobile nodes are compromised.

Show MeSH

Related in: MedlinePlus

Envisioned WSN Model.
© Copyright Policy
Related In: Results  -  Collection

License
getmorefigures.php?uid=PMC3472860&req=5

f1-sensors-12-10834: Envisioned WSN Model.

Mentions: We envision wireless sensor networks (Figure 1) where most of the sensor nodes exhibit limited resources, but there are also a number of PDA-like sensors with more computational resources, memory and battery capacity. There is at least one base station as well. Their number is significantly smaller than the number of the “normal” sensors, usually a few orders of magnitude smaller. The nodes can organize themselves either in a hierarchical or flat manner. Nodes can be fixed or mobile, although it is assumed that the majority of the nodes are fixed. No constrains regarding routing protocol are assumed.


Detecting unknown attacks in wireless sensor networks that contain mobile nodes.

Banković Z, Fraga D, Moya JM, Vallejo JC - Sensors (Basel) (2012)

Envisioned WSN Model.
© Copyright Policy
Related In: Results  -  Collection

License
Show All Figures
getmorefigures.php?uid=PMC3472860&req=5

f1-sensors-12-10834: Envisioned WSN Model.
Mentions: We envision wireless sensor networks (Figure 1) where most of the sensor nodes exhibit limited resources, but there are also a number of PDA-like sensors with more computational resources, memory and battery capacity. There is at least one base station as well. Their number is significantly smaller than the number of the “normal” sensors, usually a few orders of magnitude smaller. The nodes can organize themselves either in a hierarchical or flat manner. Nodes can be fixed or mobile, although it is assumed that the majority of the nodes are fixed. No constrains regarding routing protocol are assumed.

Bottom Line: The data produced in the presence of an attacker are treated as outliers, and detected using clustering techniques.These techniques are further coupled with a reputation system, in this way isolating compromised nodes in timely fashion.The proposal exhibits good performances at detecting and confining previously unseen attacks, including the cases when mobile nodes are compromised.

View Article: PubMed Central - PubMed

Affiliation: Departamento de Ingeniería Electrónica, ETSI Telecomunicación, Universidad Politécnica de Madrid, Av. Complutense, 30, 28040 Madrid, Spain. zorana@die.upm.es

ABSTRACT
As wireless sensor networks are usually deployed in unattended areas, security policies cannot be updated in a timely fashion upon identification of new attacks. This gives enough time for attackers to cause significant damage. Thus, it is of great importance to provide protection from unknown attacks. However, existing solutions are mostly concentrated on known attacks. On the other hand, mobility can make the sensor network more resilient to failures, reactive to events, and able to support disparate missions with a common set of sensors, yet the problem of security becomes more complicated. In order to address the issue of security in networks with mobile nodes, we propose a machine learning solution for anomaly detection along with the feature extraction process that tries to detect temporal and spatial inconsistencies in the sequences of sensed values and the routing paths used to forward these values to the base station. We also propose a special way to treat mobile nodes, which is the main novelty of this work. The data produced in the presence of an attacker are treated as outliers, and detected using clustering techniques. These techniques are further coupled with a reputation system, in this way isolating compromised nodes in timely fashion. The proposal exhibits good performances at detecting and confining previously unseen attacks, including the cases when mobile nodes are compromised.

Show MeSH
Related in: MedlinePlus