Hop Chains: Secure Routing and the Establishment of Distinct Identities
We present a secure routing protocol that is immune to Sybil attacks, and that can tolerate initial collusion of Byzantine routers, or runtime collusion of non-adjacent Byzantine routers in the absence of collusion between adjacent routers. For these settings, the calculated distance from a destination to a node is not smaller than the actual shortest distance from the destination to the node. The protocol can also tolerate initial collusion of Byzantine routers and runtime collusion of adjacent Byzantine routers but in the absence of runtime collusion between non-adjacent routers. For this setting, there is a bound on how short the calculated distance is compared to the actual shortest distance. The protocol makes very weak timing assumptions and requires synchronization only between neighbors or second neighbors. We propose to use this protocol for secure localization of routers using hop-count distances, which can be then used as a proof of identity of nodes.
KeywordsAdjacent Node Reply Message Distinct Identity Advertisement Message Sybil Attack
Unable to display preview. Download preview PDF.
- 2.Bazzi, R., Konjevod, G.: On the stabilishment of distinct identities in overlay networks. In: Proceedings of ACM Symposium on Principles of Distributed ComputingGoogle Scholar
- 3.Brands, S., Chaum, D.: Distance-bounding protocols (extended abstract). In: Helleseth, T. (ed.) EUROCRYPT 1993. LNCS, vol. 765, pp. 344–359. Springer, Heidelberg (1994)Google Scholar
- 5.Fonseca, R., Ratnasamy, S., Zhao, J., Ee, C.T., Culler, D., Shenker, S., Stoica, I.: Beacon vector routing: Scalable point-to-point routing in wireless sensornets. In: Proceedings of the 2nd Symposium on Networked Systems Design and Implementation (NSDI 2005) (2005)Google Scholar
- 6.Hu, Y.-C., Johnson, D.B., Perrig, A.: Sead: Secure efficient distance vector routing for mobile wireless ad hoc networks. In: Proceedings of the 4th IEEE Workshop on Mobile Computing Systems and Applications (WMCSA 2002) (2002)Google Scholar
- 7.Hu, Y.-C., Perrig, A., Johnson, D.B.: Efficient security mechanisms for routing protocols. In: Proceedings of the 10th Annual Network and Distributed System Security Symposium (NDSS 2003) (February 2003)Google Scholar
- 8.Hu, Y.-C., Perrig, A., Johnson, D.B.: Packet leashes: A defense against wormhole attacks in wireless ad hoc networks. In: Proceedings of the 22nd Annual Joint Conference of the IEEE Computer and Communications Societies (April 2003)Google Scholar
- 9.Ng, T., Zhang, H.: Predicting internet network distance with coordinate-based approaches. In: Proceedings of INFOCOM (2002)Google Scholar
- 10.Pei, D., Massey, D., Zhang, L.: Detection of invalid routing announcements in the rip protocol. In: Proceedings of GLOBECOM 2003 (2003)Google Scholar
- 11.Tal, V.M., Vigna, G.: Sensor-based intrusion detection for intra-domain distance-vector routing. In: CCS 2002: Proceedings of the 9th ACM conference on Computer and communications security, pp. 127–137. ACM Press, New York (2002)Google Scholar
- 12.Wan, T., Kranakis, E., Oorschot, P.V.: S-rip: A secure distance vector routing protocol. In: Proceedings of Applied Cryptography and Network Security (2004)Google Scholar