Short Paper: A Distributed Cross-Layer Intrusion Detection System for Ad Hoc Networks

Yu  Liu; Hong Man; Yang  Li

1st International ICST Conference on Security and Privacy for Emerging Areas in Communication Networks

Research Article

Short Paper: A Distributed Cross-Layer Intrusion Detection System for Ad Hoc Networks

Cite: BibTeX Plain Text

@INPROCEEDINGS{10.1109/SECURECOMM.2005.36,
    author={ Yu  Liu and Hong Man  and Yang  Li },
    title={Short Paper: A Distributed Cross-Layer Intrusion Detection System for Ad Hoc Networks},
    proceedings={1st International ICST Conference on Security and Privacy for Emerging Areas in Communication Networks},
    publisher={IEEE},
    proceedings_a={SECURECOMM},
    year={2006},
    month={3},
    keywords={},
    doi={10.1109/SECURECOMM.2005.36}
}

Yu Liu
Hong Man
Yang Li
Year: 2006
Short Paper: A Distributed Cross-Layer Intrusion Detection System for Ad Hoc Networks
SECURECOMM
IEEE
DOI: 10.1109/SECURECOMM.2005.36

Yu Liu¹, Hong Man ¹, Yang Li ¹

1: Stevens Institute of Technology

Abstract

In this paper, we propose a node-based intrusion detection system (IDS) for wireless ad hoc networks. Specifically, we define a feature set that correlates information from MAC layer and network layer to profile normal behaviors of mobile nodes, and we also adapt a rule-based data mining technique for anomaly detection. The proposed IDS is able to effectively detect an attack and is able to localize the attack source within one-hop perimeter. False positive rate is reduced through the decision module of the IDS where intelligence gathered from neighbor nodes is used to make a collaborative decision and Bayesian network is used to evaluate multiple attack sources. We validate our work through ns-2 simulation experiments. Experimental results show the effectiveness of our method.

Published: 2006-03-20
Publisher: IEEE

: http://dx.doi.org/10.1109/SECURECOMM.2005.36