Title :
Specification-based IDS for securing RPL from topology attacks
Author :
Le, Anhtuan ; Loo, Jonathan ; Luo, Yuan ; Lasebae, Aboubaker
Author_Institution :
Middlesex Univ., London, UK
Abstract :
This paper focuses on the security aspect of RPL (Routing Protocol for Low-power and lossy network) by introducing a new type of threat - the topology attack, which changes the node operation for breaking the optimised network topology, and designing a specification-based IDS for detecting it. We present two novel RPL attacks of this type: the rank attack and local repair attack. We also propose an IDS architecture using network monitor backbone, and describe its monitoring mechanisms through a RPL finite state machine implemented in each monitor node. We show that our system can effectively detect these routing operation threats with a reasonable overhead.
Keywords :
computer network security; finite state machines; routing protocols; telecommunication network topology; RPL attacks; RPL finite state machine; RPL security; intrusion detection system; local repair attack; lossy network; low-power network; network monitor backbone; network topology attacks; rank attack; routing protocol; specification-based IDS architecture; Automata; Maintenance engineering; Monitoring; Network topology; Routing; Security; Topology; IDS; RPL; local repair attack; rank attack; specification-based; topology attack;
Conference_Titel :
Wireless Days (WD), 2011 IFIP
Conference_Location :
Niagara Falls, ON
Print_ISBN :
978-1-4577-2027-7
Electronic_ISBN :
2156-9711
DOI :
10.1109/WD.2011.6098218
