Policy-based security management for ad hoc wireless systems

Ad hoc network nodes work cooperatively to route data packets and maintain network functions. However, this cooperative behavior can be a potential vulnerability for security breaches. Moreover, network node capacity differences may result in an asymmetrical defense capability. Even network nodes that are capable of running a strong security mechanism may choose not to use it because of impacts on the system performance. On the other hand, there are several sub-systems, standards, and techniques to solve the security problems at different levels of a network paradigm. Therefore, it is necessary to integrate these techniques in a coherent manner to provide both end-to-end and multi-layer security management. This paper proposes a policy-based network security management mechanism called the "Ripple Effect" to activate different levels of security defense schemes in an ad hoc network. This mechanism works in responsive and preemptive modes. The fundamental idea of this proposal is to deploy proper security protections at the right place and at the right time