Intrusion Detection of In-Band Wormholes in MANETS Using Advanced Statistical Methods
Baras, John S.
Date: November 17 - November 19, 2008
Due to the dynamics and mobility of mobile ad hoc networks (MANETs), intrusion detection techniques in MANETs must be adaptive. In this work, we propose detection schemes that are suitable to detect in-band wormhole attacks. The first detection scheme uses the Sequential Probability Ratio Test (SPRT). The SPRT has been proven to be an optimal detection test when the probability distributions of both normal and abnormal behaviors are given. Furthermore, we introduce non-parametric methods, which require no training and are more adaptive to mobile scenarios. The proposed detection schemes are implemented and evaluated using a 48-node testbed and a mobile ad-hoc network emulator at the Army Research Lab. The performance and the detection accuracy of various schemes are compared, especially in the presence of congestion. We provide a quantitative analysis of tradeoffs among detection latency and probabilities of false alarms and missed detection.