Analysis of MANET Security, Architecture and
Assessment
Sweta Kaushik 1, Manorma Kaushik 2
1Assistant Professor, Deptt. Of MCA, IME, Ghaziabad, up (India) 2 Assistant Professor, Deptt. Of Electronics & Communication Engg.
VGI, G.B. Nagar, U.P. (India)
Email-id- [email protected] 1, [email protected] 2,
Abstract- in these days, the Mobile ad hoc network (MANET) technology spreads widely. Architecture and security issue is the most sensitive challenge of MANET. MANET support to nodes for directly communications with all the other nodes within their radio ranges through multiple wireless links, where the nodes are not in the direct communication range using intermediate node(s) to communicate with each other. In a MANET, the users’ mobile devices behave as a network, and they must cooperatively provide the different functions which are generally provided by the network infrastructure like as routers, switches, servers. The security issues and requirement of the MANET depends on its application. Specific security architecture is necessary for specific application. The security challenges in the MANET generate because of its dynamic topology, vulnerable wireless link and nomadic environment. In this paper we have discussed the architecture and security issues of MANET.
Keywords- MANET, architecture, security concept.
1. Introduction
Mobile Ad hoc NET working (MANET) is playing a important role in information communication With the advances development in Ad hoc network technologies and use of mobile and hand-held devices. A MANET is an autonomous system which supports mobile nodes, wireless links for connectivity and without using pre-existing communication infrastructure. In a MANET, nodes can communicate directly with each other’s wireless transmission ranges. So that, a multi-hop concept produces, where various number of intermediate hosts transfer the packets which are sent by the source host before they reach the destination host. The success of communication between two nodes is highly depends on other nodes’ cooperation.
A MANET is similar to or is a self-configuring network that is formed automatically by a collection of mobile nodes without the help of a fixed infrastructure or centralized management.
MANET will play a important role for margining and accessing enterprise systems like as Enterprise Portal, CRM, ERP, Business Intelligence, Instant Messaging, Online Meeting Services, online multimedia content etc. of the business systems in an ad hoc manner [1].
The physical topology of a MANET changes dynamically because of the node mobility and this may introduce difficulties in applying the centralized hierarchical DNS used in the wired network to the MANET environment as follows [2].
Growing interest in deployment of SOA (Service Oriented Architecture) on MANET has recently emerged because of various reasons [3, 4]. Some reasons are, (i) Simplicity of design, (ii) support of dynamic composition of services at runtime , thus enabling the ad hoc realization of complex distributed applications to be deployed successfully on mobile nodes, (iii) applications can be supported as modular services, which are perfect for the deployment in mobile and resource-constrained nodes, (iv) allows dynamic replacement of service, which enables application adaptation to the continuously changing network topology, (v) Easy to find and dynamically bound, (vi) Loosely coupled, reduces artificial dependencies, (vii) Stress interoperability, (viii) allows efficient service migration, which helps it perform well in the constantly changing dynamic MANET environment. Already there are various applications services for MANET has been designed for use Web Services [5, 6, 7, 8] in recent days.
Table-1- Comparison between wired network and MANET properties for each layer-
The rest of this paper is organized as follows. In section II, we focus on features of MANET, in section III, focus on MANET network architecture. Section IV summarizes the attacks and security. In section V and VI, we conclude with applications and conclusion.
II-Features of MANET
The mobile ad hoc network has the following typical features [9] –
(i) Unreliability of wireless links between nodes. Because of the limited energy supply for the wireless nodes and the mobility of the nodes, the wireless links between mobile nodes in the ad hoc network are not consistent for the communication participants.
(ii) Constantly changing topology. Due to the continuous motion of nodes, the topology of the mobile ad hoc network changes constantly: the nodes can continuously move into and out of the radio range of the other nodes in the ad hoc network, and the routing information will be changing all the time because of the movement of the nodes.
Because of the features listed above, the mobile ad hoc networks are more prone to suffer from the malicious behaviors than the traditional wired networks.
III-MANET Architecture
The architecture of Mobile Ad-hoc Network (MANET) is shown in figure 1. The network architecture is grouped into main three categories:
• Enabling technologies;
• Networking;
• Middleware and applications
(a) Enabling Technology- depending on their coverage area, these technologies are classified into several classes: Body (BAN), Personal (PAN), Local (LAN), Metropolitan (MAN) and Wide (WAN) area networks [10].
Figure 1 A simple MANET architecture
Figure 2- Ad hoc networks taxonomy.
A body area network (BAN) is strongly connected with wearable computers. A wearable computer distributes on the body its components like as head mounted displays, microphones, earphones, etc., and the BAN provides the connectivity among these devices. With respect to the human body range, t he communicating range of a BAN is 1–2 m.
The Personal area networks (PAN) connect the mobile devices which are carried by users to other mobile and stationary devices. A PAN communicating range is typically up to 10 m.
Wireless LANs (WLANs) support 100–500 m communication range for a single building, or a cluster of buildings.
In MANET, most of the main functionalities of the Networking protocols need to be re- designed for the
self-organizing, dynamic, volatile, peer-to-peer communication environment. The main target of networking protocols is to use the one-hop transmission services which are provided by the enabling technologies to construct end-to-end (reliable) delivery services, from a sender to one (or more) receiver(s). In case of establish an end-to-end communication; the sender needs to locate the receiver within the network. The main aim of a location service is to dynamically map the logical address of the (receiver) device to its current location in the network.
(c) Middleware and applications-
In the previous year the military oriented, non-military applications of MANET have also grown substantially since then. Especially in the past few years, with the rapid development in mobile ad hoc networking research, mobile ad hoc networks have attracted considerable attention and interests from commercial business industry, as well as the standards community. The introduction of new technologies like as the WiFi, Bluetooth, IEEE 802.11, WiMAX and HyperLAN greatly facilitates the deployment of ad hoc technology, and new ad hoc networking applications appeared mainly in specialized fields such as emergency services, disaster recovery and environment monitoring. In addition, MANET flexibility makes this technology attractive for several applicative scenarios like, for example, in personal area networking, home networking, law enforcement operation, search and- rescue operations, commercial and educational applications, sensor networks. Mobile ad hoc systems currently developed adopt the approach of not having a middleware, but rather rely on each application to handle all the services it needs.
IV- Security Analysis of MANET
The security analysis can be define as follow-
1- Security Criteria in MANET
In this section different security criteria for MANET are discuss-
(i) Availability-
It define the property of the network to continue provide the services and it is not depend on the state of the network. A denial of service attacks is based to attack this property.
(ii) Integrity-
Integrity define that no modification, no addition, no deletion, no altering is done to the message but if the altering of message done then it is because of malicious or accidental.
(iii) Confidentiality
Confidentiality defines that the any unauthorized person cannot be viewed the message in its original form.
(iv) Authenticity-
This property define the help to the parties prove their identities. This property ensures that the parties are genuine not impersonators.
(v) Non repudiation-
This property defines that the sender and receiver cannot disavow about sending and receiving the message, means nobody can read the message.
(vi) Authorization-
This property assigns or supports to the different access rights to different types of users. For example a network management can be performed by network administrator only.
(vii) Anonymity-
All the information about the identification of a node or user should be kept private for privacy- preservation.
2-Attacks in MANETs
malicious node from the network gains unauthorized access and impersonates as a genuine node. The term attack can analyze the traffic between different nodes and may participate in other network activities.
(i) Denial of Service attack-
This attack affected the availability of a node or the whole network. If the attack is activated then the services will not be available. Generally the attacker uses the radio signal for jamming and the battery exhaustion method.
(ii) Impersonation-
If the authentication concept is not work properly then a malicious node can act as a genuine node and guide or control the network traffic. This node can also transmit the fake routing packets, and provide the chance to use some confidential information.
(iii) Eavesdropping-
This type of attack is a passive attack. The node simply identifies the confidential information. This confidential information can be access by the malicious node. The confidential information like location, public key, private key, password etc. can be fetched by eavesdropper.
(iv)Routing Attacks-
The malicious node developed routing services as a target because it is an important service in MANETs. The routing attack is classified into two types. First one is attack on routing protocol and second one is attack on packet forwarding or delivery process. The aim of first attack is blocking the propagation of routing information to a node and the aim of second attack is disturbing the packet delivery against a pre defined path. [11, 12, 13, 14].
3- Security solution in MANET-
In this section we discuss the various security concepts which are deal with the attacks describes in the previous sections.
(i) Intrusion Detection-
Zhang et aZ. [15] Proposed a scheme for intrusion detection in MANET. They proposed distributed and cooperative framework to detect the attack. Every node in the MANET participates in the process of intrusion detection. It detects the sign of intrusion locally and independently and also propagates this information to other nodes in the network.
(ii) Cluster-based Instruction Detection-
There is a drawback of distributed and cooperation intrusion detection framework of Zhang et al. [15] that due to limited power capacity some of the node may behave as selfish node. To eliminate this drawback Huang et aZ. [16] Proposed a cluster-based intrusion detection scheme. The entire MANET is organized as a group of clusters like as a node is member of at least one cluster. Only one node in a cluster will monitor the intrusion detection. The nodes within a cluster are within the same radio range.
(iii) Defending Wormhole Attack using leash-
In wormhole attack, some previously save information and replays to another node using tunneling. The node of receiver has a difficulty to differentiate it from the genuine routing packet. The defense against wormhole attack is given in [17, 18] using packet leashes. A Packet leash is adding extra information to the packet to restrict its maximum allowable transmission distance. There are two types of leashes exist. First one is a geographical leash and it is ensures the maximum distance between sender and receiver. Second one is a temporal leash and it is bounds the maximum time of packet journey. A receiver examines its time or distance whether it has traveled more than he allowed distance.
V- Application of MANET
The applications of MANET are-
(i) Tactical Network-
• Military communication, operations
• Automated Battlefields
• Home applications: smart sensor nodes and actuators.
• Environmental applications which define tracking the movements of animals (may be birds and insects), Chemical/biological detection, precision agriculture, etc.
• Tracking data highly correlated in time and space, (remote sensors for weather).
(iii) Emergency Services-
• include Search and rescue operations, as well as disaster recovery; e.g., early retrieval and transmission of patient data (record, status, diagnosis) from/to the hospital
• Replacement of a fixed infrastructure in case of earthquakes, hurricanes, fire etc
(iv) Commercial Environment-
• E-Commerce: means Electronic payments from anywhere (for example taxi)
• Business:
--dynamic access to customer files stored in a central location on the fly
--provide consistent databases for all agents
--mobile office
• Vehicular Services:
--transmission of news, road condition, weather, music
--local ad hoc network with nearby vehicles for road/accident guidance
(v) Home and Enterprise Networking-
• Home/Office Wireless Networking (WLAN) e.g., shared whiteboard application; use PDA to print anywhere; trade shows
(vi) Educational Applications
• Setup virtual classrooms or conference rooms
• Setup ad hoc communication during conferences, meetings, or lectures.
(vii) Entertainment
• Multi-user games
• Robotic pets
• Outdoor Internet access
VI- Conclusion
Enterprise MANET is no doubt strategically very important as it represents a whole new dimension of market opportunities beyond the consumer market which has been the key focus in the market place. In this paper we address the design issue of MANET networks architecture, attacks, security issues, applications of MANET. As the popularity of MANET increases, so will the threats to it. Malicious elements are working round the clock to break the security of the various networks. In this paper specifically, we propose MANET network architecture in which both security concerns and the MANET applications are taken into account.
REFERENCES
[1] Tommi Halonen, Timo Ojala, “Cross-layer design for providing service oriented architecture in a mobile Ad Hoc network”, 5th International
Conference on Mobile And Ubiquitous Multimedia, 2006.
[2] M. Aoki, M. Saito, H. Aida and H. Tokuda, ANARCH: A Name Resolution Scheme for Mobile Ad Hoc Networks”,
IEEE AINA, pp. 723-730, 2003.
[4] Gehlen, G., Pham, L., “Mobile Web Services for Peer-to-peer Applications”, Consumer Communication and networking Conference (CCNC 2005), pp 427-433, 2005.
[5] Sun Microsystems. “J2ME Web Services”, Technical hite Paper, July 2004.
[6] Microsoft Developer Network (MSDN), “Consuming Web Services with the Microsoft .NET Compact Framework”, March 2003. [7] The World Wide Web Consortium (W3C), “Web Services Architecture Working Group”, July 30, 2010, http://www.w3.org/2002/ws/arch/. [8] Web Services Description Language (WSDL) 1.1.http://www.w3.org/TRlwsdl.
[9] Amitabh Mishra and Ketan M. Nadkarni, Security in Wireless Ad Hoc Networks, in Book The Handbook of Ad Hoc Wireless Networks (Chapter 30), CRC Press LLC, 2003.
[10] M. Conti, Body, personal, and local wireless ad hoc networks, in: M. Ilyas (Ed.), Handbook of Ad Hoc Networks, CRC Press, New York, 2003 (Chapter 1).
[11] P. Papadimitrates and Z.J. Hass, secure Routing for mobile Ad Hoc Networks in proceeding of SCS Communication Networks and Distributed system modeling and simulation Conference (CNDS), San Antonio, TX, Jan. 2002.
[12] Y.Hu, A Perrig and D. Johnson, Ariadne: A secure On-demand Routing Protocol for Ad Hoc Networks, in Proceeding of ACM MOBICOM'02, 2002.
[13] K. Sanzgiri, B. Dahill, B.N. Levine, C. shield and E.M Belding- Royar, A secure routing protocol for Ad Hoc Networks, in Proceedings of ICNP'02, 2002.
[14] Y. Hu, D. Johnson and A Perrig, SEAD: Secure Efficient Distance Vector Routing for Mobile Wireless Ad Hoc Networks, 1 (1) : 175-192, July 2003.
[15] Y. Zhang and W. Lee, Intrusion detection in wireless Ad Hoc Networks, in the proceedings of the 6th International Conference on mobile computing and networking ( Mobicom2000), pages 275-283, Boston, Massachusetts, Aug. 2000.
[16] Y. Haung and W. Lee, A Cooperative Intrusion Detection system for Ad hoc Networks, in Proceedings of the 1st ACM Workshop on security of Ad hoc and sensor Networks, Fairfax, Virgining 2003, pages 135-147.
[17] Y. Hu, A Perrig and D. Johnson, Packet Leashes: A Defense against Wormhole Attack in Wireless Ad Hoc Networks, in proceedings of IEEE INFOCOM'03, 2003.
[18] Y. Hu, A Perrig and D. Johnson, Wormhole Attacks in Wireless Networks, IEEE Journal on selected areas in communication, Vol. 24, No. 2, Feb. 2006.
[19] Shailandra Kaushik , “An overview of Technical aspect for WiFi Networks Technology”, International Journal of Electronics and Computer Science Engineering (IJECSE ,ISSN:2277-1956), Vol. 01, No. 01, pp.28-34(2012).
