| Summary: | 碩士 === 國立中正大學 === 通訊工程研究所 === 96 === With limited resource constraints, WSNs pose unique technical challenges: vulnerable to DoS/DDoS attacks that can exhaust rare available resources easily to prevent WSNs from performing their expected functions. To reconstruct the attacking path and to locate the attacking source are challenging tasks in the traceback research areas. In conventional IP networks, probability packet marking (PPM) schemes are widely used for traceback. However, conventional PPM schemes are not enough to cater for the needs of quick and accurate traceback in WSNs due to high convergence time. In this paper, we propose a novel traceback scheme called Anti-Spoof PPM (ASP), which can identify the spoof and trace the attacking path under sensor network environment where spoofing exists. ASP is designed based on the edge sampling algorithm with five-label marking scheme and with a smart Making Probability Distribution Function (MPDF). The additional labels to edge sampling scheme, ‘former’ and ‘gullet’, are used to trace the attack path precisely and to identify multiple attackers and spoof via deriving spurious marks. Besides, we propose a novel traceback scheme called Fishbone Traceback (FBT) scheme, which can be deployed in hierarchical WSN environment. FBT is designed based on the two-layer labeling technique and MPDF. The use of two-layer FBT label is to derive the main branch (“spine path”) of the attacking path quickly, while the use of MPDF can greatly reduce the convergence time by integrating with a priori information of hierarchical WSN topology. The FBT path reconstruction procedure is able to rebuild the spine path (for inter-cluster traceback) via cluster head marking packets and to reforms the details of the micro fishbone path (for intra-cluster traceback) on-demand within a cluster. Both numerical analysis and simulation results show that our solution has better performance in terms of the shortest period of traceback convergence time. In particular, the proposed FBT also includes many salient features (such as the enhanced robustness of the traceback algorithm in case of multi-attack and reusable spine path), which enable FBT to be a practical solution to the traceback problem in hierarchical WSNs.
|
|---|
