Evaluating the Vulnerability of Network Traffic Using Joint Security and Routing AnalysisIEEE Transactions on Dependable and Secure Computing (2009)
AbstractJoint analysis of security and routing protocols in wireless networks reveals vulnerabilities of secure network traffic that remain undetected when security and routing protocols are analyzed independently. We formulate a class of continuous metrics to evaluate the vulnerability of network traffic as a function of security and routing protocols used in wireless networks. We develop two complementary vulnerability definitions using set theoretic and circuit theoretic interpretations of the security of network traffic, allowing a network analyst or an adversary to determine weaknesses in the secure network. We formalize node capture attacks using the vulnerability metric as a nonlinear integer programming minimization problem and propose the GNAVE algorithm, a Greedy Node capture Approximation using Vulnerability Evaluation. We discuss the availability of security parameters to the adversary and show that unknown parameters can be estimated using probabilistic analysis. We demonstrate vulnerability evaluation using the proposed metrics and node capture attacks using the GNAVE algorithm through detailed examples and simulation.
- Wireless networks,
- node capture attacks,
- adversary models
Publication DateApril, 2009
Citation InformationPatrick Tague, David Slater, Jason Rogers and Radha Poovendran. "Evaluating the Vulnerability of Network Traffic Using Joint Security and Routing Analysis" IEEE Transactions on Dependable and Secure Computing Vol. 6 Iss. 2 (2009)
Available at: http://works.bepress.com/patrick_tague/3/