Securing MANET Multicast Using DIPLOMA

Mansoor Alicherry; Angelos D. Keromytis

Securing MANET Multicast Using DIPLOMA
Alicherry, Mansoor
Keromytis, Angelos D.
Computer Science
Permanent URL:
Part Number:
Book/Journal Title:
Advances in Information and Computer Security: 5th International Workshop on Security, IWSEC 2010, Kobe, Japan, November 22-24, 2010: Proceedings
Multicast traffic, such as live audio/video streaming, is an important application for Mobile Ad Hoc Networks (MANETs), including those used by militaries and disaster recovery teams. The open nature of multicast, where any receiver can join a multicast group, and any sender can send to a multicast group, makes it an easy vehicle for launching Denial of Service (DoS) attacks in resource-constrained MANETs. In this paper, we extend our previously introduced DIPLOMA architecture to secure multicast traffic. DIPLOMA is a deny-by-default distributed policy enforcement architecture that can protect the end-host services and network bandwidth. DIPLOMA uses capabilities to provide a unified solution for sender and receiver access control to the multicast groups, as well as to limit the bandwidth usage of the multicast group. We have extended common multicast protocols, including ODMRP and PIM-SM, to incorporate DIPLOMA. We have implemented multicast DIPLOMA in Linux, without requiring any changes to existing applications and the routing substrate. We conducted an experimental evaluation of the system in the Orbit MANET testbed. The results show that the architecture incurs limited overhead in throughput, packet loss, and packet inter-arrival times. We also show that the system protects network bandwidth and the end-hosts in the presence of attackers.
Computer science
Publisher DOI:
Item views:
text | xml
Suggested Citation:
Mansoor Alicherry, Angelos D. Keromytis, 2010, Securing MANET Multicast Using DIPLOMA, Columbia University Academic Commons, http://hdl.handle.net/10022/AC:P:13957.

In Partnership with the Center for Digital Research and Scholarship at Columbia University Libraries/Information Services | Terms of Use