Intrusion tolerance in Publish/Subscribe based MANET
Master thesis
Permanent lenke
http://hdl.handle.net/11250/143779Utgivelsesdato
2009Metadata
Vis full innførselSamlinger
Sammendrag
Public/Subscribe (PubSub) paradigm is a powerful abstraction for building distributed
applications and message distribution networks, and seems to be well suited model for
the type of communication which takes place at a tactical/mobile level in military
operations. Because of the hostile environment such networks have to operate in, they
have to have good information security properties, including intrusion tolerance. A
successful intrusion in tactical command and control networks can have a substantial
damage on the ongoing military operation, making it a highly valuable enemy target.
Most previous work on information distribution in MANETs focuses on how to
distribute the information and minimize the amount of data to be sent on the network,
and not on security issues introduced by an intruder.
During this master project we have performed an analysis of the intrusion tolerance of
the PubSub based MANET, i.e. the capability of a system to fulfill its mission in a
timely manner, even when the network is under different types of attacks. The analysis
shows that the PubSub protocol is vulnerable to some attacks performed by an
intruder in the network.
To deal with those vulnerabilities we have proposed enhancements to the protocol to
make it more robust and immune to these attacks. By implementing the proposed
enhancements we show that the PubSub protocol can be made very robust against the
different types of attacks studied in this thesis. These properties make the protocol
suited for usage in communication networks which operate in hostile environments.