Security in Delay Tolerant Networks

Delay- and Disruption-tolerant wireless networks (DTN), or opportunistic networks, represent a class of networks where continuous end-to-end connectivity may not be possible. DTN is a well recognized area in networking research and has attracted extensive attentions from both network designers and application developers. Applications of this emergent communication paradigm are wide ranging and include sensor networks using scheduled intermittent connectivity, vehicular DTNs for dissemination of location-dependent information (e.g., local ads, traffic reports, parking information, etc.), pocket-switched networks to allow humans to communicate without network infrastructure, and underwater acoustic networks with moderate delays and frequent interruptions due to environmental factors, etc. Security is one of the main barriers to wide-scale deployment of DTNs, but has gained little attention so far. On the one hand, similar to traditional mobile ad hoc networks, the open channel and multi-hop transmission have made DTNs vulnerable to various security threats, such as message modification/injection attack or unauthorized access and utilization of DTN resources. On the other hand, the unique security characteristics of DTNs including: long round-trip delay, frequent disconnectivity, fragmentation, opportunistic routing as well as limited computational and storage capability, make the existing security protocols designed for the conventional ad hoc networks unsuitable for DTNs. Therefore, a series of new security protocols are highly desired to meet stringent security and efficiency requirements for securing DTNs. In this research, we focus on three fundamental security issues in DTNs: efficient DTN message (or bundle) authentication, which is a critical security service for DTN security; incentive issue, which targets at stimulating selfish nodes to forward data for others; and certificate revocation issue, which is an important part of public key management and serves the foundation of any DTN security protocols. We have made the following contributions: First of all, the unique ``store-carry-and-forward'' transmission characteristic of DTNs implies that bundles from distinct/common senders may opportunistically be buffered at some common intermediate nodes. Such a ``buffering'' characteristic distinguishes DTN from any other traditional wireless networks, for which intermediate cache is not supported. To exploit such buffering opportunities, we propose an Opportunistic Batch Bundle Authentication Scheme (OBBA) to dramatically reduce the bundle authentication cost by seamlessly integrating identity-based batch signatures and Merkle tree techniques. Secondly, we propose a secure multi-layer credit based incentive scheme to stimulate bundle forwarding cooperation among DTNs nodes. The proposed scheme can be implemented in a fully distributed manner to thwart various attacks without relying on any tamper-proof hardware. In addition, we introduce several efficiency-optimization techniques to improve the overall efficiency by exploiting the unique characteristics of DTNs. Lastly, we propose a storage-efficient public key certificate validation method. Our proposed scheme exploits the opportunistic propagation to transmit Certificate Revocation List (CRL) list while taking advantage of bloom filter technique to reduce the required buffer size. We also discuss how to take advantage of cooperative checking to minimize false positive rate and storage consumption. For each research issue, detailed simulation results in terms of computational time, transmission overhead and power consumption, are given to validate the efficiency and effectiveness of the proposed security solutions

Networked Operations of Hybrid Radio Optical Communications Satellites

In order to address the increasing communications needs of modern equipment in space, and to address the increasing number of objects in space, NASA is demonstrating the potential capability of optical communications for both deep space and near-Earth applications. The Integrated Radio Optical Communications (iROC) is a hybrid communications system that capitalizes on the best of both the optical and RF domains while using each technology to compensate for the other's shortcomings. Specifically, the data rates of the optical links can be higher than their RF counterparts, whereas the RF links have greater link availability. The focus of this paper is twofold: to consider the operations of one or more iROC nodes from a networking point of view, and to suggest specific areas of research to further the field. We consider the utility of Disruption Tolerant Networking (DTN) and the Virtual Mission Operation Center (VMOC) model

Web browser for delay-tolerant networks

Due to growth of the Internet, the number of devices increasing and the structure of networks becoming more complex, the problem of time delays during information transmissions has arisen. In environments with long transmission delays modern protocols may become inefficient or even useless. Delay-tolerant Networking (DTN) is one approach that allows to solve the problem of long transmission delay times. In the thesis, an approach to web access in such networks is proposed. The problem of data transmission in the networks with long delays is considered. Special methods exist for data transmission in computer networks. But traditional data transmission protocols do not work well in networks with long delays, e.g. when transmitting over long distances, such as in space, or when connectivity may be disrupted, such as in mobile networks. It is necessary, therefore, to replace TCP and to change the existing web protocol (Hypertext Transfer Protocol - HTTP) in order to allow HTTP data transmissions in DTN environments. In the thesis, HTTP is analyzed and an adaptation of HTTP to DTN environments, as proposed in earlier research, is reviewed and extended further. A client part is created and the implementation is described. The client allows solving the problem of HTTP over DTN usage. An open-source browser is modified and the necessary extensions are developed. The extensions allow to use the DTN transport protocol (i.e. the Bundle Protocol) as another option of transport other than TCP. The software module for a web browser is built on the Mozilla platform. It was shown that it is possible to create a browser to work in DTNs

Transmissão oportunística de informação em redes veiculares

Mestrado em Engenharia Eletrónica e TelecomunicaçõesThe area of wireless communications has been the subject of several research projects over the last years. The persistent need to ”communicate” in various environments, including high mobility, make the use of wirelessbased communications a strong requirement. In this context, VANETs were created, which are networks based on Ad Hoc concept allowing the communication between vehicles and between vehicles and fixed infrastructures, that increase network’s connectivity. VANETs, due to their characteristics, introduce challenges such as shorts connectivity intervals in sparse networks, and also in situations where connectivity can be down for long periods of time. The work of this Dissertation aims to send non-urgent information in a opportunistic way, maximizing the network resources. The DTN’s concept is thus addressed as a solution to the previous described challenges. Two DTN implementations are studied and tested to be incorporated in WAVE devices communicating using the standard IEEE 802.11p for vehicular networks. After several tests, IBR-DTN proved to be the most robust and ”light” implementation to be used in embedded systems, such as the OBUs used in VANETs. Several implementation problems were detected, through several tests, and corrected to be possible to provide the functional integration of IBR-DTN in a real vehicular environment. The set of tests consisted in: two scenarios in the laboratory environment, to better understand IBR-DTN’s operation; and three scenarios in a real testbed with vehicles and fixed stations. The two scenarios tested in laboratory allowed to conclude the good performance of fragmentation process for different connection time intervals and different file sizes, where the connections between the nodes were periodically interrupted. The scenarios performed on the real testbed show that IBR-DTN operates without problems for various velocities using fixed infrastructures and a car, and two cars moving towards each other in different ways. It can be also concluded that, increasing the velocity, the contact time between nodes decreases, contributing to a larger number of fragments needed to send a specific file. The results show also that IBR-DTN has a good response in high mobility environments like VANETs.A área de comunicações sem fios tem sido alvo de vários projectos de investigação ao longo dos últimos anos. A constante necessidade de ”comunicar” nos mais diversos ambientes, incluindo os de alta mobilidade, requerem comunicações sem fios. Neste contexto foram criadas as Vehicular Ad hoc Networks (VANETs), que são redes baseadas no conceito Ad Hoc, permitindo a comunicação entre veículos e entre veículos e infraestruturas fixas, que aumentam a conectividade da rede. As VANETs, devido às suas carecterísticas, apresentam desafios, tais como intervalos curtos de conectividade em cen´arios onde a densidade de nós é reduzida, e também situações onde não existe comunicação durante longos períodos de tempo. O trabalho da presente dissertação tem como objectivo possibilitar o envio de informação não urgente de forma oportunística, rentabilizando todos os recursos da rede. O conceito de Delay/Disrupt Tolerant Network (DTN) é deste modo abordado como solução para os desafios descritos anteriormente. Desta forma, duas implementações de DTN são estudadas e testadas para serem incorporadas em dispositivos Wireless Access in Vehicular Environments (WAVE), comunicando através da norma IEEE 802.11p para redes veiculares. Depois de vários testes realizados, o IBR-DTN mostrou ser a implementação mais robusta e mais ”leve” para ser utilizada em sistemas embutidos, como é o caso das On-Board Units (OBUs) utilizadas nas VANETs. Vários problemas de implementação foram detectados e corrigidos para ser possível integrar o IBR-DTN de forma funcional num ambiente veicular real. O conjunto de testes realizados consistiu em: dois cenários em laboratório para melhor perceber o funcionamento do IBR-DTN; e três cenários numa testbed real com veículos e estações fixas. Os dois cenários testados em laboratório permitem concluir o bom funcionamento do processo de fragmentação para diferentes tempos de ligação e diferentes tamanhos de ficheiros, onde as ligações entre os nós eram interrompidas periodicamente. Os cenários testados na testbed real mostram que o IBR-DTN funciona sem problemas usando várias velocidades com estações fixas e um carro, e com dois carros dirigindo-se em sentido contrário um ao outro. Permitem também concluir que, aumentando a velocidade, diminui o tempo de contacto entre os nós traduzindo-se num maior número de fragmentos para enviar um determinado ficheiro. Os resultados mostram também que o IBR-DTN tem uma boa resposta em ambientes de alta mobilidade como as VANETs

A Message Repository for Delay-tolerant Networks

Internet technology, as well as other networking technologies, is running based on some assumptions, such as the existence of an end-to-end path between source and destination, low data loss rate, utilizing a packet-switching mechanism in communication and end devices supporting the TCP/IP protocol suite. However, these assumptions may not hold in the emerging challenged networks such as mobile ad-hoc networks. Thus, new solutions are needed to address the arising problem in challenged environments. Delay-tolerant Networking (DTN) approach is one robust way to enable communication in the environments with high delay and frequent disruption. Due to the challenged environments, DTN nodes have limited contact opportunities to forward messages. Therefore, the message delivery ratio of DTN networks is always lower compared to that of the traditional Internet. With the intention of enhancing the network performance and increasing the message delivery ratio, we deploy a set of infrastructure nodes, which are called message repositories (MRs), into DTN networks. MRs are the normal DTN nodes with infrastructure connectivity and supporting specific message exchange mechanism. When a mobile user connects to a MR, they are able to retrieve messages which they are not hold from each other following a specific message exchange procedure. We evaluate the performance of the MR scheme by means of simulation. We expect to figure out in which cases, and by how much the MR increases the message delivery rate and shortens the message delivery delay in DTN networks. We unitize an urban scenario with multiple environmental variables for our simulation. The most important environmental variables include underlying DTN routing protocols, the number of MRs and MRCs, node buffer size, etc. Furthermore, we compare the performance of multiple message exchange mechanisms of MR scheme in our simulation

Data availability in challenging networking environments in presence of failures

This Doctoral thesis presents research on improving data availability in challenging networking environments where failures frequently occur. The thesis discusses the data retrieval and transfer mechanisms in challenging networks such as the Grid and the delay-tolerant networking (DTN). The Grid concept has gained adaptation as a solution to high-performance computing challenges that are faced in international research collaborations. Challenging networking is a novel research area in communications. The first part of the thesis introduces the challenges of data availability in environment where resources are scarce. The focus is especially on the challenges faced in the Grid and in the challenging networking scenarios. A literature overview is given to explain the most important research findings and the state of the standardization work in the field. The experimental part of the thesis consists of eight scientific publications and explains how they contribute to research in the field. Focus in on explaining how data transfer mechanisms have been improved from the application and networking layer points of views. Experimental methods for the Grid scenarios comprise of running a newly developed storage application on the existing research infrastructure. A network simulator is extended for the experimentation with challenging networking mechanisms in a network formed by mobile users. The simulator enables to investigate network behavior with a large number of nodes, and with conditions that are difficult to re-instantiate. As a result, recommendations are given for data retrieval and transfer design for the Grid and mobile networks. These recommendations can guide both system architects and application developers in their work. In the case of the Grid research, the results give first indications on the applicability of the erasure correcting codes for data storage and retrieval with the existing Grid data storage tools. In the case of the challenging networks, the results show how an application-aware communication approach can be used to improve data retrieval and communications. Recommendations are presented to enable efficient transfer and management of data items that are large compared to available resources

Ereignisbasierte Software-Architektur für Verzögerungs- und Unterbrechungstolerante Netze

Continuous end-to-end connectivity is not available all the time, not even in wired networks. Delay- and Disruption-Tolerant Networking (DTN) allows devices to communicate even if there is no continuous path to the destination by replacing the end-to-end semantics with a hop-by-hop store-carry-and-forward approach. Since existing implementations of DTN software suffer from various limitations, this work presents the event-driven software architecture of IBR-DTN, a lean, lightweight, and extensible implementation of a networking stack for Delay- and Disruption-Tolerant Networking. In a comprehensive description of the architecture and the underlying design decisions, this work focuses on eliminating weaknesses of the Bundle Protocol (RFC 5050). One of these is the dependency on synchronized clocks. Thus, this work takes a closer look on that requirement and presents approaches to bypass that dependency for some cases. For scenarios which require synchronized clocks, an approach is presented to distribute time information which is used to adjust the individual clock of nodes. To compare the accuracy of time information provided by each node, this approach introduces a clock rating. Additionally, a self-aligning algorithm is used to automatically adjust the node's clock rating parameters according to the estimated accuracy of the node's clock. In an evaluation, the general portability of the bundle node software is proven by porting it to various systems. Further, a performance analysis compares the new implementation with existing software. To perform an evaluation of the time-synchronization algorithm, the ONE simulator is modified to provide individual clocks with randomized clock errors for every node. Additionally, a specialized testbed, called Hydra, is being developed to test the implementation of the time-synchronization approach in real software. Hydra instantiates virtualized nodes running a complete operating system and provides a way to test real software in large DTN scenarios. Both the simulation and the emulation in Hydra show that the algorithm for time-synchronization can provide an adequate accuracy depending on the inter-contact times.Eine kontinuierliche Ende-zu-Ende-Konnektivität ist nicht immer verfügbar, nicht einmal in drahtgebundenen Netzen. Verzögerungs- und unterbrechungstolerante Kommunikation (DTN) ersetzt die Ende-zu-Ende-Semantik mit einem Hop-by-Hop Store-Carry-and-Forward Ansatz und erlaubt es so Geräten miteinander zu kommunizieren, auch wenn es keinen kontinuierlichen Pfad gibt. Da bestehende DTN Implementierungen unter verschiedenen Einschränkungen leiden, stellt diese Arbeit die ereignisgesteuerte Software-Architektur von IBR-DTN, eine schlanke, leichte und erweiterbare Implementierung eines Netzwerk-Stacks für Verzögerungs- und unterbrechungstolerante Netze vor. In einer umfassenden Beschreibung der Architektur und den zugrunde liegenden Design-Entscheidungen, konzentriert sich diese Arbeit auf die Beseitigung von Schwächen des Bundle Protocols (RFC 5050). Eine davon ist die Abhängigkeit zu synchronisierten Uhren. Daher wirft diese Arbeit einen genaueren Blick auf diese Anforderung und präsentiert Ansätze, um diese Abhängigkeit in einigen Fällen zu umgehen. Für Szenarien die synchronisierte Uhren voraussetzen wird außerdem ein Ansatz vorgestellt, um die Uhren der einzelnen Knoten mit Hilfe von verteilten Zeitinformationen zu korrigieren. Um die Genauigkeit der Zeitinformationen von jedem Knoten vergleichen zu können, wird eine Bewertung der Uhren eingeführt. Zusätzlich wird ein Algorithmus vorgestellt, der die Parameter der Bewertung in Abhängigkeit von der ermittelten Genauigkeit der lokalen Uhr anpasst. In einer Evaluation wird die allgemeine Portabilität der Software zu verschiedenen Systemen gezeigt. Ferner wird bei einer Performance-Analyse die neue Software mit existierenden Implementierungen verglichen. Um eine Evaluation des Zeitsynchronisationsalgorithmus durchzuführen, wird der ONE Simlator so angepasst, dass jeder Knoten eine individuelle Uhr mit zufälligem Fehler besitzt. Außerdem wird eine spezielle Testumgebung namens Hydra vorgestellt um eine echte Implementierung des Zeitsynchronisationsalgorithmus zu testen. Hydra instanziiert virtualisierte Knoten mit einem kompletten Betriebssystem und bietet die Möglichkeit echte Software in großen DTN Szenarien zu testen. Sowohl die Simulation als auch die Emulation in Hydra zeigen, dass der Algorithmus für die Zeitsynchronisation eine ausreichende Genauigkeit in Abhängigkeit von Kontakthäufigkeit erreicht

Voice Communication in Mobile Delay-Tolerant Networks

Push-to-talk (PTT) is one class of voice communication system generally employed in cellular phone services. Today's PTT services mainly rely on infrastructure and require stable end-to-end path for successful communication. But users with PTT enabled mobile devices may travel in challenged environments where infrastructure is not available or end-to-end path is highly unreliable. In such cases those PTT services may exhibit poor performance or may even fail completely. Even though some existing PTT solutions allow users to communicate in an ad-hoc fashion, they need sufficient node density to establish end-to-end path and eventually fail to communicate in sparse mobile ad-hoc environments. Delay-Tolerant Networking (DTN) is an emerging research area that addresses the communication requirements specfic to challenged networks. In this thesis we develop a voice communication system (DT-Talkie) which enables both individual and group users to communicate over infrastructure-less and challenged networks in the walkie-talkie fashion. The DTN concept of asynchronous message forwarding is applied to the DT-Talkie in order to transmit voice messages reliably. We employ variable-length fragmentation mechanism in the application layer with the vision to speed-up session interactivity in stable scenarios. Some approaches to resolve codec interoperability issues are implied in this thesis. To validate the concepts of the DT-Talkie, we implement an application for Maemo based Nokia Internet Tablets, leveraging the DTN reference implementation developed in the DTN Research Group. Moreover in this thesis we evaluate the performance of the DT-Talkie through conducting a set of simulations using several DTN routing protocols and using different mobility models

Transmissão oportunística de informação em redes veiculares

Mestrado em Engenharia Eletrónica e TelecomunicaçõesThe development in telecommunications and particularly in wireless communications has been one of the most striking features of the contemporary world. The globalization only has been possible thanks to the evolution of communication technologies which increasingly have allowed to satisfy the constant people's needs of being "always connected" whatever the environment where they are. Concerning the evolution of technologies, vehicular networks have been one of the areas of great interest. This interest has been manifested both in research and in the development of the automotive industry that has produced innovative vehicles which are more and more equipped with new technologies. It is expected that communication in vehicular networks enable not only the communication between vehicles, but also a more comfortable and safe driving, making the user's experience of this type of networks richer and stimulating. The specific characteristics of vehicular networks, namely the high mobility, unpredictable routes, dynamic topology and the consequent and constant loss of connectivity, have been a challenge that has motivated studies to find solutions to these limitations. The work carried out for this dissertation is in the area of Vehicular Ad-hoc Networks (VANETs) and it is based on the Delay and Disruption Tolerant Networks (DTNs). With this project, identified as "Opportunistic Transmission of Information in Vehicular Networks", we aim to study the communication and transmission of information in these networks which do not allow communication without delays and disruptions. For this purpose it is studied the performance of DTN mechanisms in these networks. In this work it is used the implementation IBR-DTN to test DTN in VANETs. This implementation showed, in previous works, to be the one that presents the best performance comparing it with other existing implementations. The study involved, in an initial phase, reading and analyzing the implementation code so that it was possible to add instructions that allowed to observe the behavior of the implementation in the several tests carried out, as well as the correction of the bugs in the implementation. In the first phase, in laboratory, with fixed nodes and in a controlled environment, several scenarios were created to simulate the possible situations a node can meet: direct transfer with and without delay, indirect transfer (multi-hop) and indirect transfer with delay which corresponds to the store and transport of the bundles (set of information) until the next node. From the analysis of the collected information and observing the corresponding graphs, it was possible to observe that the implementation was working properly in the vehicles equipment for communication. Still in laboratory it was built an heterogeneous network with several devices (servers, NetRiders, Single Board Computers (SBCs), tablet, Raspberry Pi e Macbook) to show the integration of the IBR-DTN implementation and its extension in different equipments. During this test several files were sent among these devices, which were correctly received in the nodes previously defined as destination nodes. After testing and checking that everything was working properly in the laboratory, the same implementation was transferred to a testbed with 25 vehicles and 3 fixed infrastructures in Leixões harbor. In this testbed several DTN routing protocols were tested in order to check which of them showed better performance in the delivery rate of the bundles and of the collected information (the log files were also delivered via DTN) from the On-Board Units (OBUs) to the server, located in the Internet. The routing protocol with static routes to the Road Side Units (RSUs) proved a better efficiency compared to the other protocols. This was due to the the fact that this network is well covered with RSUs, and there is no relation between the historic of contacts and the probability that the vehicles will meet again in the future.O desenvolvimento na área das telecomunicações e, mais particularmente, nas comunicações sem-fios tem sido um dos traços mais marcantes do mundo actual. A globalização só tem sido possível graças à evolução dos meios de comunicação que cada vez mais permitem satisfazer a constante necessidade das pessoas estarem sempre ligadas, qualquer que seja o ambiente em que se encontrem. As redes veiculares têm sido uma das áreas de elevado interesse na evolução das tecnologias. Esse interesse tem-se manifestado tanto ao nível da investigação como ao nível do desenvolvimento da indústria automóvel que tem produzido veículos cada vez mais equipados com novas tecnologias. Prevê-se que a comunicação em redes veiculares permitam não só a comunicação entre os veículos, mas também uma condução mais confortável e segura, tornando a experiência dos utilizadores deste tipo de redes mais rica e estimulante. As características específicas das redes veiculares, nomeadamente a elevada mobilidade, rotas imprevisíveis, topologia dinâmica e a consequente e constante perda de conectividade, tornam-se um desafio que tem motivado estudos no sentido de se encontrarem soluções para essas limitações. O trabalho desenvolvido para esta dissertação insere-se na área das Vehicular Ad-hoc NETworks (VANETs) e baseia-se nas Delay and Disruption Tolerant Networks (DTNs). Com este projecto, identificado como "Transmissão Oportunística de Informação em Redes Veiculares", pretende-se estudar a comunicação e envio de informação nas redes que permitem uma comunicação com atrasos e disrupções. Para o efeito é estudado o desempenho de mecanismos de DTN nestas redes. Neste trabalho é utilizada a implementação IBR-DTN para testar DTN nas redes veiculares. Esta implementação mostrou, em trabalhos anteriores, ser aquela que apresenta melhor desempenho face a outras que existem. O estudo envolveu, numa fase inicial, a leitura e analise de código da implementação para que fosse possível adicionar instruções que permitissem observar o comportamento da implementação nos diversos testes realizados, bem como a correcção de erros da implementação. Na primeira fase, em laboratório, com nos fixos e num ambiente controlado, foram realizados vários cenários que mostram as situações possíveis que um nó pode encontrar: transferência direta com e sem atraso, transferência indirecta (multi-hop) e transferência indirecta com atraso que corresponde ao armazenamento e transporte dos bundles (conjunto de informação) até ao próximo nó. A partir da analise da informação recolhida e observação dos gráficos obtidos foi possível verificar o correcto funcionamento da implementação nos equipamentos de comunicação entre veículos. Ainda em laboratório foi construída uma rede heterogénea com diversos dispositivos (servidores, NetRiders, Single Board Computers (SBCs), tablet, Raspberry Pi e Macbook) com o objectivo de mostrar a integração da implementação IBR-DTN e as suas extensões em diferentes equipamentos. Neste teste foram enviados ficheiros entre estes dispositivos, os quais foram recebidos correctamente nos nos definidos como destino. Depois de testar e certificar que tudo funcionava em laboratório, a mesma implementação foi transferida para uma testbed com 25 veículos e 3 infraestruturas fixas, no porto de Leixões. Nesta testbed foram testados diversos protocolos de encaminhamento DTN de forma a verificar qual apresentava melhor desempenho na taxa de entrega dos bundles e da informação recolhida (os ficheiros de log foram também entregues através de DTN) das On-Board Units (OBUs) para o servidor, localizado na Internet. O protocolo com rotas estáticas para as Road Side Units (RSUs) demonstrou uma melhor eficiência em relação aos restantes devido ao facto de esta rede estar bem coberta e de não existir uma relação entre o histórico de contactos e a probabilidade de os veículos se encontrarem novamente